GreyNoise Intelligence Logo

Deception Engineer

  • Posted 6 months ago

Description

The Role

GreyNoise Intelligence is seeking a Deception Engineer to join our team. In this role, you will architect and create hyperrealistic decoys and sensors across our global sensor network to expand and improve threat detection to enrich cyber threat intelligence data.

 

Responsibilities:

  • Design and build innovative deception technology that attracts adversary attention
  • Continuously enhance deception sensors to appear genuine and enticing to attackers 
  • Develop sensors that capture extensive threat telemetry when engaged
  • Work closely with the Labs, Engineering, and Product teams to identify optimal deception opportunities
  • Prototype and productionize new deception capabilities at scale  
  • Improve the efficacy of the deception platform through testing, metrics analysis, and sensor lifecycle management

 

What You Will Bring

  • A culture-first, team-first attitude to everything you do
  • Strong background in Virtualization and Containerization technologies
  • Familiarity or strong interest in firmware reverse engineering
  • Firm understanding of the value propositions for computer network exploitation
  • Ability to iterate rapidly from concept to working prototype
  • 5+ years of production experience deploying and configuring internet services with commonly exposed controls, especially:
    • Operating Systems
      • Windows
      • Linux
      • MacOS
    • Routers
      • Fritz!Box
      • Ubiquiti AirCube
      • TP-Link
      • OpenWRT
      • DD-WRT
      • MikroTik
    • Mail Servers
      • Microsoft Exchange
      • Exim
      • ProFTPD
      • Zimbra
      • Roundcube
    • Business Management Systems
      • Atlassian Confluence/Jira/BitBucket
      • SharePoint
    • Network Monitoring
      • Zabbix
      • OpenVPN
      • Cisco SSL-VPN
      • WatchGuard
      • FortiADC
    • Firewalls
      • Cisco ASA
      • Pfsense Firewall
      • Sophos FW
      • Fortigate USG
      • SonicWall NSa/ASA
    • Virtualization
      • F5 Big-IP
      • VMWare Horizon/Workspace
      • Grafana
      • Cisco AnyConnect
    • Embedded
      • QNAP QTS
      • TVT

 

Nice to Haves

  • Low-level experience with containers and/or hypervisors
  • Low-level network traffic shaping or tunneling
  • Coding experience with Golang and/or Python
  • AWS experience
  • Expertise in conceiving and constructing authentic deception sensors
  • Knowledge of adversary TTPs and what stimuli motivate their behaviors

 

A Few of our GreyNoise Labs Principles

  • Honesty
    • Put your best understanding of the truth first in all that you do.
  • Decency
    • Treat yourself and others with respect.
  • Opinions
    • Frame opinions using data or experience; they are still opinions.
  • Computers
    • Computers are cool, but that doesn’t mean you won’t hate them.

 



Please mention the word **ENTERTAIN** and tag RMjE2LjI0NS4yMjEuOTE= when applying to show you read the job post completely (#RMjE2LjI0NS4yMjEuOTE=). This is a beta feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.
Apply for this job