Staff Security Researcher, Attack Paths

About Us:

SentinelOne is defining the future of cybersecurity through our XDR platform that automatically prevents, detects, and responds to threats in real-time. Singularity XDR ingests data and leverages our patented AI models to deliver autonomous protection. With SentinelOne, organizations gain full transparency into everything happening across the network at machine speed – to defeat every attack, at every stage of the threat lifecycle. 

We are a values-driven team where names are known, results are rewarded, and friendships are formed. Trust, accountability, relentlessness, ingenuity, and OneSentinel define the pillars of our collaborative and unified global culture. We're looking for people that will drive team success and collaboration across SentinelOne. If you’re enthusiastic about innovative approaches to problem-solving, we would love to speak with you about joining our team!

What are we looking for?

We are looking for talented offensive security researchers, people that are hungry for knowledge, curious, explorers, observents, and ready to leave no stone unturned on their way to the next bypass. If you are eager to learn and try the newest attack techniques, enjoy compromising and exploiting systems - we’re looking for you.

What will you do?

You will proactively look for the newest and most sophisticated attacks techniques, deeply research and understand their internals and emulate these attacks in order to assess and improve our detection engines.

You will be conducting a comprehensive analysis of potential attack paths within diverse systems and networks in cloud environments. You will be responsible for identifying and prioritizing potential vulnerabilities and weaknesses that could be exploited by cyber adversaries.

You will build tools to support detection assessments, create proof-of-concepts for the newest techniques & exploits, and develop automation flows to automate unconventional attacks and offensive frameworks.

You will work closely with our Threat-Intelligence team, research and engineering detection teams, to provide guidance and expertise in attack path analysis. 

You will be responsible for writing detection content for attack path scenarios and threats and checking for false positive rates.

What experience or knowledge should you bring?

• • Experience in cloud attack path analysis, vulnerability assessment, and threat modeling.
  • Familiarity with cloud services, Kubernetes, cloud architecture, and major cloud providers (AWS, GCP, Azure).
  • In-depth understanding of cloud ecosystem, security principles, services, configurations, best practices, and relevant frameworks.
  • 2+ years of experience in Red Teaming / Offensive Research / Penetration Testing with deep understanding of OS internals (Windows/Linux).
  • Hands-on experience with coding in Python and C/C++.
  • Deep understanding of the malware world (how malware operates, infamous families, evasion and exploitation techniques).
  Advantage
  • Experience in malware analysis (statically and dynamically) and reverse engineering (x86/x64).
  • Understanding of existing AVs internals.
  • Experience writing detection signatures/heuristics.

Why us?

We are at the forefront of the most dominant space of the Cyber Security market. You'll be working closely with some of the best researchers on the planet on the most innovative and challenging features that will shape the future of Cyber Security. You will be part of a truly global team that is rapidly growing around the world, on an amazing journey of success. You will work with great people in an open, fun environment, and you will be part of an organization that truly values its people.

• Study Funds- SentinelOne contributes 7.5% over your base salary (no tax ceiling is applied), and employees contribute 2.5% of their base salary
• Pension fund- SentinelOne contributes to your pension fund according to local law. Pension contribution may vary based on the selected plan.
•  RSUs- 4 years vesting with 1-year cliff and then quarterly.
• Annual bonus (depending on the performance of the company) paid out in 2 cycles
• Employee Stock Purchase Plan- The plan enables employees to purchase SentinelOne stocks at discounted prices vs. market value. (the plan is subject to local taxation)
• Company time off and holidays
• Private medical insurance
• Meal allowance
• Home office allowance
• Hybrid work model- The possibility of working both from the office and working from home
• Parental Leave - Embracing a new child into the family is a unique moment for everyone! In support of that, we offer 20 weeks of fully paid leave for the birth parent and 12 weeks of paid leave for the non-birth parent
• Employee Assistance Program- Psychological sessions with certified therapists to help you overcome stress, personal and professional challenges
• Free Parking in our office building 
• Music Room fully equipped room
• Wellness- workout sessions and a wellness app

SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

SentinelOne participates in the E-Verify Program for all U.S. based roles.