Cyber Security Analyst – Network Security Intelligence

• Location: Spain
• Work model: Remote, with occasional on-site presence in Madrid.

Mission

Analyze and classify malicious domains blocked by a network-level cybersecurity solution. You'll identify threat type, intent, and behavior, and help transform this analysis into automated insights used in dashboards, reports and threat intelligence

You'll work independently on investigations while collaborating closely with Data & BI teams to scale your findings.

What You'll Do

• Analyze blocked domains and URLs to identify threats (phishing, malware delivery, scams, adware, C2, fraud, crypto scams)
• Investigate threats using VirusTotal (API/Enterprise) and other TI sources
• Correlate domains, IPs, URLs, and detections to identify campaigns and patterns
• Define and maintain threat classification rules with data engineers
• Validate automated classifications through manual sampling and deep dives
• Co...