Staff Security Research Engineer

Overview

Staff Security Research Engineer role at Proofpoint. We are the leader in human-centric cybersecurity, serving half a million customers including 87 of the Fortune 100.

Proofpoint is a leading cybersecurity company protecting organizations' greatest assets and biggest risks. We help companies stop targeted threats, safeguard data, and make users more resilient against cyber-attacks. Protection starts with people.

Your Day-to-Day

• Design and develop software using a variety of languages, primarily Python, with little external guidance, while providing technical leadership to guide other software engineers on the team
• Modify existing web-based UI for internal tools to maintain and extend the sandbox submission and report UI for Proofpoint threat researchers
• Write C or C++ for low-level OS interactions as needed
• Develop and maintain web browser interaction capabilities using Chrome WebDriver
• Analyze and reverse engineer JavaScript that fingerprints web browser artifacts to identify sandbox detectors or instrumentation, and create solutions to defeat those checks
• Familiarity with analyzing web front-end and the DOM
• Develop and maintain software for processing network traffic, including TLS decryption and processing PCAP files
• Collaborate with threat analysts and detection engineers who research threat actors and write detection rules for the systems you develop
• As needed, create new detection languages and systems to allow threat researchers to develop detection rules
• Enhance threat detection pipelines by adding features to existing detection languages for automation and threat pattern detection
• Utilize AI Large Language Models where appropriate to enhance threat detection, test evasion countermeasures, and judge when AI adds value
• Design and develop automation pipelines to turn manual tasks into automated scripts
• Stay abreast of a constantly evolving threat landscape
• Understand tactics, techniques, and procedures used by threat actors to bypass detection environments, especially URL sandbox fingerprinting / detection / evasion techniques
• Provide expert assistance to threat researchers analyzing phishing websites, evasion techniques, and security research or red team demonstrations as needed
• Reverse engineer malware executable files for Windows as needed to support sandbox countermeasure development (primary malware reverse engineering responsibilities rest on other roles and are not expected regularly for this role)
• Apply critical thinking to identify efficient and effective threat mitigation
• Work effectively as part of a remote team using chat, video, and conference calls
• Collaborate with other engineering teams to continuously improve critical detection capabilities

What You Bring To The Team

The following skills are nice to have, but candidates lacking them should still apply

Additional Information

Why Proofpoint

We are customer-focused and driven to win, with leading edge products and a culture of collaboration. We offer a comprehensive compensation and benefits package and global opportunities. If you need accommodation during the application or interview process, please reach out to accessibility@proofpoint.com.

Job Details

J-18808-Ljbffr