We are current seeking a Web Malware Analyst to critically review and analyze the content and behavior of web sites that could be hosting malicious content or viruses and determine whether they are malicious or benign. Because web attacks are generally stealthy in nature, successful analysts must persistently collect and carefully evaluate a wide body of evidence to accurately perform this work. The information generated from each individual analysis is added to a database of web site categorizations that Blue Coat Blue Coat customers use to enforce and report on internet access policy and for their end users.
This full-time in-office position is located in Blue Coat's Draper office, which is conveniently located near the I-15 freeway. Employees in this position some flexibility in selecting their work hours. Benefits are available to employees who work 32 or more hours per week.
•Use company provided hardware, software, and training critically review and analyze the content and behavior of potentially malicious web sites looking for evidence that they are either malicious or benign and the categorize them accordingly. Identify and record the malicious nature of the site as precisely as possible.
•Analyze and categorize at least 15 of these sites per hour with a minimum of 96% accuracy.
•Review customer inquiries on malicious or suspicious web site categorizations, perform site analysis, and then summarize the results of web site analysis and rationale for categorization decisions (both malicious and non-malicious) to customers via email using a proprietary tool
•Review web traffic from BCWF partner-provided feeds in order to attempt to get ahead of outbreaks by doing their own research/investigations
•Attend weekly team meetings where team members discuss the content they are reviewing and look for ways to improve their analysis skills and methods. Contribute actively to these discussions based on personal experience.
•Attend mandatory in-office training sessions 4-6 times per year
•Periodically perform blind evaluation of fellow analysts' work product to assess quality
•Provide feedback and input into best practices for categorizing sites to help ensure that consistency is maintained across the work of the entire team
•Look for opportunities to blog about security-related topics based on day-to-day analysis work, and provide content for the Blue Coat security blog on a monthly basis.
•May be requested to work non-traditional hours (evenings, weekends, or holidays) on occasion. Typically these requests are non-mandatory. Overtime and holiday differential pay is provided (no differential pay for non-standard shifts or weekends).
•During the course of one's daily activity it may be necessary to view material which may be considered obscene, violent, disturbing, or otherwise objectionable in nature
Blue Coat Systems - 19 months ago