Talent.com
Sr. Security Research Engineer
Sr. Security Research EngineerProofpoint • Phoenix, AZ, US
Sr. Security Research Engineer

Sr. Security Research Engineer

Proofpoint • Phoenix, AZ, US
job_description.job_card.variable_hours_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

Sr. Security Research Engineer – Proofpoint

Location : United States (remote)

About Us

Proofpoint is the leader in human-centric cybersecurity, protecting a half-million customers including 87 of the Fortune 100. We're driven by a mission to stay ahead of bad actors and safeguard the digital world. Join us in our pursuit to defend data and protect people.

How We Work

At Proofpoint, you'll be part of a global team that breaks barriers to redefine cybersecurity, guided by our BRAVE core values :

  • Bold in how we dream and innovate
  • Responsive to feedback, challenges, and opportunities
  • Accountable for results and best-in-class outcomes
  • Visionary in future-focused problem-solving
  • Exceptional in execution and impact

Corporate Overview

Proofpoint protects organizations' greatest assets and biggest risks with an integrated suite of cloud-based solutions. We help companies stop targeted threats, safeguard data, and make users more resilient against cyber-attacks. Leading organizations of all sizes, including more than half of the Fortune 1000, rely on our people-centric security and compliance solutions.

The Role

This highly technical role has a direct and real-time impact protecting Proofpoint customers. As a Senior Security Research Engineer on the Threat Research team, you'll track threat actors, malware, phishing, and TTPs to develop static and dynamic (behavioural) signatures that detect and prevent threats on a massive scale. You will keep abreast of and analyze attacker techniques, malware, and phishing campaigns, using that knowledge to counteract threats broadly.

Your day-to-day

  • Stay abreast of a constantly evolving threat landscape including the credential phishing landscape
  • Analyze malware, malicious documents, and malicious URLs provided by internal and external sources
  • Conduct in-depth analysis of email messages to detect and classify threats such as business email compromise, phishing, and other malicious campaigns
  • Apply critical thinking skills to identify the most efficient and effective way to mitigate the analyzed threat
  • Develop, test, and deploy appropriate static and / or behavioural signatures to mitigate the analyzed threat
  • Identify, prioritize, and fill coverage gaps for relevant threats to minimize customer impact
  • Be on the rotation for on-call to respond to customer FN / FP escalations that cannot be addressed by customer support
  • Work effectively as part of a remote team using chat, video chat, and conference calls
  • Work with engineering teams, defining requirements, for continuous improvement of critical detection capabilities

    • What You Bring To The Team

  • A passion for threat research and a well-rounded yet deep understanding of the security threat landscape
  • Demonstrable understanding of the malware and credential phishing landscape, TTPs, and experience overcoming bypass techniques
  • Experience proactively identifying, responding to, and defending against malware and credential phishing threats in production environments
  • Familiarity with browser internals and the Document Object Model
  • Broad and demonstrable understanding of document formats commonly used for malicious purposes (e.g., OLE, CDFv2, PDF, OpenOffice, RTF)
  • Experience parsing and analyzing malicious documents
  • Experience leveraging sandbox environments as an analysis tool
  • Critical thinking : able to develop high-quality detection signatures based on analysis of malicious behavior
  • Experience creating YARA and / or ClamAV signatures used in production environments
  • Regular expression wizardry
  • Intermediate-level Python experience
  • Interest in learning sandbox engineering concepts and contributing ideas to extend capabilities (a plus)
  • Interest in creating synthetic malicious samples to test capabilities (a plus)
  • Willing and able to work independently and collaboratively as part of a distributed team of industry-leading security researchers
  • A hard-working, self-directed team player fully capable of working remotely
  • Travel 10%
  • Must be able to work during business hours local to your time-zone

    • Benefits

  • Competitive compensation
  • Comprehensive benefits
  • Learning & Development : leadership and professional development workshops, stretch project assignments, and mentoring opportunities
  • Flexible work environment (remote options, hybrid schedules, flexible hours)
  • Annual wellness and community outreach days
  • Recognition for your contributions
  • Global collaboration and networking opportunities

    • Our Culture

    Our culture is rooted in values that inspire belonging, empower purpose, and drive success every day for everyone. We encourage applications from individuals of all backgrounds, experiences, and perspectives. If you need accommodation during the application or interview process, please reach out to accessibility@proofpoint.com.

    How to Apply

    Submit your application at https : / / www.proofpoint.com / us / company / careers. We can't wait to hear from you!

    J-18808-Ljbffr

    serp_jobs.job_alerts.create_a_job

    Sr Security Engineer • Phoenix, AZ, US