Senior Staff Threat Researcher, Detection Engineering
Arctic Wolf
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇺🇸 United States
Visit company websiteJob Level
Senior
Tech Stack
LinuxMacOSPython
About the role
- Act as a mentor to R&D technical leaders.
- Apply broad expertise and knowledge in highly specialized fields or several related disciplines.
- Lead and contribute to the development of company objectives and principles to achieve goals in creative and effective ways.
- Produce specifications and determine operational feasibility.
- Work on significant and unique issues where analysis of situations or data requires an evaluation of intangibles.
- Apply conceptual thinking to understand advanced issues and implications.
- Exercise independent judgment in methods, techniques, and evaluation criteria for obtaining results.
- Accountable for results, which may impact the entire function.
- Create formal networks involving coordination among groups.
- Focus on providing thought leadership and work on broader organizational projects which require understanding of wider business, by conveying advanced information and persuading several diverse stakeholders/audiences.
- Recognized internally and externally as a subject matter expert.
Requirements
- 10 or more years of professional experience as a security architect, detection developer, reverse engineer, security researcher or CNO developer
- Expert-Level Python expertise
- OS Specific Telemetry (Windows Security/Sysmon logs, Linux, MacOS)
- Windows PowerShell Monitoring
- SIEM Detections
- EDR detections/signatures
- Suricata, Sigma and Yara Rules
- Development of anomaly and behavioral based detections
- Tuning and optimization of detections for all the above
- Experience with leading and mentoring groups of developers while contributing code independently.
- Experience designing and building detection frameworks and processes
- Experience managing and measuring security efficacy of detections
- Experience managing and measuring cost efficiency of detection frameworks
- Deep understanding of networking security principles and flows
- Experience leading Agile development teams, preferably with formal Agile training
Benefits
- Equity for all employees
- Flexible time off and paid volunteer days
- RRSP and 401k match
- Training and career development programs
- Comprehensive private benefits plan including medical, mental health, dental, disability, life and AD&D, and value-added services
- Robust Employee Assistance Program (EAP) with mental health services
- Fertility support and paid parental leave
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
PythonOS Specific TelemetryWindows SecuritySysmon logsLinuxMacOSWindows PowerShellSIEM DetectionsEDR detectionsSuricata
Soft skills
mentoringleadershipindependent judgmentconceptual thinkingcommunicationpersuasioncollaborationaccountabilitythought leadershipnetworking