Staff Security Research Engineer

September 18

Apply Now

Receive Emails with Similar Jobs

Proofpoint

WebsiteLinkedInAll Job Openings

Cybersecurity • Enterprise • Security

Proofpoint is a company that specializes in cybersecurity solutions, particularly focused on protecting enterprise users from targeted phishing emails and other threats. Their Targeted Attack Protection (TAP) product is designed to provide advanced threat security by checking the safety of websites linked in emails. If a site is deemed safe, users are redirected to the original web destination; if not, access is blocked to prevent exposure to malware. Proofpoint ensures secure email communications within organizations.

1001 - 5000 employees

Founded 2002

🔒 Cybersecurity

🏢 Enterprise

🔐 Security

💰 $28M Series F on 2008-02

📋 Description

• Design and develop software using a variety of languages, primarily Python, with little external guidance, while providing technical leadership • Modify web-based UI for internal tools to maintain and extend sandbox submission and report UI • Write C or C++ for low level interactions with the OS when required • Develop and maintain web browser interaction capabilities using Chrome web driver • Analyze and Reverse Engineer JavaScript that fingerprints web browser artifacts and innovate solutions to defeat those checks • Develop and maintain software for processing network traffic, including TLS decryption and processing PCAP files • Work closely with threat analysts and detection engineers who research threat actors and write detection rules • Create new detection languages and systems and add features to existing threat detection languages • Make use of AI Large Language Models to enhance threat detection pipelines where appropriate • Design and develop automation pipelines to turn manual tasks into automated scripts • Stay abreast of evolving threat landscape and understand latest tactics, techniques, and procedures used by threat actors • Provide expert assistance and support to threat researchers and analysts analyzing phishing websites and evasion techniques • Reverse engineering malware executables for Windows as needed to support sandbox countermeasure development • Work effectively as part of a remote team using chat, video chat and conference calls • Work with other engineering teams, defining requirements for continuous improvement of critical detection capabilities

🎯 Requirements

• Ability to write production-grade, reliable Python code with instrumentation • Experience developing software using Docker containers • Experience developing web browser automation • Experience analyzing network traffic for threat detection and understanding of TLS, HTTP, and other network protocols • Willing and able to work independently and collaboratively as part of a distributed team of security researchers • Ability to perform in a fully remote work environment • A passion for threat research and understanding of security threat landscape and actor TTPs • Familiarity with analyzing web front-end and the Document Object Model (DOM) • Some skill in modifying existing web-based UI for internal tools • Some work requires skill in writing C or C++ for low level interactions with the OS (nice to have) • Experience with C and C++ is a plus (nice to have) • Experience developing Windows API hooks and knowledge of undocumented Windows API internal functions is a plus (nice to have) • Experience writing malware behavior signatures (nice to have) • Some experience analyzing malware using a debugger and willingness to learn (nice to have) • Experience with static reverse engineering tools (IDA Pro, Ghidra, Binary Ninja) is a plus (nice to have) • Experience with a variety of publicly-available malware sandboxes (Cuckoo, Joe Sandbox, Any Run, Triage) is a plus (nice to have) • Travel: 1% - 10% (flexible) • Must be able to work during business hours local to your time-zone

🏖️ Benefits

• Competitive compensation • Comprehensive benefits • Learning & Development: range of programs including leadership and professional development workshops, stretch project assignments, and mentoring opportunities • Flexible work environment: [Remote options, hybrid schedules, flexible hours, etc.] • Annual wellness and community outreach days • Always on recognition for your contributions • Global collaboration and networking opportunities • Flexible time off • Comprehensive well-being program with two paid Wellbeing Days and two paid Volunteer Days per year • Three-week Work from Anywhere option