Senior Security Researcher - London / United States / Remote.


This job does not exist anymore.

Try running a new search or browse our vacancies.

Or fill in the form below to receive job alerts.

2018-08-10 15:27:311970-01-01Delta Search Consulting
Job Type Permanent Full Time
Location London
Area Germany , EMEAU.S., U.S.London, UK London
Sector Information Security - Penetration Testing; Ethical Hacking; Reverse Engineering.Information Security - Threat and Vulnerability Research.Information Security - Network; Application and Mobile Security.
Salary £Highly Competitive Basic Salary and Excellent Package
Start Date ASAP
Advertiser Will
Telephone 020 3621 2135 / 07377 677 039
Job Ref WSDS100818
Job Views 178
Description
Senior Security Researcher – London / United States / Remote.
 
Very well established Internet Security and Privacy Business founded by renowned Computer Scientists recognised as industry Pioneers. 
 
The existing high calibre, results focused Team is committed to ensuring innovate intelligence in terms of manner in which Internet interoperability works enabling improved, faster Internet user experience as the basis from which content creators can operate successfully. 
 
Conducting ground-breaking Research. Emphasis upon Malware Detection and Cloud-based Detection. A taste of things to come. The opportunity to take on Senior Security Researcher position 
 
Knowledge and Experience to include:
 
Malware variations; software infections. Exploiting; hijacking system vulnerabilities: software bugs (browser / web app plugin); app areas. Ransomware file encryption / extended network (DMA Locker, Windows). RaaS enabling malware licensing.
 
Worms and Botnets – zombies. DDoS. NgrBot. Social engineering techniques: VB scripting overwriting multiple file types.
 
Payload trojans. Backdoors; rootkits; ransomware; spyware, e.g Tinba RIG exploit kit execution. Deep RIG analysis: web technologies: DoSWF, JavaScript, Flash, VBscript obfuscation.
 
RIG exploit, further to Angler; Neutrino; Nuclear increasing threat level. New research into potent EK to neutralize threat. Routes preventing infection; Security software and device bypoassing. Exploit kit and gate redirection: DoSWF, JavaScript; Flash; VBscript obfuscation.
 
Transmission altering attack encoding and encryption. RIG dissection: scripts variations per launch session. Detection and string matches / hash values. Multiple execution malware file delivery. Anti-Malware Obfuscation; backup methods; stages. RIG analysis: infections - compromised websites; malicious code redirecting: EK landing page gate.
 
Malvertising: traffic. Redirecting to adversary infection chain. Funnelling (JavaScript / Flash / VBscript). Scripts downloading, executing machine malware file redirection exploit kit. Compromised website loading malicious Flash (SWF) file inserting iFrames redirecting browser to gate as other server web site, completing checks, exploit kit landing page redirection. JavaScript variables: loading Flash (SWF) exploit; VBscript with exploit; complex infection chain exploit - obfuscation techniques. SWF file obfuscation through DoSWF: Flash SWF encryptor. Flash file creating malicious website iFrames.
 
JavaScript code browser vulnerabilities - iFrame redirecting to RIG exploit kit landing page, browser facing hidden embedded Javascript scripts: RIG EK landing page (VBscript). Target System Tests  executing DoMagic() function, downloading campaign malware payload: ransomware, script-stored URL. RIG EK landing page script: Javascript code comment insertion, e.g. /*sw7586sdd*/. Comments changed per session - Base64 encoded blob appears different each time. Executing malicious Flash (SWF) file, obfuscated: DoSWF Flash tool. Code de-obfuscation, shellcode runtime payload decoded; SWF stored strings, exploit executable. Remaining RIG exploit JavaScript file landing page - CVE-2013-2551 (MS13-037): download and infect. MS13-037: exploiting IE integer overflow vulnerability. Vulnerability handling: dashstyle.array length - vml shapes - vgx.dll module. Win 7 SP1, IE 8 as per MS13-037. Code driving victims to URL to download EK malware. CRYPTFILE2 – Locky, CryptXXX; Trojans (Gamarue; Gootkit); broken executables. Protecting against RIG disabling unnecessary browser plugins. Browser patching and updating (Flash plugins).
Cloud Malware evading network detection. Prepared, customizable software. Rootkits accessing sensitive app parts, enabling system config file execution / modification, subverting anti-malware software detection, providing access to install malware. Flame, utilised in cyberespionage attacks: screenshots; keystrokes; monitoring network traffic. Backdoors negating system access authentication - webserver / database. Install: part of targeted assault. Social engineering: gain login credentials; access app. Avoiding detection to set up control centre: remote malware update; system command initiation. Malicious activities - data theft: DDoS, infecting visitors’ computers / executing APT attack. Located in IoT devices - Wi-Fi cameras. Post- compromise, infected IoT device as backdoor providing network gateway.
 
Malware: Adware infecting system compromised website - browser vulnerability. Spyware gathering data sent to third-party without consent. Keylogger spyware.
 
Malware Detection / Removal: preventing install, identifying web app server infections. Network edge WAF deployments; Cloud compliance utilising signature; behavioural; reputational analysis, blocking injection attacks (websites / apps). Backdoor Protect: intercepting communication attempts: server backdoor shells. Tracing requests pinpointing obfuscated malware. 2FA - zero integration. 
 
Ideally, individual educated to Ph.D. level. Excellent basic salary and package available for the suitable applicant.
 
Keywords
Sector Clear
Area Clear
Job Type Clear
Salary Clear
Sign in
Register
Similar Jobs
  • Principle Security Consultant - Remote
    UK, Home Counties
    Penetration Testing; Ethical Hacking; Reverse Engineering.
    c£100K Basic Salary

      Principle Security Consultant - Remote.   Highly technical individual to join existing, rapidly growing Technical Team at Principle Security Consultant grade.   Organisation renowned for conducting work of critical significance, instigating change. An organisa...
  • Manager - Assurance Testing - UK
    UK, Home Counties
    Penetration Testing; Ethical Hacking; Reverse Engineering.
    £Superb plus Excellent Package

      Manager - Assurance Testing – UK.   Challenging Management grade position. Dynamic environment. Globally renowned, suitably accredited, Professional Services Business. International presence, proactively serving top-tier Blue Chip Client organisations across every Ve...
  • Lead Incident response (DFIR) Consultant
    UK, West Country
    Penetration Testing; Ethical Hacking; Reverse Engineering.
    £80-100K Plus Excellent Package

    Lead Incident Response (DFIR) Consultant – London / UK. Joining existing motivated; high capability; international DFIR Team, within dynamic, consistently evolving environment of this global Professional Services organization, renowned for conducting diverse, high-profile investigations a...
Email Me Jobs Like This
Subscribed to similar jobs notifications

Contact

Delta Search Ltd
78 York Street
London
W1H 1DP

Telephone Number: 020 3621 2135

Email: contact@deltasearchconsulting.co.uk

We use cookies to provide you with the best possible browsing experience on our website. You can find out more below.
Cookies are small text files that can be used by websites to make a user's experience more efficient. The law states that we can store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies we need your permission. This site uses different types of cookies. Some cookies are placed by third party services that appear on our pages.
+Necessary
Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.
Resolution Used to ensure the correct version of the site is displayed to your device.
essential
Session Used to track your user session on our website.
essential

More Details