Proofpoint

Senior Security Research Engineer

Proofpoint

full-time

Posted on:

Location Type: Remote

Location: Remote • Alabama, New Jersey, New Mexico, New York, North Carolina • 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $120,525 - $237,050 per year

Job Level

Senior

Tech Stack

Python

About the role

  • Stay abreast of a constantly evolving threat landscape including the credential phishing landscape
  • Analyse malware, malicious documents, and malicious URLs provided by internal and external sources
  • Conduct in-depth analysis of email messages to detect and classify threats such as business email compromise (BEC), phishing, and other malicious campaigns.
  • Apply critical thinking skills to identify the most efficient and effective way to mitigate the analysed threat
  • Develop, test, and deploy appropriate static and/or behavioural signatures to mitigate the analysed threat
  • Identify, prioritize, and fill coverage gaps for relevant threats to minimize customer impact
  • Be on the rotation for on-call to respond customer FN/FP escalations that cannot be addressed by customer support
  • Work effectively as part of a remote team using chat, video chat and conference calls
  • Work with engineering teams, defining requirements, for continuous improvement of critical detection capabilities

Requirements

  • A passion for threat research and a well-rounded yet deep understanding of the security threat landscape
  • Demonstrable understanding of the malware and credential phishing landscape, TTPs, and experience overcoming bypass techniques
  • Experience proactively identifying, responding to, and defending against malware and credential phishing threats in production environments
  • Familiarity with browser internals and the Document Object Model
  • Broad and demonstrable understanding of document formats commonly used for malicious purposes (e.g. OLE, CDFv2, PDF, OpenOffice, RTF)
  • Experience parsing and analysing malicious documents
  • Experience leveraging sandbox environments as an analysis tool
  • Critical thinking: Able to develop high quality detection signatures based on analysis of malicious behaviour
  • Experience creating YARA and/or ClamAV signatures used in production environments
  • Regular expression wizardry
  • Intermediate-level Python experience
  • Interest in learning sandbox engineering concepts and contributing ideas to extend capabilities a plus
  • Interest in creating synthetic malicious samples to test capabilities a plus
  • Willing and able to work independently and collaboratively as part of a distributed team of industry-leading security researchers
  • A hard-working, self-directed team player fully capable of working remotely
Benefits
  • Competitive compensation
  • Comprehensive benefits
  • Learning & Development: We are committed to the growth and development of our team members, offering a range of programs including leadership and professional development workshops, stretch project assignments, and mentoring opportunities to help employees reach their full potential.
  • Flexible work environment: [Remote options, hybrid schedules, flexible hours, etc.].
  • Annual wellness and community outreach days
  • Always on recognition for your contributions
  • Global collaboration and networking opportunities

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
malware analysiscredential phishingbusiness email compromise (BEC)static signaturesbehavioral signaturesYARA signaturesClamAV signaturesregular expressionsPythondocument formats
Soft skills
critical thinkingteam playerself-directedcollaborativecommunicationproblem-solvingadaptabilityindependenceattention to detailpassion for threat research
Recruiting.com

Senior Director, Cybersecurity Operating Office

Recruiting.com
Seniorfull-timePennsylvania, Texas · 🇺🇸 United States
Posted: 20 minutes agoSource: myhrabc.wd5.myworkdayjobs.com
Cyber Security
Solace

Senior Security Engineer

Solace
Seniorfull-time🇺🇸 United States
Posted: 22 minutes agoSource: jobs.ashbyhq.com
AzureCloudJamf
Rise8

Senior Cybersecurity Engineer – Top Secret

Rise8
Seniorfull-time$163k–$204k / year🇺🇸 United States
Posted: 1 hour agoSource: boards.greenhouse.io
AWSAzureCloudCyber SecurityDistributed SystemsDNSFirewallsKubernetesLinuxPythonTerraform
CrowdStrike

Senior Security Researcher – Mobile Malware Reverse Engineer

CrowdStrike
Seniorfull-time$85k–$120k / year🇺🇸 United States
Posted: 2 hours agoSource: crowdstrike.wd5.myworkdayjobs.com
Cyber SecurityPython
Climb Channel Solutions NA

Senior Cloud Security Engineer

Climb Channel Solutions NA
Seniorfull-time🇺🇸 United States
Posted: 5 hours agoSource: jobs.ashbyhq.com
AWSAzureCloudCyber SecurityGoogle Cloud Platform