Senior Threat Researcher

This is a fully remote position, open to applicants in United Kingdom.

📋 Description

• Evaluate sophisticated security threats—spanning from malware to intricate web attacks—and convert threat intelligence into precise detections across our platform.

• Guarantee that our analysts and clients receive highly precise, actionable alerts with minimal distractions.

• Utilize data from over 40 internal and third-party sources, collaborate with our CTU Threat Intelligence team, and apply various scripting and automation tools to enhance detection capabilities.

• Work together on the creation of internal tools, automation systems, and detection infrastructure.

⛳️ Requirements

• A strong enthusiasm for cybersecurity research and the capacity to swiftly grasp emerging technologies.

• Practical experience in scripting languages (PowerShell, Bash, Python) and proficiency in Python data science libraries (e.g., NumPy, Pandas, Matplotlib).

• Familiarity with CI/CD pipelines, testing frameworks, and automation concepts.

• Expertise in analyzing logs from firewalls, proxies, and security systems to detect anomalies.

• Understanding of event logs, traffic pattern anomalies, and threat hunting techniques.

• Solid knowledge of endpoint detection, Linux/Unix and Windows OS internals, vulnerability identification, and workflow automation.

• Forensic analysis of memory and disk images across various operating systems and file system types is a plus.

• Experience in malware analysis, including static/dynamic techniques and reverse engineering (IA32/64, ARM binaries) is a plus.

• Experience with event correlation and incident reconstruction using log data is a plus.

• Skills in network traffic analysis, including the identification of anomalous or malicious traits is a plus.

• A solid understanding of database querying, systems architecture, and process automation for operational enhancements is a nice to have.

🏝️ Benefits

• Sophos adopts a remote-first working model, making remote work the primary option for the majority of employees.

• Employee-led diversity and inclusion networks that foster community and provide education and advocacy.

• Annual charity and fundraising initiatives along with volunteer days for employees to support local communities.

• Global employee sustainability initiatives aimed at reducing our environmental impact.

• Global fitness and trivia competitions to keep our bodies and minds sharp.

• Global wellbeing days for employees to unwind and recharge.

• Monthly wellbeing webinars and training to promote employee health and wellbeing.