Windows Security Research Engineer – Incident Response

Remote (Canada, USA, UK, Germany) / Engineering / Full-Time Who We Are; What We Do; Where We’re Going
Magnet Forensics is a global leader in the development of digital investigative software that acquires, analyzes and shares evidence from computers, smartphones, tablets and other IoT related devices. We are continually innovating so that our customers can deploy advanced and effective tools to protect their companies, communities and countries.
Headquartered out of Waterloo, Ontario, Canada, with over 300 employees globally, Magnet is continuing to expand and grow.  Where we are today, is not where we will be tomorrow.
Your Team
The Engineering team is focused on producing software that solves the most important problems facing digital forensics and incident response professionals today. Our algorithms make sense of data that is often hidden, corrupted, or incomplete. We write well-tested, performant code and build intuitive UIs because we know that minutes can make a difference in national terrorism cases and life-or-death situations. We are a community of smart, passionate, humble people who recognize that solving the industry’s toughest problems requires constant collaboration, continuous learning, and frequent doses of humour – come prepared for emojis, GIFs, and questionable Photoshop skills.
The Incident Response product team is looking for a talented Windows security research engineer to join our growing team, responsible for building the next generation of Incident Response products.
We value what is different about you, whether it is your education, work experience, life experiences or background.

What You Will Accomplish

• Design, develop, debug, and deliver tooling to assist the investigative and hunting process
• Create technical documentation for other analysts and other teams to follow
• Identify and implement solutions to problems impacting the team
• Develop production code for new features and bug fixes within a small team
• Design and write automated tests that will ensure the integrity of our software
• Participate in peer code reviews

What We Are Looking For

• We’re looking for someone who checks off most, but not all, of the boxes listed in “skills and experiences”.  It’s more important to us to find candidates who can display indicators of success through skills they have developed and experiences they have been a part of, than to find folks who have ‘been there, done that”.  We want to be part of your development journey, and we’ll learn as much from you as you learn from us. 


• There are a couple must haves, but we will keep that list short:
 
• Bachelor’s degree in a Computer Science related field, or equivalent practical experience
• Low level C/C++ development, including kernel experience
• Solid understanding of Windows internals and Windows development experience
• ·Experience with at least one of the following: memory analysis, reverse engineering, malware analysis


• In addition, may have some of the following skills and experiences:


• Experience developing robust, well-tested production code in C/C++ or Rust
• Familiarity with kernel development and debugging tools (WinDbg, etc.), and common code injection/process hooking techniques
• Experience with attacker TTP analysis and devising novel threat-detection tactics and strategies
• Experience writing and maintaining automated test suites at various levels of abstraction
• Good communication and cross-group collaboration skills
• Aptitude and interest in learning new technologies
• Effectiveness at getting the right thing done
• Practical leadership experience (regardless of title)

The Most Important Thing

• We’re looking for candidates that can provide examples of how they have demonstrated Magnet InteGRITy in their previous experiences:
• Greater Good – We think beyond our own interests and strive to improve communities around the world. This demonstrates our passion for making a difference in the world.
• Respect – We hold ourselves accountable through transparent sharing of information and we have faith in each other’s abilities
• Innovation – We lead the industry in excellence and reliability while keeping the user experience simple and relevant. We are not afraid to push the boundaries to stay ahead of our competitors.
• Teamwork – We collaborate internally and externally, while caring about each other and listening to our customers.

Magnet Forensics Inc. is an affirmative action, equal opportunity employer. It is Magnet Forensics policy to recruit and select applicants for employment solely on the basis of their qualifications, with emphasis on selecting the best-qualified person for the job. Magnet Forensics does not discriminate against applicants based on race, color, religion, sex, sexual orientation, national origin, or disability or any other status or condition protected by applicable law. Magnet Forensics encourages applications from all qualified candidates. Magnet Forensics has a great record of accommodating persons with disabilities. Contact our AODA contact at aoda@magnetforensics.com or 519-342-0195, if you need accommodation at any stage of the application process or want more information on our accommodation policies.