Senior Security Researcher (Phishing)
New
Flexibility to work across the UK or eligible EMEA locationsFull-TimeSenior
Salary89,918 - 117,112 GBP per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 5+ years
- Required Skills
- PythonSQLData Analysis
Requirements
- 5+ years of experience in cybersecurity research, threat intelligence, security analysis, or similar roles.
- Strong understanding of modern phishing techniques, including phishing-as-a-service (PhaaS), AiTM, and device code attacks.
- Experience analyzing cybercriminal ecosystems, including exposure to deep/dark web intelligence gathering.
- Hands-on experience with human intelligence methods such as persona management, elicitation, and controlled engagement with threat actors.
- Strong analytical mindset with the ability to interpret complex datasets and extract actionable insights.
- Excellent written and verbal communication skills.
- High level of curiosity, autonomy, and comfort working in fast-paced, distributed environments.
- Ability to collaborate effectively with global teams while working independently.
- Strong interest in cybercrime disruption and adversary-focused research.
- Bonus: programming experience in Python, Go, or Rust.
- Bonus: experience with databases (SQL/NoSQL), data pipelines, or security analytics platforms.
- Bonus: familiarity with AI/LLM tools for data analysis or research acceleration.
Responsibilities
- Conduct in-depth research into phishing-as-a-service (PhaaS) ecosystems, including AiTM and device-code phishing techniques.
- Identify, track, and recapture phishing infrastructure and datasets using intelligence-led and investigative approaches.
- Perform human intelligence operations, including persona management, controlled engagements, and adversary interaction where appropriate.
- Analyze large and complex datasets to assess data quality and improve sourcing and detection pipelines.
- Support the development of security research outputs, including technical reports, threat analysis, and customer-facing insights.
- Collaborate with cross-functional teams to enhance data collection systems and improve automation and intelligence workflows.
- Investigate criminal underground activity, including deep and dark web ecosystems relevant to phishing operations.
- Contribute to continuous improvement of internal tooling, methodologies, and research frameworks.
View Full Description & ApplyYou'll be redirected to the employer's site
