Web Security Malware Analyst (Hybrid – Lisbon)
English Required / Based in Lisbon, Portugal / Hybrid
We are seeking a Front End/ Web Engineer with a strong foundation in web technologies who is eager to develop expertise in cybersecurity. This role focuses on analyzing, reverse engineering, and securing browser-based applications, with particular emphasis on web extensions. You will be trained to identify malicious behaviors, conduct security assessments, and contribute to automation and process improvements throughout the security analysis lifecycle.
Key Responsibilities:
Perform analysis of web browser extensions using static and dynamic methods to identify malicious behavior and security issues.
Reverse engineer and debug JavaScript to understand complex or obfuscated code.
Detect, document, and report security vulnerabilities, including root cause analysis and remediation recommendations.
Assist in the investigation and takedown of malicious browser extensions.
Carry out regular code reviews and provide feedback aligned with secure coding standards.
Review and inspect JavaScript code to identify suspicious or malicious activity, performing reverse engineering when required.
Design and implement detection rules and security patterns to identify violations at scale.
Monitor emerging threat trends and share findings to strengthen detection capabilities across the team.
Propose improvements, contribute innovative ideas, and support the automation of existing processes.
Serve as a technical reference point, offering guidance, clarification, and technical support to team members.
Work closely with cross-functional teams while maintaining clear and accurate technical documentation.
Support the continuous enhancement of security workflows and tooling.
You are someone who brings:
Strong hands‑on experience with JavaScript, including advanced concepts such as closures, prototypes, variable scope, hoisting, callbacks, and OOP principles.
Required hands‑on experience with HTML and CSS.
Required knowledge of JSON, AJAX, and ES6/ES7 standards.
Good understanding of Node.js and Webpack.
Experience working with front‑end frameworks or libraries such as React, Angular, or jQuery.
Strong code analysis, debugging, and reverse engineering skills, particularly in JavaScript applications.
Ability to analyze JavaScript code and identify malicious activities effectively.
Good communication skills and the ability to work as a collaborative team player.
Added Advantages (Nice to Have):
Cybersecurity experience or strong security knowledge.
Familiarity with DAST and SAST methodologies.
Knowledge of cybersecurity open‑source tools such as Burp Suite, Nmap, or similar tools.
Understanding of obfuscation and de‑obfuscation techniques.
Experience writing technical and security assessment reports.
Acerca de Cognizant
Cognizant (Nasdaq: CTSH) es un creador de soluciones de IA y proveedor de servicios tecnológicos que conecta la inversión en IA con el valor empresarial mediante el desarrollo de soluciones de IA full‑stack para sus clientes. Su profundo conocimiento de la industria, junto con su experiencia en procesos e ingeniería, permite incorporar el contexto único de cada organización en sistemas tecnológicos que amplifican el potencial humano, generan resultados tangibles y mantienen a las empresas a la vanguardia en un entorno en constante cambio. Más información en cognizant.ai o @cognizant.
Información adicional sobre el empleo
La información sobre la compensación es exacta en la fecha de publicación de este anuncio. Cognizant se reserva el derecho de modificar esta información en cualquier momento, de conformidad con la legislación aplicable.
Es posible que se solicite a los solicitantes que asistan a entrevistas de forma presencial o mediante videoconferencia. Asimismo, durante cada entrevista, los candidatos podrán estar obligados a presentar un documento de identidad válido emitido por el estado o por el gobierno.
Cognizant es un empleador que ofrece igualdad de oportunidades. Su solicitud y candidatura no se evaluarán en función de la raza, el color, el sexo, la religión, el credo, la orientación sexual, la identidad de género, el origen nacional, la discapacidad, la información genética, el embarazo, la condición de veterano ni cualquier otra característica protegida por las leyes federales, estatales o locales.
