We are looking for a Security Researcher to join our Windows EDR behavioral detection team.
You will create statistics-based classification algorithms detecting everything from new malware through process behavior and attackers operating in enterprise-scale networks using data from multiple Windows endpoints; from analyzing attack patterns, finding statistical anomalies, and validating that you detect real attacks and APTs on real customer data.
Your Impact
Research new methods to detect various attack techniques by utilizing enormous amounts and varied types of data
Use and develop statistical algorithms and techniques to create and improve our analytics detection capabilities
Take an active role in our collection modules by improving the ones that are already available and investigating new collection modules that will improve the quality of our detections
Simulate attacks in the lab and conduct a deep analysis of the behavior
Be part of a diverse research group, improving our research processes and leading us to be a better team, creating a better product
Stay up to date with APTs, attacker methodologies, and TTPs.
You will create statistics-based classification algorithms detecting everything from new malware through process behavior and attackers operating in enterprise-scale networks using data from multiple Windows endpoints; from analyzing attack patterns, finding statistical anomalies, and validating that you detect real attacks and APTs on real customer data.
Your Impact
Research new methods to detect various attack techniques by utilizing enormous amounts and varied types of data
Use and develop statistical algorithms and techniques to create and improve our analytics detection capabilities
Take an active role in our collection modules by improving the ones that are already available and investigating new collection modules that will improve the quality of our detections
Simulate attacks in the lab and conduct a deep analysis of the behavior
Be part of a diverse research group, improving our research processes and leading us to be a better team, creating a better product
Stay up to date with APTs, attacker methodologies, and TTPs.
Requirements:
In-depth knowledge of the inner-workings of operating systems (Especially Windows)
Intimate knowledge and understanding of attack methods and techniques over endpoints and enterprise
Vast experience and interest in malware research or development
Python software development experience
Comfortable conducting research and gathering insights by querying large databases
Ability to drive and own projects
Independent and team player, critical thinker
Advantages:
Experience in machine learning or data analysis
Reverse engineering knowledge and experience
Advanced knowledge of Microsoft AD infrastructure
Exploitation knowledge and experience.
In-depth knowledge of the inner-workings of operating systems (Especially Windows)
Intimate knowledge and understanding of attack methods and techniques over endpoints and enterprise
Vast experience and interest in malware research or development
Python software development experience
Comfortable conducting research and gathering insights by querying large databases
Ability to drive and own projects
Independent and team player, critical thinker
Advantages:
Experience in machine learning or data analysis
Reverse engineering knowledge and experience
Advanced knowledge of Microsoft AD infrastructure
Exploitation knowledge and experience.
This position is open to all candidates.
