Malicious Network Activities Expert
Tetrad Digital Integrity (TDI) is a cybersecurity firm built for high-consequence environments where mission, complexity, and trust intersect. Our single focus has been delivering cyber solutions to effectively manage risk & the business of cyber for 25 years!
We are seeking an experienced and detail-oriented Malicious Network Activities Expert to support the evaluation of test subjects in the domain of network security. This role involves developing challenging and realistic test materials that assess a test subject's ability to understand and reason about malicious network behavior. The ideal candidate will have hands-on experience analyzing network traffic, identifying attack signatures, and crafting scenarios that mirror real-world threat patterns. Responsible for generating packet captures, designing unencrypted traffic scenarios, and creating question-answer pairs that evaluate the test subject’s ability to detect anomalies, recognize protocol misuse, and infer exploit behavior from network evidence. This position requires a strong foundation in network protocols, threat detection, and offensive security tooling. This position is remote.
RESPONSIBILITIES:
- Create question-answer pairs that test models on detecting malicious network activities
- Design scenarios involving unencrypted traffic analysis
- Develop examples that require pattern recognition in packet content
- Craft challenges that test understanding of request-response dynamics
- Create prompts that involve protocol-specific anomaly detection
- Generate packet captures of known exploits and test if models can identify the specific exploit or vulnerability
- Bachelor's degree in Network Security, Information Technology, or a related field.
- 4+ years in network security analysis or intrusion detection.
- GIAC Certified Intrusion Analyst (GCIA), GIAC Network Forensic Analyst (GNFA), Wireshark Certified Network Analyst (WCNA), Offensive Security Certified Professional (OSCP)
- Strong background in network security and traffic analysis
- Experience with common attack patterns and their network signatures
- Understanding of network protocols and their normal vs. abnormal behaviors
- Familiarity with packet analysis tools (e.g., Wireshark)
- Proficiency with exploitation frameworks (e.g., Metasploit, etc.) to generate realistic attack traffic
- Ability to capture and document network traffic containing specific vulnerabilities
- Knowledge of cybersecurity threat detection methodologies
- Ability to create realistic but challenging scenarios that test semantic understanding and inferential reasoning
- Experience in reverse engineering attacks from network traffic evidence
- Very Strong understanding of network protocols, experience with network monitoring tools. Create evaluation materials that test a model's ability to perform analysis of real-time network traffic patterns. Generate packet captures of known exploits using tools like Metasploit, then develop prompts that challenge the model to "work backward" from the traffic patterns to identify the specific exploit or vulnerability being leveraged in the attack.