Senior Threat Researcher – Behavioral Protection

🔥 0 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Sophos

WebsiteLinkedInAll Job Openings

1001 - 5000 employees

Founded 1985

🔒 Cybersecurity

☁️ SaaS

💰 Post-IPO Equity on 2021-08

Cybersecurity • SaaS

Sophos is a leading cybersecurity company that specializes in protecting businesses against advanced cyber threats. The company offers a comprehensive suite of security solutions, including endpoint protection, managed detection and response (MDR), network security, and cloud security. With a prevention-first approach, Sophos aims to stop ransomware and other cyber threats before they cause harm. Sophos provides services such as threat research, security training, and operational support to ensure robust defense against cyberattacks. Their solutions cater to various industries including finance, healthcare, government, manufacturing, and retail. The Sophos Central platform delivers centralized security management, integrating seamlessly with existing IT infrastructure to enhance security posture.

📋 Description

• Analyze malware behaviors aligned with MITRE ATT&CK TTPs (and beyond), covering the full attack lifecycle, including initial access vectors, execution techniques, payload delivery—with a strong focus on in-memory techniques, fileless malware, and evasive behaviors. • Research and identify behavioral techniques employed by novel and sophisticated Advanced Persistent Threats (APTs) and translate these insights into effective behavioral protection rules to enhance prevention capabilities. • Drive protection coverage for zero-day malware and novel attack techniques. • Work independently with minimal supervision while managing priority protection tasks. • Review and provide actionable feedback on detection logic and code developed by fellow researchers. • Collaborate with the team to define clear protection priorities and deliver updates to customers in a timely manner. • Produce quality threat analysis reports for both internal and external audience

🎯 Requirements

• Proven hands-on experience in Windows based malware analysis using both static and dynamic analysis tools such as using IDAPro and Windbg. • Deep understanding of behavioral techniques, memory injection methods, persistence mechanisms, and evasion tactics. • Ability to write robust, high-quality behavioral protection rules. • Demonstrated programming experience, preferably Python, Lua. • Experience working in a fast-paced threat research or security operations environment. • Strong communication skills and the ability to provide technical mentorship to peers. • Proactive, self-driven mindset with the ability to lead in critical incident or zero-day response scenarios.

🏖️ Benefits

• Sophos operates a remote-first working model, making remote work the primary option for most employees. However, some roles may necessitate a hybrid approach. • Our people – we innovate and create, all of which are accompanied by a great sense of fun and team spirit • Employee-led diversity and inclusion networks that build community and provide education and advocacy • Annual charity and fundraising initiatives and volunteer days for employees to support local communities • Global employee sustainability initiatives to reduce our environmental footprint • Global fitness and trivia competitions to keep our bodies and minds sharp • Global wellbeing days for employees to relax and recharge • Monthly wellbeing webinars and training to support employee health and wellbeing