Senior Threat Researcher

We’re Civica and we make software that helps deliver critical services for citizens all around the world. From local to state government, to education, to health and care, over 5,000 public bodies across the globe use our software to help provide critical services to over 100 million citizens. 

Our aspiration is to be a GovTech champion everywhere we work around the globe, supporting the needs of citizens and those that serve them every day. Building on 21 years of continuous growth and success, we're at a pivotal point on our journey to realise that aspiration. 

As a company, we’re passionate about what we do and the citizens we help to serve. If you too would like to help champion the use of technology in public services, to improve outcomes for citizens and public sector organisations, then Civica is the right place for you. We will help you unlock the best version of yourself, achieve growth in your career whilst making a real difference to people and communities.

Why you will love this opportunity as Senior Threat Researcher at Civica

We're excited to welcome a Senior Threat Researcher to our Threat Intelligence team, part of the dynamic Research Analysis Division. This essential team plays a crucial role in uncovering threats and conducting sophisticated threat research. By delivering actionable threat intelligence and response strategies, we empower our clients and internal partners to stay one step ahead in the ever-changing threat landscape.

As a Senior Threat Researcher within the Research Analysis Division Team, you will take on pivotal responsibilities that include:

• Serve as the go-to Subject Matter Expert in Threat Research: guiding and supporting your team through threat hunting and research endeavors. This involves pinpointing knowledge gaps, resolving technical issues, crafting inventive solutions, and mentoring your colleagues to navigate their hurdles.

• Champion ongoing enhancements in threat research capabilities: proactively assess current tools, uncover gaps and opportunities for improvement, design and prototype groundbreaking solutions, and lead your team in deploying and scaling these advancements.

• Foster collaboration across the organization: engage actively with other research teams and departments, building robust partnerships to achieve unified objectives while nurturing the development of fellow threat researchers.

• Lead and refine threat hunting operations: work closely with cross-functional teams, investigate new data sources, and guide team members in executing processes and tackling complex challenges.

• Provide essential threat intelligence to Incident Response and Product teams by effectively hunting, enhancing, storing, and distributing high-quality threat data that informs security strategies and responses.

• Deliver expert analysis and strategic insights on emerging threats and vulnerabilities, translating complex technical details into actionable intelligence for executive leadership and external stakeholders.

What you will need to be successful in this role

• Experience with MITRE ATT&CK Framework is a very essential skill.
• Minimum 5 years of experience in Red Team/Penetration Testing activities is highly preferred. 
• Comprehensive understanding of the security methodologies, technologies, and best practices. 
• Experience with Red Teaming (vulnerability/penetration testing/adversary emulation/adversary simulation assessments) 
• Deep understanding of advanced threat hunting methodologies, attacker tactics, techniques, and procedures (TTPs), and the ability to derive actionable threat hunts from complex data sets. 
• Experience with threat intelligence platforms is required.
• Multidisciplinary background in cybersecurity is required, with familiarity across various domains such as penetration testing, red teaming, reverse engineering, infrastructure analysis, digital forensics, scripting, and coding. While deep expertise in every area is not expected, a broad understanding of these disciplines is essential. 
• Proficiency in analyzing diverse datasets, such as product telemetry, commercial threat intelligence feeds, and information gathered from dark web forums and other open-source intelligence (OSINT) channels.
• Highly organized with the ability to manage multiple tasks, prioritize effectively, and triage competing demands in a fast-paced environment. 
• Proven ability to lead and manage complex technical projects, effectively driving them to successful completion. 
• Experience with EDR bypass and tampering. 
• Understanding of BAS tools infrastructure setup, operating systems (Windows, Linux, Mac) and cloud environments AWS & Azure. 

If you are a dedicated and experienced cybersecurity professional with a passion for threat hunting, threat intelligence, rapid response, and technical excellence, we invite you to join our dynamic organization as a Senior Threat Researcher. 

Why you'll love working with us.

We know that when our people are happy, they will work better and have greater work satisfaction. Here's what you can expect:

We're all different - and we love this about us.

We provide an inclusive, safe, and welcoming environment to all Civicans - there are heaps of opportunities to enable you to grow and be your best.

Giving culture - we encourage you to "give back" with benefits such as our Days of Difference leave where you can volunteer for a charity of your choice.

Flexible Work - Flexible work – we have the technology and tools to support you to work from home and come into our offices now and then to catch up and socialise with colleagues.

Apply for this job - Become part of something special Do you see yourself in this role? If so, then we would love to hear from you.