Cyber Threat Investigator

The Yahoo Mail mobile team owns and operates two of the most popular apps in the world, for millions of people daily. The apps are vital to the company's success and are relied upon by people for critical tasks every day. We take our responsibility very seriously and work together to focus on user needs first, which drives the success of our products. We pride ourselves on high quality and setting engineering and product standards in the industry.

You are a dynamic, experienced cyber threat investigator who tackles serious problems at Yahoo scale. Your interpersonal and communication skills will help insure that stakeholders across the company are represented and their issues are addressed and investigated by the Advanced Threats team. You can adeptly manage multiple technically-demanding cases while achieving results. You are a proven collaborator with others in industry and academia.

* Work with internal teams - such as Legal, Mail, PR, Customer Care, the Paranoids, and others - to ensure that any targeted threat issues encountered on Yahoo properties are identified and escalated to the Advanced Cyber Threats team * Utilize internal Yahoo tools, cyber-threat intelligence feeds, and external open-source resources to conduct independent, efficient, and comprehensive investigations * Collaborate with other Advanced Cyber Threats investigators and other Paranoids teams on emerging issues and incidents * Deliver results by reducing account hijacking and malware activity on our platforms through targeted, purposeful actions

* B.S. in Computer Science or related technical field; higher degrees are a plus * A passion for protecting users and making the Internet a safer place for everyone * Proven track record of investigating large-scale internet abuse issues * 3-5 years experience in information security, forensics, threat intelligence, or counterintelligence * Intermediate to advanced development or scripting experience in Perl, Python, PHP, or related languages; data storage experience in MySQL, Hadoop, or similar * Must possess excellent written communication skills and the proven ability to understand and present complex technical information to both technical and nontechnical audiences * Comfortable with ambiguity, and a self-starter capable of interfacing with engineering, policy, legal, and product teams * Familiar with the current nation-state (“APT”) threat landscape and the various actors and groups involved * Experience in malware analysis and/or reverse engineering a plus