winDBT Engineer - Threat Researcher

About Us:

SentinelOne is defining the future of cybersecurity through our XDR platform that automatically prevents, detects, and responds to threats in real-time. Singularity XDR ingests data and leverages our patented AI models to deliver autonomous protection. With SentinelOne, organizations gain full transparency into everything happening across the network at machine speed – to defeat every attack, at every stage of the threat lifecycle. 

We are a values-driven team where names are known, results are rewarded, and friendships are formed. Trust, accountability, relentlessness, ingenuity, and OneSentinel define the pillars of our collaborative and unified global culture. We're looking for people that will drive team success and collaboration across SentinelOne. If you’re enthusiastic about innovative approaches to problem-solving, we would love to speak with you about joining our team!

Job Description

What will you do?

You will be responsible for detecting the newest malwares and exploits based on SentinelOne’s EPP platform. The role includes an end to end responsibility for behavior based detection capabilities, starting from reversing the samples, designing new methods to detect or prevent those, and implementing it in the product in the end. You will be developing and using internal research tools, PoCs and discovering new ways to detect/prevent exploitation attacks (EoP, drive-by attacks and more). At the end of the day, your deliveries will enhance the security of dozens of millions of Windows endpoints which are protected by our platform.

You will also be encouraged to write white papers, blogs and articles (but only if you wish to).

What experience or knowledge should you bring?

• Proven experience with reverse engineering of x86/x64 binaries.
• 3+ years of experience in malware analysis (statically and dynamically)
• 3+ years of experience with C, C++ 
• Excellent understanding of the Windows Internals 
• Experienced with analysis tools, such as: IDA, WinDBG, SysInternals etc.
• Kernel development experience  - advantage
• Understanding of existing AVs internals - advantage.

Why us?

You will work on real-world problems and make an impact by protecting our customers from cyber threats. You will be joining a cutting-edge project and will be able to influence the architecture, design, and structure of our core platform. You will tackle extraordinary challenges and work with the very BEST in the industry.

• Medical, Vision, Dental, 401(k), Commuter, Health and Dependent FSA
• Unlimited PTO
• Paid Company Holidays
• Paid Sick Time
• Gym membership reimbursement
• Cell phone reimbursement

SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

SentinelOne participates in the E-Verify Program for all U.S. based roles.