QA - Security (Threat Analyst)

Description

Aryaka is seeking a highly skilled and experienced QA - Security (Threat Analyst) to join our cybersecurity team. This role is critical in designing, developing, and optimizing detection capabilities to protect against emerging threats, ensuring the security of our platforms and customers. The ideal candidate will possess deep expertise in threat research, signature development, and malware analysis, working collaboratively with global threat intelligence teams to enhance our detection and response capabilities.

Key Responsibilities

Signature Writing & Development

• Design and develop high-quality signatures and detection rules for IDS/IPS, antivirus (AV), and endpoint detection and response (EDR) systems.
• Continuously refine detection logic to adapt to the latest threats, exploits, and attack vectors.
• Optimize detection signatures to minimize false positives while maximizing detection efficiency across various security platforms.
  
  

Threat Research & Analysis

• Conduct in-depth research on emerging cyber threats, malware, advanced persistent threats (APTs), and evolving attack techniques.
• Analyze attack patterns, behaviors, and malicious code to identify new detection opportunities.
• Monitor and assess the evolving threat landscape, including new vulnerabilities, exploits, and attack campaigns.
  
  

Collaborative Threat Intelligence

• Collaborate with global threat intelligence teams to share research findings and enhance the understanding of adversarial behavior.
• Engage with external threat-sharing communities and organizations to stay updated on the latest cyber threats.
• Support security teams in responding to active threats by providing detection strategies and remediation guidance.
  
  

Required Qualifications & Skills

• Education: Bachelor’s or Master’s degree in Computer Science, Cybersecurity, Information Security, or a related field.
• Experience: 8+ years in cybersecurity, with a strong focus on threat research, signature development, and malware analysis.
• Technical Expertise:
• Proven experience in writing and optimizing signatures for IDS/IPS, antivirus, and EDR solutions.
• In-depth knowledge of cyber threats, including malware, ransomware, phishing, and APTs.
• Strong understanding of network protocols, system internals (Windows/Linux), and attack techniques such as fileless malware, obfuscation, and evasion.
• Hands-on experience with malware analysis tools (e.g., IDA Pro, Ghidra), network analysis tools (e.g., Wireshark, Zeek), and sandbox environments.
• Proficiency in signature formats such as YARA, Snort, Suricata, and regex-based detection logic.
• Familiarity with the MITRE ATT&CK framework and its application in threat detection and signature development.
• Soft Skills:
• Strong analytical and problem-solving skills with a strategic approach to threat detection and mitigation.
• Excellent verbal and written communication skills, capable of translating complex threat intelligence into actionable insights.
• Ability to work collaboratively across teams and mentor junior analysts.
  

Preferred Qualifications

• Industry certifications such as CISSP, CCSP, or CEH are highly desirable.
  
  

Role Responsibilities in a Broader Context

• Design, develop, and manage custom Suricata IDS/IPS rules based on network traffic analysis and emerging threats.
• Conduct comprehensive security assessments of SASE (Secure Access Service Edge) products to identify vulnerabilities and misconfigurations.
• Design and execute test plans to evaluate firewall configurations' effectiveness in mitigating unauthorized access and malicious activities.
• Perform penetration testing on firewall devices to simulate real-world attacks and assess resilience against advanced threats.
• Utilize both manual and automated testing tools to identify security vulnerabilities in firewall configurations.
• Analyze firewall logs, traffic patterns, and rule sets to detect anomalies and security incidents.
• Generate detailed reports outlining security findings, potential impacts, and recommended remediation measures.
• Work closely with firewall development teams to prioritize and resolve security issues identified during testing.
• Stay up to date with emerging firewall technologies, security trends, and industry best practices to refine testing methodologies.
• Provide technical guidance and recommendations on firewall security best practices, configuration hardening, and threat mitigation strategies.
• Contribute to the development and implementation of security policies, procedures, and standards related to firewall security testing.
  
  

Employee Value Proposition (EVP)

At Aryaka, we offer a dynamic and innovative work environment where you will have the opportunity to make a significant impact in the network security industry. Our commitment to cutting-edge technology and customer satisfaction provides a platform for continuous learning and professional growth.

Who Are we-

Aryaka is the leader in delivering Unified SASE as a Service, a fully integrated solution combining networking, security, and observability. Built for the demands of Generative AI as well as today’s multi-cloud hybrid world, Aryaka enables enterprises to transform their secure networking to deliver uncompromised performance, agility, simplicity, and security. Aryaka’s flexible delivery options empower businesses to choose their preferred approach for implementation and management. Hundreds of global enterprises, including several in the Fortune 100, depend on Aryaka for their secure networking solutions. For more on Aryaka, please visit www.aryaka.com

Why Aryaka –

We have won “Great Places to Work” World-Wide for 4 consecutive years because we have an amazing company culture that is inviting, collaborative, supportive, and inclusive to our employees. We encourage our employees to expand their knowledge base and provide the tools to help them get there. We are always innovating and looking at ways to improve and expand, and we listen to our employees and their ideas. We have an amazing group of very respected “Thought Leaders” who are always open to mentoring. We consider ourselves great Corporate Citizens which we show through our “Women In Technology” Program and “AryakaCares” Program as well as others. Our Benefits are World-Class and we offer a flexible work structure to allow you to maximize on your work/life balance. As Aryakans, we are 100% dedicated to being an equal opportunity employer and supporter of Diversity, Inclusion, and Belonging.

Third-Party Agency Notice: Aryaka does not accept unsolicited resumes from 3rd party agencies. Should any agency send a resume to any employee within Aryaka without explicit invitation, the resume will be considered a gift, and no fee will be paid. All agencies must have a signed contract from Talent Acquisition management prior to any engagement.