Security Research

Technical Skills & Experience

• 3+ years of threat research and coding experience
• Deep understanding of the MITRE ATT&CK framework with practical experience mapping and implementing common adversary TTPs (Tactics, Techniques, and Procedures)
• Proven experience operating industry-standard threat emulation platforms and command & control frameworks, including development of custom payloads and modules
• Track record of integrating and analyzing threat intelligence data sources to enhance detection and response capabilities
• Demonstrated proficiency in implementing and detecting advanced persistence mechanisms, defense evasion techniques, and counter-forensic methods
• Strong containerization experience using Docker, including creating secure, production-ready containers and managing multi-container applications with Docker Compose
• Advanced programming skills in Python and/or Golang, with emphasis on developing security tools and automation frameworks
• Experience writing complex graph queries and traversals for analyzing relationships in large datasets, preferably with Neo4j or similar graph databases
• Strong background in API development and integration, including designing, implementing, and consuming RESTful services with proper security controls
• Comprehensive knowledge of cybersecurity principles including network security, application security, and secure coding practices
• Practical experience in offensive cyber operations, including payload development, post-exploitation, and lateral movement techniques
• Demonstrated expertise in red team methodologies, including campaign planning, OPSEC considerations, and adversary emulation based on real-world threats

235091741