Cybersecurity Researcher, Threat Analysis and Detection Engineering

🕒 May 7

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Acronis

WebsiteLinkedInAll Job Openings

1001 - 5000 employees

Founded 2003

🔒 Cybersecurity

☁️ SaaS

🤝 B2B

Cybersecurity • SaaS • B2B

Acronis is a cyber protection company that provides integrated backup, disaster recovery, and cybersecurity solutions delivered as cloud-native and on-premises software. It offers endpoint protection (EDR/XDR), anti-malware, email and Microsoft 365 protection, RMM and PSA tools, and MSP-focused multi-tenant management to enable service providers and businesses to detect, respond, and recover from cyberthreats. Acronis operates globally with compliant data centers, certifications, and a platform designed to consolidate backup, security, and IT management into a single solution.

📋 Description

• Research adversary tactics, techniques, and procedures (TTPs) and translate them into detection and prevention capabilities for Acronis Security and EDR products • Analyze malicious and benign content — executables, scripts, documents, memory dumps, network traffic, exploit chains — to identify indicators and behavioral patterns • Develop, tune, and maintain detection logic, signatures, and behavioral rules across multiple expression languages and rule formats • Monitor and improve automated detection pipelines to maintain high efficacy and low false-positive rates • Track emerging threats through open-source intelligence, telemetry analysis, and threat feeds to ensure coverage keeps pace with the landscape • Collaborate with scan engine and product engineering teams on joint research projects and new security features • Publish original research through blog posts, whitepapers, and conference presentations

🎯 Requirements

• Deep understanding of modern attack techniques, common malware families, OS internals (Windows required; macOS and Linux are a plus) • 5+ years of hands-on experience in one or more of: malware analysis (static, dynamic, behavioral), detection engineering, threat hunting, incident response, or insider threat investigation • Proven ability to develop detection logic — whether that's YARA, Sigma, EQL, KQL, custom behavioral signatures, or something else entirely • Comfortable working with threat intelligence platforms and frameworks: VirusTotal, Shodan, MISP, MITRE ATT&CK, or similar • Software development skills in Python; familiarity with REST APIs, SQL, and regex • C/C++ is a plus • Solid written and spoken English

🏖️ Benefits

• Health insurance • 401(k) matching • Paid time off • Flexible work hours • Professional development • Equipment allowances