What makes the role special

We are seeking a skilled Cybercrime Investigator to join our High-Tech Crime Investigation team. In this role, you will delve into the world of cybercriminals, investigating a wide range of digital crimes. This role requires a sharp mind, attention to detail, and a strong technical background to identify, analyze, and counteract cyber threats. Your work will play a vital role in safeguarding our clients and the broader community against cybercriminal activities.

Tasks to solve

  • Investigation of cyber incidents including phishing attacks, data theft, web server compromise, malware attacks, DDoS, etc.
  • Collect and analyze digital evidence: logs, emails, servers and workstation images.
  • Reconstruction of the incident chronology, TTPs of threat actors and their toolkit.
  • Identify developers of malware and administrators behind the websites.
  • Develop hypothesis and problem solving skills.

This role is perfect for you if

  • Bachelor’s Degree in Computer Science, Cybersecurity or related field (or equivalent work experience).
  • 3 – 5 years of experience in cybersecurity.
  • Strong interest in tackling non-standard, complex challenges in the realm of cybercrime investigation.
  • Highly Motivated, detail-oriented and patient when working on cybercrime cases.
  • OSINT skills:
    • Research accounts on social networks,
    • Understand Google Dorks,
    • Ability to identify location based on photos (GEOSINT),
    • Ability to correlate fraudulent URLs belonging to the same fraudulent campaign
    • Ability to correlate malware samples belonging to the same malware campaign.
  • Web Administrator skills:
    • Experience in Windows, Linux,
    • Good Understanding how internet protocols work
    • Good Understanding how DNS work
    • Experience with web hosting and email servers
    • General understanding of databases, web servers, CMS
  • Penetration Testing skills:
    • Good understanding on common web vulnerabilities and exploitation (with focus on remote code execution);
    • Proficient in scripting in one of the following languages: bash, Powershell, Python
    • Basic knowledge on binary exploitation, reverse engineering
  • Fluency in English and Vietnamese

What else we appreciate in our team

  • Experience working on Digital Investigations or Threat Intelligence or Penetration Testing.
  • Programming skills, in languages such as PHP, Python, or Javascript.
  • Possess any of the Information Security certifications (GIAC, CompTIA, EC-Council, ICS2, CREST, etc.).
  • Familiar with cyber threats, modern fraud schemes and cyber-attacks methods.
  • Strong report writing skills in English, with the ability to present findings clearly and concisely.
  • Basic knowledge on web application security tools such as Burp Suite, SQLMap or WPScan.