Senior Threat Researcher

About Us:

SentinelOne is defining the future of cybersecurity through our XDR platform that automatically prevents, detects, and responds to threats in real-time. Singularity XDR ingests data and leverages our patented AI models to deliver autonomous protection. With SentinelOne, organizations gain full transparency into everything happening across the network at machine speed – to defeat every attack, at every stage of the threat lifecycle. 

We are a values-driven team where names are known, results are rewarded, and friendships are formed. Trust, accountability, relentlessness, ingenuity, and OneSentinel define the pillars of our collaborative and unified global culture. We're looking for people that will drive team success and collaboration across SentinelOne. If you’re enthusiastic about innovative approaches to problem-solving, we would love to speak with you about joining our team!

What will you do?

• Utilize expertise in Windows internals, Active Directory security, and tools to analyze attack behaviors.
• Research, develop, and troubleshoot attack detection content/rules/code for Windows endpoint, server, and Virtual Machine solutions.  
• Participate actively in product design, brainstorming meetings, and code reviews. 
• Work with the quality assurance team to ensure delivery of a high-quality product. 
• Research, diagnose, troubleshoot and identify solutions to resolve customer issues

What skills and knowledge should you bring?

• Expertise in Windows internals, Active Directory, scripting (PowerShell, python), C/C++, a must.
• Experience in threat research, and content development for security solutions.
• Experience with different flavors of Windows client and server editions.
• Knowledge of security aspects of Windows, highly desirable.
• Ability to analyze system activity(process, registry, network, API) using tools.
• Ability to analyze packet captures using tools, such as wireshark, tcpdump and Bro/Zeek
• Ability to review and write regular expressions (regex)
• Ability to pick up and grasp concepts and execute.

SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

SentinelOne participates in the E-Verify Program for all U.S. based roles.