Security Analyst for Infected Websites (Contract)

3+ years of experience with WordPress required Technical experience with common web application based vulnerabilities in WordPress plugins and themes Solid understanding of WordPress hooks Experience with administering multiple Linux stacks Experience with MySQL 2+ years of experience conducting remediation of compromised websites Experience in vulnerability research is a plus Ability to develop proof of concepts programmatically or conceptually Ability to replicate the exploitability of vulnerabilities in a test environment Ability to review source code changes to determine if a vulnerability was patched Experience generating/modifying HTTP requests Experience working with BURP suite or similar proxy software and a PHP debugger Solid understanding of regular expressions Ability to write and read PHP, regular expressions, cron jobs, and JavaScript Understanding of all major vulnerability types Ability to analyze log files Highly technical and comfortable with a wide range of open source tools Excellent written and verbal communication skills Ability to interact with customers professionally Work well in a team and work independently without additional guidance Excellent analytical ability, ability to think outside of the box, and an eagerness to learn Must have attention to detail

Investigate site intrusions Repair compromised websites Remove all traces of compromise Collect and process evidence from intrusions Determine how intrusions occurred Collect IOCs Work with Threat Intelligence team on vulnerability research and malware signature development Triage and validate vulnerability reports Assess impact to prioritize submissions Reproduce and analyze vulnerabilities in controlled environments Identify root causes in source code Document findings Recommend fixes or custom firewall rules Propose bounty amounts Collaborate with developers, customer support, and disclosure teams Validate that patches are sufficient