Trellix is a global company redefining the future of cybersecurity. The company’s open and native extended detection and response (XDR) platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix’s security experts, along with an extensive partner ecosystem, accelerate technology innovation through machine learning and automation to empower over 40,000 business and government customers. More at https://trellix.com.

Trellix Endpoint Security is an Endpoint Detection and Response (EDR) and Endpoint Protection Platform (EPP) solution for enterprise environments, which combines years of Trellix's forensic intelligence with Anti-Virus and Machine Learning capabilities to build a world class product. 

As a Software Engineer in Test, you will be an embedded member of an Agile Engineering team with your focus on validating the advancements we bring to life for the overall Trellix EDR Solution.  You will engage early in this cycle, participating in discussions around features and acceptance criteria, followed by devising and executing test plans to verify that these advancements do indeed satisfy the criteria.  Our solution runs on multiple operating systems with various configurations, all which need to be considered to arrive upon test plans that maximize value, reliability, and efficiency.  You will be accountable for appropriate test coverage by guiding engineers towards test case implementations at the unit, component, integration, or full stack tier.   You will have hands-on contributions to the automation frameworks and the automation cases as well.  We take feature verification and test automation seriously because it is a first-class engineering endeavor, not an afterthought.

What You Will Do:

• Analyzing functional acceptance criteria to devise and communicate test scenarios towards a general understanding of how features will be explored and verified
• Decomposing test scenarios into highly reliable test cases that specifically target the behaviors being verified
• Collaboration during Engineering story refinement to advocate for artifacts that provide for proper hooks/telemetry into test execution (setup/activate/analyze)
• Representing the value of the tests being performed by maintaining mappings of feature coverage, escaped defects, cost of execution, reliability of execution
• Collaborative automation code development best practices
• Apply a strong understanding of software testing and delivery to build and maintain automated test harnesses and test suites using scripting languages and industry tools
•  Very comfortable with Jira, TestRail, Git, Python IDE, Unit test frameworks, Agile
• Integrate automated test cases into an automated test suites and infrastructure
• Work with engineers to troubleshoot and remediate automation issues in testing and deploying environments

Minimum Requirements:

• 4+ years professional experience in software automation & testing
• Minimum of 2+ years of experience implementing tests using any of the unit testing stacks – PyTest, CPPUnit, Junit, Jest, etc
• 2+ year professional experience designing and implementing code using Python
• Proven experience with testing user workflows, Business process management, and API integration solutions
• Proven experience in working with cross-functional teams in capturing requirements, developing use cases and determining success criteria
• A functional grasp of how to prioritize test scenarios as must have, nice to have, both with positive and negative outcomes
• Strong in any of the programming languages – Python / C++ / JS / Java, specifically developing functions, adding control flow logic, loops and a willingness to focus primarily on Python

Desired Qualification:

• Proven understanding of white box, grey box and black box testing techniques
• Proven experience in developing testing strategies and implementing testing process within Agile Scrum SDLC
• Meticulous with record keeping of test case details and outcomes
• Comfortable with transparent reporting during planning and execution
• Professional experience in the security domain
• Effective management of tasks/relationships within a work-from-home environment
• A passion for fighting those seeking evil by providing customers the tools to monitor and respond

Company Benefits: We work hard to embrace diversity and inclusion and encourage everyone at Trellix to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees. • Pension and Retirement Plans • Medical, Dental and Vision Coverage • Paid Time Off • Paid Parental Leave • Support for Community Involvement We're serious about our commitment to diversity, which is why Trellix prohibits discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.

Minimum Salary: $110,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations. 

*Disclosure as required by sb19-085 (8-5-20)  

Mandiant (formerly FireEye) has announced the sale of its Products business to Symphony Technology Group. Learn more about the sale here: https://www.fireeye.com/company/press-releases/2021/fireeye-announces-sale-of-fireeye-products-business-to-symphony-technology-group.html. This position will be part of the FireEye Security organization under the purchasing company. Our new company's security portfolio protects customers across endpoints, infrastructure, applications, and in the cloud. We will accelerate efforts to develop an integrated security platform powered by artificial intelligence and automation for superior threat detection and prevention.

If you have a strong background in cyber threat research and analysis and are looking to be at the forefront of technical threat intelligence tracking, then we want to hear from you!  The successful candidate should be an independent, critical thinker, skilled in using data to solve analytic problems and adept at satisfying intelligence requirements under tight deadlines. This role supports Mandiant’s Advanced Intelligence Access (AIA) program. The AIA program enables customers, via an onsite (remote in some cases) Senior Analyst, access to the totality of Mandiant’s Threat Intelligence, to include raw data. Each Senior Analyst ensures the delivery of actionable intelligence to each customer’s security or operational environments in order to drive decision making and decisive action. The Senior Analyst also acts as a conduit to FireEye Mandiant’s extensive network of cyber security, threat intelligence, and information operations professionals. This is an onsite, client facing position. Remote work is not authorized.

Responsibilities:

• Evaluate current and emerging tools and best-practices for tracking advanced persistent threats; tools, techniques, and procedures (TTPs) of attacker’s motivations, industry and attacker trends.
• Perform strategic, tactical, and operational research and analysis of adversarial cyber threats. 
• Correlate intelligence, to develop deeper understandings of tracked threat activity.
• Present tactical and strategic intelligence about threat groups, the methodologies they use, and the motivations behind their activity.
• Work with customers to determine their intelligence needs and requirements.
• Convey both verbally and in writing the importance of findings for a variety of audiences.
• Prepare and deliver briefings and reports to the client’s executives, security team, or fellow analysts.
•  Ability to work with little direct oversight.

• 5 + years of experience in an analytical role (network forensics analyst, intelligence threat analyst, or security engineer/ consultant).
• 5 + years working in a customer-facing environment.
• Exceptional oral and written communication skills.
• Excellent communication and presentation skills with the ability to present to a variety of internal audiences including senior executives.
• Excellent organizational and leadership skills.
• Outstanding communication and interpersonal abilities.
• Proven track record of successfully managing and executing on short term and long-term projects.
• Strong leadership skills with the ability to prioritize and execute in a methodical and disciplined manner.
• Ability to set and manage expectations with senior stake-holders and team members.
• Demonstrated ability to manage customer relationships.

Technical Qualifications:

• 5+ years of experience in evaluating host and network forensic reports of electronic media, packet capture, log data analysis, malware triage and network devices in support of intrusion analysis or enterprise level information security operations.
• Excellent knowledge of adversarial cyber actors, to include tactics, techniques, and procedures.
• Excellent knowledge of security solutions and technologies, including: Windows, Linux, Network architecture / implementation / configuration.
• Experience conducting analysis of firewall technologies, proxy technologies, anti-virus, or spam and spyware solutions (Gateway and SaaS).
• Experience in working with threat modeling systems
• Experience utilizing open source tools for analysis
• Experience with Industrial Control Systems / Operational Technology preferred.

Additional Qualifications:

• Master’s or other professional degree preferred.
• Malware/security experience and experience with FireEye products, highly desired.
• Experience working in a investigative or incident response environment.
• Program management or business experience

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

This is a regionally-based role that must be located in Connecticut, Delaware, Maine, Massachusetts, New Hampshire, New Jersey, New York, Pennsylvania, Rhode Island, or Vermont. Candidates must will be willing to travel into NYC, NY 2-3 days a week.

You are fanatical about security. No really, you will do whatever it takes to keep the bad guys out. You have a strong understanding of network and host based attacker methodologies. Analyzing forensic data, picking apart malware, and responding to security incidents excites you! You thrive and enjoy working in a fast paced environment, surrounded by brilliant and like-minded people. You walk into the office everyday with a passion to learn more. You derive great satisfaction from delighting customers, have strong attention to detail, exude excellence and have more drive than an exotic Italian sports car. 
  
As a  Senior Security Analyst you will be focused on host and network analysis, diving deep into host systems and packets hunting for attackers or remnants of their activity . Alongside your wicked smart team members, you’ll be entrusted to deliver high impact and value services to some of the most recognized brands in the world, protecting them from threats that actually matter to their business 24x7. 

What We Will Do For You

• On a daily basis, you'll find the most malicious attacker activity the Internet has to offer
• Let you scour systems and analyze tons of network traffic looking for attacker presence
• Be Challenged to evolve how we detect and respond to attackers by authoring new and innovative Indicators of Compromise
• Expose you to some of the most exciting and cutting edge techniques to find evil
• Training and continuous coaching and mentoring to grow your technical and professional skills like no one else
• Work with a team of brilliant people that you can learn from and build lasting relationships with
• Develop an understanding of your aspirations and provide opportunities that we believe will get you there
• Inspiration to stretch your performance by allowing you to tackle seemingly impossible problems
• Encouragement challenge the status quo, think creatively, and innovate –make us better
• An environment of trust and camaraderie, where you can speak freely about your ideas
• A platform from which you can make a real impact against the bad guys
• Develop an understanding of, and be flexible to, your needs

What You Can Do For Us 

• Get your toolbox out and dive deep into systems to help us identify and eradicate attackers
• Use your insanely keen network analysis skills to find evil on the wire
• Define relationships between seemingly unrelated events through deductive reasoning
• Come up with ways to do things faster, better and more effectively while maintaining a laser focus on quality
• Be fanatical about delighting our customers
• Be honest, transparent and genuine with our customers and your peers
• Exude excellence
• Make sure you have fun – lots of it
• Help us protect the world
• Work hard, but smart; balance your work and life

Qualifications

What You Can Bring With You 

• The ability to analyze event and systems logs, perform forensic analysis, analyze malware, and other incident response related data, as needed.
• Deep understanding of incident response best practices and processes
• Familiarity with intrusion detection systems (e.g., snort) and tools (e.g., tcpdump, Wireshark).
• Knowledge of attack vectors, threat tactics and attacker techniques. 
• Familiarity with network architecture and security infrastructure placement. 
• Understanding of Windows operating systems and command line tools.
• A solid foundation in networking fundamentals, with a deep understanding of TCP/IP and other core protocols. 
• Knowledge of network based services and client/server applications.
• Your bachelors degree – or a very convincing argument.

Additional Information

Additional Qualifications:

• Degree in computer science, or related discipline
• Experience working on a mission critical security operations team, preferably 24x7.
• Exemplary communication and interpersonal skill.
• Ability to document and explain technical details clearly and concisely.
• A willingness to be challenged and a strong desire to learn.
• An open mind and an appetite for excellence

Network

• Wireshark
• Understand a signature
• Protocol - timing, data sizes, commands
• Context - inbound vs outbound (webshells), DNS servers vs HTTP proxy
• Components - C2 interaction vs beaconing vs profiling
• Knowing the Internet - identifying something as legitimate vs malicious
• Intel querying vs OSINT
• Knowledge of protocols - SMB, HTTP Proxy, DNS, ICMP
• Netflow Analysis
• Perform queries to gain additional context
• Understanding ports, sessions length, direction
• DNS & HTTP
• Collect and analyse DNS/HTTP logs for additional context
• Signatures
• Identify issues with signatures and propose improvements

Endpoint

• Hit Review
• Understand a signature
• IOCs intent - what it's looking for, what it hit on, caveats
• Context - malware, decoy, side-loaded DLL (legit binary), tools, methodology
• Triaging
• Collecting forensic information to determine TP vs FP
• Malware triaging - assessing MTA and performing dynamic analysis in VM
• Signatures
• Identify issues with signatures and propose improvements
• Live Response
• Build LR timelines under supervision
• Threat Intel 
• Understand how malware and tools are used by the threat actors 

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

The Senior Travel & Expense (T&E) Manager will be responsible for leading Travel and Expense spend and travel operations at Mandiant, Inc.

The position will interface and partner with the general user base employees to support adherence to corporate policies. The position will also own relationships with travel suppliers such as Concur, travel management suppliers, preferred hotels, preferred rental car companies, airlines, etc. Serving as a key member in the Finance Team, the T&E Manager is an active participant in helping Mandiant Inc meet its internal and external compliance objectives, as well as competitive travel needs for all employees. The principal challenge of the Manager, Travel & Expense (T&E) position is to understand, enhance and promote internal controls and pursue continuous improvement in the travel and expense area. This requires detailed knowledge and understanding of travel and expense policies and regulations. The incumbent will participate as an internal consultant and point of expertise to all of Mandiant’s businesses and users.

What You Will Do:

• Establish Company Travel & Expense policy, report exceptions to managers and/or HR for resolution
• Provide Administrator duties for Travel & Expense systems including system maintenance, configuration and updates
• Assisting employees with travel arrangements, including cars, air, and hotel
• Negotiating hotel, cars, and airline contracts
• Engaging in hotel convention arrangements and associated F/B and room matters
• Knowledgeable in Concur/Concur-Detect and ability to assist employees with both Concur travel and expense submission and tool functions-issues.
• Ability to interact with Concur on application issues to some extent.
• Negotiation of events and event sponsorship contracts
• Provide monthly and ad-hoc management reporting on travel & expense; report on key metrics to various levels of management
• Work with company appointed Travel Management Company (TMC) to resolve all travel related issues and inquiries, and manage preferred vendor contracts.
   

Minimum Requirements:

• 7+ years of experience in a travel & expense management related role, with knowledge of the front-end TMC operations for travel booking as well as back-end expense reporting.
• 3+ years of Concur Travel & Expense system experience 
• 3+ years of experience in business negotiation for travel-related systems and partnerships
• 3+ years of hands-on experience with international travel regulations and currencies

Desired Skills:

• Strong analytical skills and experience in analyzing spend associated with the Travel
• Working knowledge of Microsoft Office (Word, Excel, and PowerPoint)
• Ability to communicate effectively with varying levels throughout the organization
• Ability to work independently while being able to contribute successfully to cross-functional teams
• Strong customer orientation

Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

Mandiant Threat Intel Product & Engineering is setting a new standard and changing how organizations can identify and confirm relevant cyber security threats. We develop solutions that enable our customers to know more about their adversaries than anyone else by providing access to a wide array of data and indicators as active threats emerge. We do this by leveraging optimized breach intelligence data, cultivated from the frontlines of cyber security—this includes more than 300 intelligence analysts and researchers in 26 countries and over 200,000 hours responding to breaches, in the last year alone.

Database reliability engineering team is responsible for building database deployment and operation automation, designing and building data pipelines and overall data management and security. Teams main focus is building stable, performant and cost optimized data services and enabling product teams to leverage the offering.  Working as part of a small group, you will be exposed to most of the current distributed databases and data pipeline technologies along with modern tooling and frameworks. You will be in the position to make decisions and help shape the future of our services.

What You Will Do:

• Design and improve database automation code and self-service offering.
• Work with different product teams on designing the best data solution for the product.
• Automating data management platform and tooling.
• Optimize new and existing database deployments for cost and performance.
• Provide consultancy to product teams on data related topics.
• Produce and maintain technical documentation.

Minimum Requirements:

• Expertise in managing and using SQL databases (Postgres, MySQL preferred)
• Expertise in managing and using NoSQL databases (Cassandra, Elasticsearch preferred)
• Experience with automation languages and tooling (ex. Ansible, Terraform, Jenkins)
• Experience with AWS services and cloud platform landscape (GCP experience is a plus)
• Experience with one or more programming languages (Java, Python, Go)
• Ability to articulate, verbally and in writing, abstract concepts as well as detailed technical information.
• Excellent interpersonal and communication skills and the ability to work both independently and with a team.

Additional Qualifications:

• Experience with managing and using distributed messaging systems (Kafka preferred)
• Familiarity or experience working with or deploying on Kubernetes is a plus.
• Familiarity or experience working with container build and deploy tools (Drone, Argo, Harbor) is a plus.
• Comfortable with agile development methodologies.

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Minimum Salary: $110,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations. 

Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms  

Benefits: Employer subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.  

*Disclosure as required by sb19-085 (8-5-20)  

The Role:

Advanced Practices’ mission is to know more about adversaries than anyone else and to make the knowledge actionable for Mandiant. Our threat analysts work at the intersection of incident response, security operations, detection engineering, and cyber threat intelligence.

You are an independent critical thinker skilled in using data and information derived from multiple disciplines to solve analytical problems. Your past experience qualifies you as an intrusion decisionmaker capable of guiding multiple teams’ efforts in a unified event.

You will track all impactful adversaries by collecting, modeling, and analyzing data originating from thousands of investigations conducted by Mandiant, third party telemetry, as well as novel sources and methods.

You are encouraged to contribute back to the security community by sharing your expertise through whitepapers, tool releases, and conference talks.

About Advanced Practices:

Advanced Practices was formed in 2015 to exclusively focus on the most difficult threats facing our clients and our company independent of product or business lines.  We work with every other Mandiant team to track, correlate, attribute, detect, and collect on our adversaries using advanced analysis and deep research.  Advanced Practices codifies and makes actionable the knowledge from thousands of annual event responses, all available organic telemetry, and other novel sources and methods.  As an extension of this work, Advanced Practices acts as key practitioners driving Mandiant’s larger development for technology, process, and thought leadership.

Illumination.  Advanced Practices illuminates under-reported or uncorrelated intrusion activity to expose and amplify complex adversary activity. We search for the nearly imperceptible traces of attackers wherever we can find them and seek to surface their activity for action.

Front-line Visibility. Our team of 40+ talented security research and threat analysis professionals bring centuries of experience investigating intrusions, analyzing malware, and dissecting digital artifacts to deliver front-line innovation for Mandiant/.

Threat Discovery. Our goal is simple: to know the most about adversaries and make this knowledge actionable. Advanced Practices enables early discovery and analysis of adversary operations and their tradecraft so that our customers are protected.

It’s How that Works. Our team studies the world’s most impactful intrusions from the Mandiant frontlines to understand how apex attackers operate. The focus on technical evidence and how our adversaries operate powers the who our adversaries are and contributes to more how’s to keep the cycle in motion.

Surfacing the Unseen. We look for unique features and common adversary methods across all intrusions and malware so we can develop resilient monitoring, detection, and discovery of attacker activity. We set proactive traps and develop threat signals to capture real-time and historic adversary activity from important, evasive, and emerging threats.  Additionally, we examine historical data for new patterns based on recent finds.

Responsibilities:

• Be the expert in tracking and assessing impactful adversaries
• Analyze technical data to extrapolate adversary methodologies and identifiable characteristics
• Fully exploit all available leads identified through investigations to provide a comprehensive understanding of the adversary’s activity in a holistic sense while combining different datasets for maximum exposure
• Assess, cluster, & attribute seemingly disparate activity into related intrusions & campaigns
• Communicate analytical findings through curating/modeling data and providing customer-facing attribution work
• Deconflict complicated analytical efforts using organic data
• Work with multiple expert teams simultaneously in stressful environments and timeframes

Minimum Requirements:

• 2 + years of experience in an analytical role of either network forensics, threat analyst, or security consultant/engineer
• 2 + years of experience in Investigative or Incident Response environments
• 2 + years of experience with direct delivery of technical information to clients or public in reports or presentations
• Familiar with at least five of the following areas (and a willingness to learn the rest):
  • Graph theory
  • Encoding and decoding
  • Windows desk and memory forensics
  • Static and dynamic binary analysis
  • Network flow and traffic analysis
  • Email analysis
  • Log analysis
  • Security Operations processes
  • Incident Response processes
  • Enterprise security controls
  • Intrusion operations
  • Commercial threat intelligence data sources (internet scan data, passive DNS, domain registrant information, malware repositories)

Additional Qualifications:                                        

• Proven analytical leadership skills with the ability to prioritize and execute
• Ability to set and manage expectations with senior stakeholders and team members
• Strong problem solving, troubleshooting, and analysis skills
• Experience working in fast-paced development environments
• Self-driven, proactive, hardworking, creative, team-player
• Excellent communication and presentation skills with the ability to present to technical and non-technical audiences
• Exceptional written communication skills

At Mandiant, we are among the leaders of incident response and threat and malware intelligence. We are looking for principal developer to join us in the design and development of our next-gen incident response (IR) platform. 

Currently, we have talented teams of engineers working on the endpoint IR client, current cloud infrastructure, and platform to integrate with third-party EDR solutions. As a technical leader, you would be interfacing across teams and your personal career vision should be aligned towards becoming a technical director in the future. 

Our culture is highly collaborative and innovation and calculated risk-taking is critical. If you are excited about the opportunity to help lead key engineering projects at Mandiant, we’d love to hear from you! 

What You Will Do:   

• Design, evangelize, and help implement the infrastructure design to combine tooling within our next-gen IR platform 
• Work across teams to design solutions to incident response needs 
• Help ensure code quality, standards, and best practices  
• Participate and help lead technical and planning sessions 

Minimum Requirements:   

• Strong programming skills with Go and Python 
• Experience working on container solutions (Kubernetes, Docker, etc.)  
• Working experience with CI/CD tools (Argo, Helm, Puppet, Terraform, etc.)  
• Working experience with cloud solutions (GCP, AWS, Azure) 
• Working knowledge of Windows (preferred), Mac, or Linux 
• Advanced proficiency with system design  

Desired Qualification: 

• IR expertise and/or familiarity with Windows APIs 
• Experience with various database technologies (Elasticsearch, Postgres, etc.)  
• Familiarity with distributed messaging frameworks (Kafka, Kinesis, etc.) 

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Minimum Salary: $180,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations. 

Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms  

Benefits: Employer subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.  

*Disclosure as required by sb19-085 (8-5-20)  

Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

A successful Red Team consultant at Mandiant should possess a deep understanding of both information security and computer science. They should understand basic concepts such as networking, applications, and operating system functionality and be able to learn advanced concepts such as application manipulation, exploit development, and stealthy operations. This is not a “press the ‘pwn’ button” type of job; this career is technical and challenging with opportunities to work in some of the most exciting areas of security consulting on extremely technical and challenging work.  A typical job could be breaking into a segmented secure zone at a Fortune 500 bank, reverse engineering an application and encryption method in order to gain access to sensitive data, all without being detected. If you can exploit at scale while remaining stealthy, identify and exploit misconfigurations in network infrastructure, parse various types of output data, present relevant data in a digestible manner, think well outside the box, or are astute enough to quickly learn these skills, then you’re the type of consultant we’re looking for.

At Mandiant, you’ll be faced with complex problem solving opportunities and hands-on testing opportunities on a daily basis. We help our clients protect their most sensitive and valuable data through comprehensive and real world scenario testing. The objective doesn’t end at gaining “domain admin” or “root”; this is expected and is only a starting point.

You are expected to quickly assimilate new information as you will face new client environments on a weekly or monthly basis. You will be expected to understand all the threat vectors to each environment and properly assess them. You will get to work with some of the best red teamers in the industry, causing you to develop new skills as you progress through your career. Are you up to the challenge?

Responsibilities:

• Perform network penetration, web and mobile application testing, source code reviews, threat analysis, wireless network assessments, and social-engineering assessments
• Develop comprehensive and accurate reports and presentations for both technical and executive audiences
• Effectively communicate findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel
• Recognize and safely utilize attacker tools, tactics, and procedures
• Develop scripts, tools, or methodologies to enhance Mandiant’s red teaming processes
• Assist with scoping prospective engagements, leading engagements from kickoff through remediation, and mentoring less experienced staff

Requirements:

• 4-9 years' experience in at least three of the following:
  • Network penetration testing and manipulation of network infrastructure
  • Mobile and/or web application assessments
  • Email, phone, or physical social-engineering assessments
  • Shell scripting or automation of simple tasks using Perl, Python, or Ruby
  • Developing, extending, or modifying exploits, shellcode or exploit tools
  • Developing applications in C#, ASP, .NET, ObjectiveC, Go, or Java (J2EE)
  • Reverse engineering malware, data obfuscators, or ciphers
  • Source code review for control flow and security flaws
• Strong knowledge of tools used for wireless, web application, and network security testing
• Thorough understanding of network protocols, data on the wire, and covert channels
• Mastery of Unix/Linux/Mac/Windows operating systems, including bash and Powershell
• Must be eligible to work in Canada without sponsorship

Additional Qualifications:

• Ability to travel up to 20%
• Ability to successfully interface with clients (internal and external)
• Ability to document and explain technical details in a concise, understandable manner
• Ability to manage and balance own time among multiple tasks, and lead junior staff when required

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Trellix Endpoint Security is an Endpoint Detection and Response (EDR) and Endpoint Protection Platform (EPP) solution for enterprise environments, which combines years of Trellix's forensic intelligence with Anti-Virus and Machine Learning capabilities to build a world class product.  

You will be an embedded member of an Agile Engineering team with your focus on leading the advancements we bring to life for the overall Trellix EDR/EPP solutions. You will lead the design of features by working closely with architects. You will be designing solutions that works across multiple operating system platforms such Windows, Mac and Linux flavors. You are expected to use latest tools and technologies to keep up with industry requirements and security considerations. As a staff engineer, you will be leading feature development and guide other members to achieve the desired outcome. You are expected be hands-on in implementation using necessary programming languages such as modern C++. You are expected to ramp up on new technologies as need arise. 

You will ensure that the product is well designed considering scalability and maintainability aspects. You will focus on reducing the time-to-market by automating the validation of features at unit, integration, component, and system level. 

What you will do:

• Design and development of next generation security and threat management products to support EDR/EPP offerings 
• Ownership of significant areas of the code for new features 
• Design, coding, testing, bug fixing, code refactoring, code review and automation of new features 
• Technical supervision of junior team members on design, review, and implementation. 
• Monitor and resolve product performance issues and memory footprint issues to improve the customer experience. 
• Sustenance of released versions of the products by resolving field issues which includes root cause analysis and fixes. 
• Participate in product release roadmap, educating and training other teams like documentation, sustenance, and product support teams. 
• Lead research tasks and innovation by working with subject matter experts. 
• Continuous focus and contribution in the areas of performance, reliability, and maintainability of the product  
• Active participation in our ongoing process enhancements and software development practices  

Minimum Requirements:

• Minimum of 7+ years of experience in Systems programming experience using modern C++ 14 and 17.
• Ability to work in an iterative, agile development environment. 
• Proven/demonstrable experience of leading technical teams, mentoring/coaching, reliability of production deployed solutions 
• Knowledge of object-oriented design, data structures and algorithms 
• Programming experience using scripting languages such as Python, Perl, Jscript, etc. for ancillary purposes (test automation, CI/CD, etc.) 
• Expert knowledge in System programming and preferably in the security domain. 

Desired Qualification:

• Good knowledge of operating system internals, preferably on multiple platforms 
• Expert knowledge of the software development life cycle and methodology 
• Excellent oral and written communication skills  
• Ability to foresee and establish the vision and strategy for the product. 

Company Benefits: We work hard to embrace diversity and inclusion and encourage everyone at Trellix to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees. • Pension and Retirement Plans • Medical, Dental and Vision Coverage • Paid Time Off • Paid Parental Leave • Support for Community Involvement We're serious about our commitment to diversity, which is why Trellix prohibits discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.

Minimum Salary: $120,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations. 

*Disclosure as required by sb19-085 (8-5-20) 

Mandiant (formerly FireEye) has announced the sale of its Products business to Symphony Technology Group. Learn more about the sale here: https://www.fireeye.com/company/press-releases/2021/fireeye-announces-sale-of-fireeye-products-business-to-symphony-technology-group.html. This position will be part of the FireEye Security organization under the purchasing company. Our new company's security portfolio protects customers across endpoints, infrastructure, applications, and in the cloud. We will accelerate efforts to develop an integrated security platform powered by artificial intelligence and automation for superior threat detection and prevention.

Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

As a Program Manager in the Marketing organization at Mandiant, you will be a trusted advisor and partner to our team to drive digital web and product launch programs. 

It’s an exciting time for Mandiant as we develop new offerings and solutions that leverage and scale our unique cyber security expertise through technology. In this role, you will influence the execution of our digital web strategy and apply Agile methods to operationalize and deliver these activities. You will also be an integral part of our product launch planning and execution process. This is an exceptional opportunity for a smart, creative, collaborative and highly motivated team player to make a strong impact across cross-functional teams. You will quickly get to know and work with an excellent team across brand, product, campaigns, and digital web groups, to name a few. 

This role is a high-visibility position and the ideal candidate is a dynamic, seasoned professional with an execution mind-set. who thrives on seeing their impact and contributions come to life. 

The role reports to the Senior Director, Revenue Marketing Program Management. 

What You Will Do: 

Lead the execution and optimization of processes to meet our needs for a wide array of digital content on our websites and support our product launches.  

• Facilitate project team meetings, cross-functional communication and decision making, ensures alignment with internal and external stakeholders. 

• Apply Agile methods towards prioritizing, planning, and executing deliverables. 

• Identify efficiencies to help teams scale faster and efficiently  

• Educate teams on the web process to increase efficacy and drive best practices 

• Create and clearly communicate program plans, develop and track deliverables and program health 

• Work with corporate and international partners to understand and incorporate regional needs 

• Manage external vendors for maximum quality, speed, and cost efficiency  

Additionally, you will: 

• Manage, execute and own traditional program management tasks, such as working with stakeholders to define plans, coordinating handoffs and hand-backs with team members and vendors, track and drive execution of deliverables 

• Incorporate shifts in business priority, flag and manage risks, and communicate across to affected parties. 

• Build strong relationships and act as a bridge between our team and cross functional partners. 
   

• 5+ years experience in Program Management with geographically dispersed teams 

• 3+ years experience working with web teams and/or product launches 

• Working knowledge of digital web and marketing  

• Working knowledge of Agile methodologies for planning/execution highly desired 

• Strong working knowledge of project management tools (Asana, Teams, JIRA, Confluence, and SharePoint a plus) 

• Excellent analytical abilities and project management skills  

• A proven track record in using data to guide decisions, being able to prioritize, and act upon the information received.  

• Strong attention to detail, and comfortable and able to deal with ambiguities in a fast-paced and dynamic environment with a variety of stakeholders 

• A strong passion for delivering the best customer experience globally.  

Join a world-class team at Mandiant where we are on a mission to make the world a safer place from cyber security threats. 

As a U.S. federal contractor, Mandiant has adopted a COVID-19 Vaccination Policy to comply with our obligations under applicable laws and requirements. This position may be covered under Mandiant’s COVID-19 Vaccination Policy, as required in order to support federal contracts, access company offices and/or attend in-person meetings and work events. If covered under this policy, proof of vaccination against COVID-19 may be required as a condition of hire. At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Minimum Salary: $110,000.00. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations. Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms.

Benefits: Whether you are just starting your career, reaching a milestone, or gearing up for retirement, we offer plans and programs to keep you happy and healthy at any stage of life. We regularly evaluate our options to make sure you’ve got everything you need. Part of what makes Mandiant great is our diverse team, and we’ve made it our priority to provide benefits that support you on your individual journey at work and at home. Mandiant subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.

Mandiant Advantage Labs’ FLARE team works on in-depth reverse engineering, malware analysis, training, and research and development to support numerous functions within the Mandiant business. 

If you have experience in malware analysis or reverse engineering, experience speaking publicly or teaching, and are looking for an opportunity to collaborate with an industry-leading team, then this may be the opportunity for you. As a reverse engineer working within FLARE you will dissect attacker tools and backdoors in support of incident responders. As a malware analysis instructor, you will teach courses virtually and on-site to Mandiant employees and customers worldwide. This is a great opportunity to split your time between being an educator and practitioner.  

What You Will Do: 

• Analyze executables and malicious files, model, and report on their behavior 
• Collaborate with a team of experienced malware analysts and researchers 
• Deliver classroom and virtual reverse engineering training to a variety of technical audiences  
• Facilitate virtual classes and travel worldwide to deliver classes in-person 
• Create, update, and maintain slide decks and lab exercises for customer-facing training 
• Support malware analysis automation and detection efforts 

Minimum Requirements: 

• Ability to analyze disassembly of x86 and x64 binaries 
• Knowledgeable in the use of: 
  • IDA Pro disassembler 
  •  Instruction-level debuggers 
  • Common binary file formats 
  • Dynamic analysis tools 
  • Network analysis tools 
• Minimum 4+ years of experience in RE or equivalent 
• Ability to reverse engineer binaries of various types including: 
  • C/C++ 
  • Delphi 
  • .NET 
• Experience developing scripts to decode obfuscated data and network communications 
• Experience developing applications in C, C++ 
• Thorough understanding of network protocols 
• Experience mitigating anti-reverse engineering techniques 
• Must be willing to travel up to 50%, including internationally, to support a global customer base (post-covid)  

Desired Qualification: 

• Ability to quickly grasp highly technical concepts and clearly communicate these technical concepts in live presentations  
• Classroom teaching experience  
• Excellent verbal and written communication skills  
• Ability to analyze shellcode 
• Ability to analyze packed and obfuscated code/scripts 
• Capable of Python scripting to automate analysis tasks 
• Capable of identifying host- and network-based indicators 

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Minimum Salary: $110,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations. 

Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from FireEye’s Compensation Committee, and vesting terms  

Benefits: Employer subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, FireEye also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. FireEye also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.  

*Disclosure as required by sb19-085 (8-5-20) 

Mandiant’s Sales Engineering Team is seeking experienced, exceptional individuals for our sales organization in the region. Ours is not a typical software sales organization. Everybody is a closer, from inside sales through executive management. Everybody. The Sales Engineer (SE) is a customer-focused technical sales professional who provides high level pre sales support and guidance to customers and collaborates with Territory Managers and partners to recommend and develop appropriate customer solution offerings. The SE acts in a consultative fashion and is looked to as an expert in his/her field by the account team, channel partners and customers. 

What You Will Do:

• You will be part of a sales team responsible for meeting quarterly and annual revenue goals in support of Mandiant’s product strategy
• You will work with key decision-makers in information security across a variety of industries
• You will be expected to define requirements, articulate key value propositions, architect technical solutions and demonstrate capabilities both in sales meeting and proof of concept environments for products which touch upon multiple security disciplines
• You should also have experience developing opportunities from initial lead to successful closure, or relevant experience in a professional services, consulting or related role

• Strong leadership skills with the ability to prioritize and execute in a methodical and disciplined manner. Set and manage expectations with senior stake-holders and team members
• Excellent communication and presentation skills with the ability to present to a variety of external audiences, including being able to interact with senior executives
• Hands-on technical understanding of incident response, computer forensics, network and/or application security
• 5 years or equivalent experience in consulting or sales engineering - particularly in the areas of security incident response or system and network administration; or, other relevant experience managing technical customer relationships
• History of creating rapport with customers, from line technicians to C-level executives
• Ability to explain and demonstrate - live and in color - a complex product

Additional Requirements

• Previous technical enablement or training experience
• Hands-on experience with Intrusion Detection Systems, Security Information Event Management solutions, packet analysis tools and operating system analysis
• Excellent knowledge of security solutions and technologies, including: Linux, Network architecture/implementation/configuration experience and knowledge of packet flow/TCP/UDP traffic Firewall technologies, proxy technologies, anti-virus, spam and spyware solutions (Gateway and SaaS),  Malware/security experience
• Understand and be conversant about Mandiant's competitors, their solutions, strengths, weaknesses, opportunities and threats
• Good understanding and experience with Cloud Security will have an added advantage

This is a regionally based LATAM role which can be located in Colombia or Mexico.

Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

Directly supporting the Mandiant Advantage SaaS Platform including: Attak Surface Management, Automated Defense, Intelligence, and Validation. The Field Engineering team is a multi-functional team offering solutions and support to our customers with Mandiant Advantage.

A successful Security Architect will help mature and improve our customer’s security maturity against some of the biggest threats and challenges in the industry. By ensuring delivery of unique Mandiant capabilities, we provide our customers with Mandiant expertise and insight brought from years or experience and built on Intelligence. We help our clients protect their most sensitive and valuable data through comprehensive and real-world scenarios, that will change the way environments are secured and monitored.

The Security Architect will work with clients to map potential attack vectors and build effective security solutions that protect companies against advanced attackers. In this role, you will get a chance to learn about how customers are approaching security and develop deployments to match their needs. It will require constant learning and an ability to adapt as the security environment continues to evolve and the threats evolve.

What You Will Do:

• Design security architecture around Mandiant deployments
• Implement, configure, and ensure the Mandiant platform is deployed successfully across a diverse set of customer environments
• Act as a subject matter expert across Mandiant Advantage
• Delivering technical material and presentations to Executives
• Interface with the engineering team to augment features being developed in the product
• Capture and share best-practice knowledge
• Help mature and improve the security maturity for customers across a large number of industries
• Think like an attacker to probe and identify potential attack vectors
• Troubleshoot and explain where and how security isn’t working in an environment
• Utilize advanced adversarial tactics to demonstrate security gaps 
• Build deep relationships to create Mandiant advocates
• Identify recurring problems and ways we can automate the solution to help scale & expand
• Build out customer use cases, success criteria, and content

Minimum Requirements:

• Minimum seven years of experience in Cyber Security
• Knowledgeable across multiple security technologies including: SIEM, NGFW, Proxy, IDS/IPS, DLP, EDR, A/V, WAF, SOAR
• Minimum two years experience in system adiminstration for Linux/Mac/Windows
• Minimum year scripting and working with APIs (preferably REST APIs)
• Minumum two years working with cloud environments (AWS/Azure/GCP)
• Experience around enterprise organizations and building out enterprise wide architecture plans
• Experience working with Threat Intelligence

Desired Qualifications:

• Strong networking background
• Experience consulting or working in a customer facing role
• Administration experience across Enterprise Windows Environments
• Experience working in red team, penetration testing, or application security roles
• Experience working in Incident Response or Security Operations
• OSCP, OSWP or OSCE a plus

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Minimum Salary: $130,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations.

Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms

Benefits: Employer subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.

Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

• Own all aspects of the Equity Edge online database including processing monthly new hire grants, terminations, imports/exports, mobile employees, etc. and ensuring data integrity
• Monthly/Quarterly SOX reconciliations and processes, including reconciling of grants, cancellations, and approval of Equity Edge Online database users
• Process all equity transactions in an accurate and timely manner, including daily stock option exercises, quarterly RSU/PSU releases, and semi-annual ESPP Purchases
• Partner with HR on the quarterly Compensation Committee grants, including the annual PSU grant and release and related PSU grant/goal imports and grant agreements
• Respond to and resolve questions, issues, and concerns from employees regarding stock options, RSUs, and ESPP
• Prepare and file Section 16 filings including Forms 3, 4 and 5
• Reconcile equity activity against transfer agent records on a quarterly basis, including shares outstanding
• Partner with Legal on preparation of tables and information in annual Proxy Statement
• Manage the Trading Window at ETRADE (in accordance with the Insider Trading Policy) and related companywide communications
• Manage the Pre-Clearance trading process for certain groups by facilitating approvals by the Compliance Officer and updating ETRADE with the trading clearance details
• Partner with outside legal counsel to ensure compliance with global reporting, including annual Japan filing data preparation, Saudi Arabia quarterly filing, UK HRMC and Section 6039 Reporting/year-end tax statements
• Partner with Payroll to ensure proper tax withholdings
• Report transactions to Global Payroll following RSU Releases, option exercises, ESPP Purchases, including ISO/ESPP dispositions to US Payroll
• Work with outside tax advisors on the proper withholding and reporting for RSU releases/option exercises for mobile employees
• Support quarterly and year-end financial statement and SOX audits by providing reconciliations, selection support, and reporting for internal and external auditors
• Manage the administration of global ESPP, including Open Enrollment, tracking/communication of enrollment status and contribution percentages to Payroll teams, purchasing of shares, and reporting qualifying and disqualifying dispositions to US Payroll
• Generate regular and ad-hoc reports for Payroll, HR, Finance, Legal, Tax

• Must have a minimum of 7+ years in stock administration for global public company
• Certified Equity Professional (CEP) preferred
• Experience with ETRADE/Equity Edge Online
• Proficient in Excel and Word
• Strong analytical skills, attention to detail, organizational skills, and ability to multi-task in a fast-paced environment
• Strong understanding of PSUs, RSUs, options and ESPP across many jurisdictions
• Strong understanding of global withholding and reporting requirements
• Commitment and dedication to provide excellent customer service

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

What You Will Do

• Work with customers to determine their intelligence needs and requirements and to identify the most effective methods for fulfilling these unique requirements
• Use knowledge, creativity, and analytic tradecraft best practices to generate solutions to complex problems where analysis of situations or data requires an evaluation of intangible variables under conditions of uncertainty
• Correlate intelligence, to develop deeper understandings of tracked threat activity
• Produce custom analytic products (written products, briefings, and graphics) for customers and internal teams based on conclusions and judgments derived from Mandiant data sources and independent research
• Work independently to meet tight deadlines
• Work closely with the other Mandiant teams to contribute to intelligence products, collection processes, and the data model
• Collaborate across the organization to stay up-to-date on cyber developments, Mandiant analytic stances, and previous Mandiant reports and briefings
• Provide some level of off-hours support for customer requests on a rotating basis
• Maintain confidentiality and ethics within the framework of the engagement
• Provide input and expertise to peers in the form of analytic reviews and guidance on best approaches to challenging analytic taskings
• Identify innovative ways to expand products/services, increasing value to customers and stakeholders
• Seek ways to improve the capacity of other personnel through mentoring, coaching and knowledge sharing
• Teach others to provide high quality products and services ideally suited to customer needs and expectations

Qualifications

• Strong communication skills and the ability to build a compelling and effective analytic narrative
• 8+ years of experience in an analytical or operational role (e.g. intelligence, threat analysis, security consulting)
• 5+ years practical experience analyzing cyber threats and a basic understanding of technical and cyber security concepts
• Ability to express complex technical and non-technical concepts verbally, graphically, and in writing for generalist and specialist audiences
• Must understand advanced analytic techniques and possess demonstrated success applying research methods and analytic techniques to independently address complex analytic problems
• Experience utilizing a variety of tools for analysis, providing input on future development and training for teammates
• Ability to work as part of a fast-paced, distributed virtual production team with limited supervision and under tight deadlines
• Ability to participate and provide input during business-critical situations and guide analysts on production and delivery to ensure intelligence reaches those who need to make decisions and drive operations
• Strong interpersonal skills with a customer-oriented attitude
• Experience guiding analysts in their personal development and application of analytic integrity and standards

Desired Additional Qualifications

• Familiar with some of the following areas and associated tools: intrusion operations, enterprise security controls, email analysis, log analysis, network flow and traffic analysis, malware triage, incident response processes, cyber attack lifecycles and models
• Familiar with programming in Python
• Foreign language skills
• Project and task management skills
• Experience providing briefings

Mandiant is currently looking for a Director, Strategic Alliances to help design, build, and implement a successful Partner strategy. The role will require: enabling solid, productive relationships at all levels within key partners, strengthen executive relationships, and to create and execute marketing & sales campaigns to accelerate our business opportunities within the Solution Provider ecosystem. 

Responsibilities: 

• Create the successful execution of an annual business plan with participation by focused technology partners & relevant individuals from Mandiant leadership. 

• Coordinate with internal stakeholders on technical enablement for relevant partners.   

• Develop a technical enablement strategy that supports the channel sales strategy for the territory. 

• Grows and maintains strong and productive relationships with executive leadership at assigned accounts that promote and enable account campaigns, plans, and marketing activities. 

• Conduct quarterly business reviews to review the progress and successful execution of the business, GTM, and relationship plans to ensure we are meeting our mutual business objectives and define any action plans to address any gaps or new opportunities. 

• Provide accurate and detailed weekly, monthly and quarterly forecast funnel of identified opportunities to meet or exceed quota requirements. 

• Facilitate engagement of our internal sales and technical teams with sales and technical teams. 

• Strategize with field marketing on design and execution of marketing programs/events/campaigns to create interest and awareness among the Solution Provider clients. 

• Maintain in-depth knowledge of Mandiant products, sales strategies/objectives, value proposition and competition. 

• Proactively maintain ongoing knowledge of industry, global and domestic geographies, existing and prospective accounts, & competitive landscape of the cybersecurity and threat intelligence industry. 

• 10+ years of successful enterprise channel and/or sales experience managing strategic accounts. 

• A proven track record of creating innovative enterprise solutions and successful Go-To-Market plans with leading Solution Provider Partners of at least 5 years of exceeding revenue targets. 

• Strategic thinker and hunter mentality who takes initiative and is capable of hands-on problem solving as well as ability to generate ideas and solutions. 

• A strong communicator and presenter, who possesses strong negotiation skills as well as sound interpersonal skills, with the ability to influence at senior levels. 

• Motivated and focused self-starter with strong leadership skills who is able to multi-task, work independently or within a team. 

• Strong organizational, presentation, and communication skills. 

Additional Qualifications 

• Ability to self-motivate and multi-task and work independently or within a team Success Factors. 

• Strong leadership skills. 

• Direct interaction with the Customers, Partners, Marketing, Peers and Manidant’s Corporate team will comprise a major portion of this assignment. 

Minimum Salary: $180,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations. 

Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms  

Benefits: Employer subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.  

*Disclosure as required by sb19-085 (8-5-20)  

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Trellix is a global company redefining the future of cybersecurity. The company’s open and native extended detection and response (XDR) platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix’s security experts, along with an extensive partner ecosystem, accelerate technology innovation through machine learning and automation to empower over 40,000 business and government customers. More at https://trellix.com.

We are looking for a Senior Research Engineer to help us build next generation detection of FireEye Appliances. The ideal candidate is someone who is passionate about solving real problems by turning cutting edge research into operational production solutions. The Researcher will drive email research, analysis (data-mining) and generate content for use in our products that enhance FireEye’s security content infrastructure, process workflow, and the malware intelligence portal. They will work with team at headquarters and other locations to support research and detection efforts.

What you will do:

• Build and drive Roadmap for detection efficacy and email research operation
• Perform data analysis to measure efficacy and continuously thrive to improve developed solutions.
• Forward Looking Research – Researcher will have the opportunity to develop leading edge
• prototypes to solve emerging challenges.
• Threat Analytics – Leveraging threat intelligence from different sources, identify patterns to correlate and establish the origin and flow of attacks.
• Dissect and Reverse Engineer advanced malware and cyber attacks
• Develop and maintain relationships with the research community
• Evangelize the deliverables to the partners, leadership, and stakeholders

Minimum Requirements:

• Minimum 2 to 5 years direct or equivalent experience in areas of email, advanced threats, spam and other aspects of cyber-attacks discovery.
• Minimum of 2+ years of experience in programming primarily C/C++ or Python
• Knowledge in Security and Malware detection technologies

Desired Qualification:

• Experience in big data infrastructure is a definite plus
• Preferred: Hands-on reverse engineering and knowledge of operating system
• Candidate should have good communication skills to respond to the support/customer queries.
• Able to work independently and be available at times during non-business hours to handle critical customer issues/malware outbreak.

Company Benefits: We work hard to embrace diversity and inclusion and encourage everyone at Trellix to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees. • Pension and Retirement Plans • Medical, Dental and Vision Coverage • Paid Time Off • Paid Parental Leave • Support for Community Involvement We're serious about our commitment to diversity, which is why Trellix prohibits discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.

Minimum Salary: $100,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations. 

*Disclosure as required by sb19-085 (8-5-20)  

Mandiant (formerly FireEye) has announced the sale of its Products business to Symphony Technology Group. Learn more about the sale here: https://www.fireeye.com/company/press-releases/2021/fireeye-announces-sale-of-fireeye-products-business-to-symphony-technology-group.html. This position will be part of the FireEye Security organization under the purchasing company. Our new company's security portfolio protects customers across endpoints, infrastructure, applications, and in the cloud. We will accelerate efforts to develop an integrated security platform powered by artificial intelligence and automation for superior threat detection and prevention.

The Strategic Transformation Team Lead has a workstream leadership role over a cross functional Team of Engineers, Developers, Analysts, and Administrators comprised of both Mandiant and client team members. The Team Lead is accountable for defining and tracking measurable progress toward business outcomes.  The Team Lead must have experience in leading teams to achieve results, crafting a vision for the Team, defining acceptance criteria, prioritizing work with the Team, making work visible, and working to support a culture of continuous improvement.

The Team Lead is a technical position that requires advanced skills and experience in security architecture, security governance, risk management, and cyber defense. The Team Lead must be capable of leading transformation and organizing a team to remediate risk. Candidates for this position must be willing and capable of providing feedback and mentoring to team members.

Candidates for this position must enjoy working as a member of a highly technical team in a rapidly changing environment, be innovative and creative in overcoming constraints, and have a passion for protecting client data and corporate assets from diverse threats.

What You Will Do:

• Develop project charters which provide background on an initiative, desired business outcomes, dependencies, and risks.
• Develop and prioritize release plans which define near-term business outcomes in support of the desired business outcome(s).
• Develop project backlog and lead backlog refinement sessions with the team
• Track progress toward the desired business outcome for the team and stakeholders
• Develop then publish and maintain project roadmap and schedule
• Facilitate retrospectives with the team upon completion of releases and project charters
• Facilitate daily standup meetings with the team to track progress and remove barriers
• Partner with clients to demonstrate project management capabilities
• Coordinate with incident investigations to integrate findings into remediation workstreams
• Collaborate with peers and multiple teams to identify improvements and identify areas for improvement to increase quality or team velocity 
• Lead technical meetings and working groups to address issues
• Provide project status updates to executive leadership on a recurring cadence

Minimum Requirements:

• 2+ years of security architecture, cyber defense, risk management, or any other similar cyber security experience.
• 3+ years of project management, Agile, and/or Lean, using Atlassian’s Jira and Confluence or similar technologies to define and track work.
• 3+ years experience leading teams to achieve results required via backlog refinement, release planning and daily standups.
• 2+ years experience with cloud services such as Azure, AWS, and GCP
• 2+ years experience with Active Directory

Desired Qualifications:

• Excellent problem-solving abilities
• Knowledge of network devices such as firewalls, switches, and routers
• Ability to effectively multi-task, prioritize and execute tasks in a high-pressure environment
• Effective communication and listening skills, a thorough approach to complex problem solving, decision-making ability, and a high motivation towards setting and delivering "excellence"
• Demonstrated ability to be flexible, positive, and creative in a dynamic, fast paced and changing environment
• Willingness to innovate to improve quality, efficiency, and team velocity
• Team-oriented and skilled in working within a collaborative environment
• Strong written and communication skills with the ability to present ideas in business-friendly and user-friendly language
• Experience instantiating projects in Jira is recommended
• Experience leading teams of Developers & Engineers is preferred
• Experience defining and documenting use cases is recommended
• Experience defining metrics to track progress is recommended
• Experience using the Scaled Agile Framework (SAFe) is preferred
• One or more of the following certifications are recommended:  CompTIA Security +; CompTIA Network +; Certified Information Systems Security Professional (CISSP); SANS-GIAC certification (Security Essentials)
• Knowledge of security tools such as SIEM, IDS/IPS, web proxies, DLP, CASB, XDR, SIEM, DNS security, DDoS protection, and firewalls
• Managerial experience is preferred
• Ability to clearly and concisely document and explain technical details (e.g., experience documenting incidents, technical writing, etc.)

As a U.S. federal contractor, Mandiant has adopted a COVID-19 Vaccination Policy to comply with our obligations under applicable laws and requirements. This position may be covered under Mandiant’s COVID-19 Vaccination Policy, as required in order to support federal contracts, access company offices and/or attend in-person meetings and work events. If covered under this policy, proof of vaccination against COVID-19 may be required as a condition of hire. At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Minimum Salary: $100,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations. 

Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms  

Benefits: Employer subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.  

*Disclosure as required by sb19-085 (8-5-20

Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

The Role:

Mandiant Intelligence seeks an experienced and motivated individual to be a member of our Vulnerability & Exploitation team, which is responsible for performing deep assessments of software and web application vulnerabilities, tracking exploit code releases and exploitation activities, and the creation of detailed and actionable reports in support of our global commercial and government customers.

As a Senior Vulnerability Intelligence Analyst, you will use your technical understanding to help our customers make sense of the thousands of new vulnerabilities that are disclosed each year, help them to understand what the current threat of exploitation is, and ultimately help them understand what they can do to protect against exploitation. A successful candidate should have a fundamental understanding of various types of vulnerabilities, what causes them, how an attacker could leverage them to perform malicious activities, and what organizations can do to mitigate them. Additionally, we are looking for candidates that possess basic development capabilities and the desire to utilize them for automating tasks and building tools to improve workflows. Finally, candidates should be self-motivated, willing to challenge themselves, and constantly striving for self-improvement.

Bottom line: You will help us do what we do best – protect the world from evil.

Responsibilities:

• Monitors public and proprietary sources for vulnerability information
• Performs deep assessment of vulnerabilities
• Researches and writes actionable reports
• Ensures the accuracy and integrity of information throughout reporting
• Responds to internal and external customer inquiries on vulnerabilities and related topics
• Reports on changes to the state of existing vulnerabilities to internal team members
• Maintains subject matter expertise in assigned areas

Minimum Requirements:

•  5+ years of Computer Security, Vulnerability Analysis, or Technical Analysis work experience
• 2+ years of software development experience, including functional ability to write code using Python
• Thorough understanding of different vulnerability types and common weakness enumeration (CWE)
• Familiarity with web application and/or OS-level vulnerability categories and documentation (OWASP, CVE)
• Strong writing skills with ability to communicate clearly and efficiently
• Strong interpersonal skills and ability to collaborate in a team environment
• Understanding of security and networking basics

Desired Qualifications:

• Able to communicate how an attacker would exploit vulnerabilities and the types of activity they could be used for
• Understanding of patch management and software development lifecycle (SDLC)
• Understanding of other common programming languages: C/C++, PHP, Perl, JavaScript, Ruby, SQL, Assembly, etc.
• Full-Stack or UI development experience
• Experience with software development concepts such as cloud-based deployment, CI/CD pipelines, and project management
• Experience reviewing and/or testing exploit code
• Experience developing functional exploit or proof-of-concept code
• Understanding of the general threat landscape and how vulnerabilities and their exploitation impact it

As a U.S. federal contractor, Mandiant has adopted a COVID-19 Vaccination Policy to comply with our obligations under applicable laws and requirements. This position may be covered under Mandiant’s COVID-19 Vaccination Policy, as required in order to support federal contracts, access company offices and/or attend in-person meetings and work events. If covered under this policy, proof of vaccination against COVID-19 may be required as a condition of hire. At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

The Role: 

The primary role of the Senior Technical Director – Data Analytics and Engineering is to develop, operationalize, and optimize programs, processes and systems to unlock the value of Mandiant’s data. This role will be responsible for the strategic success and day-to-day management and execution of several important new programs to provide product owners, customers, engineers, and leaders with new insights to improve the effectiveness of Mandiant’s products and services. 

Reporting to the VP of Platform Architecture and Engineering, this role requires a strong balance of technical skills with business strategy, program design, and communication. This remote position is US-based and will build a team of data analysis experts over time. 

You will play a key role in growing and transforming our analytics landscape across Mandiant. 

Responsibilities: 

• Develop and execute a strategic plan to leverage Mandiant’s extensive data resources to unlock value for customers, partners, and internal stakeholders. 
• Design complex data solutions 
• Perform analysis of complex sources to determine value and use and recommend data to include in analytical processes 
• In addition to your strong analytical mind, you will bring your inquisitive attitude and ability to translate stories found in data by leveraging a variety of data programming techniques 
• You will leverage your ability to design, build and deploy data solutions that capture, explore, transform, and utilize data to support security, product, customer and business intelligence/insights 
• Build and operationalize complex data solutions, correct problems, apply transformations, and recommend data cleansing/quality solutions 
• Incorporate core data management competencies including data governance, data security and data quality 
• Collaborate within and across teams to support delivery and educate end users on complex data products/analytic environment 
• Perform data and system analysis, assessment and resolution for complex defects and incidents and correct as appropriate 

• Master’s degree or equivalent training with data tools, techniques, and manipulation 
• Ten or more years of data engineering or equivalent experience 
• The ability to deliver work at a steady, predictable pace to achieve commitments, deliver complete solutions but release them in small batches, and identify and negotiate important tradeoffs. 
• Demonstrated track record of domain expertise including understanding technical concepts necessary and industry trends, and possess in-depth knowledge of immediate systems worked on and some knowledge of adjacent systems 
• Strong problem solver who ensures systems are built with longevity and creates innovative ways to resolve issues 
• Strong written and verbal communication skills with the ability to collaborate well with team members and business partners 
• Ability to build teams and lead effectively while creating a safe environment for others to learn and grow as engineers. Proven track record of self-motivation in identifying opportunities and tracking team efforts