Staff Windows Identity Detection Engineer

What are we looking for

We are looking for talented detection engineers people who look at the world differently who explore hunt live to beat the system and challenge it. People who can address tough security problems and deliver it fastly.

• You will be responsible for detecting the newest identity threats. The role includes an end to end responsibility for behaviour based detection capabilities starting from researching attack techniques designing new methods to detect or prevent those and implementing it in the product in the end.
• You will be developing and using internal research tools PoCs and discovering new ways to detect / prevent identity-based attacks (Pass the Hash Silver ticket MFA bypass and more).
• At the end of the day your deliveries will enhance the security of dozens of millions of Windows endpoints which are protected by our platform.

• 3 years of experience in malware analysis (statically and dynamically)
• 3 years of experience with C
• Excellent understanding of the Windows Internals - understanding how core system components (Process and Threads Virtual Memory and more) work behind the scenes.
• Experienced with Identity-based attacks (Pass the Hash Silver ticket MFA bypass and more) - advantage
• Experienced with analysis tools such as : IDA WinDBG SysInternals etc.
• Kernel development experience - advantage
• Advanced C - advantage
• Understanding of existing AVs internals - advantage.

Because you will work on real-world problems with risks of millions of dollars (protecting against Ransomware and other threats) and make an impact by preventing our customers from appearing in global news after being attacked. You will be joining a technologically cutting-edge project and will be able to influence the architecture design and building of our core platform. You will meet extraordinary challenges and work with the very BEST in the industry.

• Flexible working hours this is a 100% remote role based within Spain ; we provide IWG pass to major coworking chains
• Optionally for those willing to relocate to the Czech Republic relocation assistance is available for any candidates that are already eligible to work in the EU
• Generous employee stock plan in the form of RSUs (restricted stock units) not options; 4 years vesting with 1 year cliff and then quarterly stock refresh yearly
• Yearly bonus depending on the performance of the company paid out in 2 installments
• 30 Days of Paid Annual Leave
• Flexible Paid Sick Days
• Pension insurance contribution
• Premium Life Insurance covered by S1
• Premium Medical & Dental Insurance covered by S1
• Meal Transport & Homeoffice allowance of total 440 EUR / month
• Global gender-neutral Parental Leave (16 weeks beyond the leave provided by the local laws) & Grandparent Leave
• Volunteering paid day off & Additional paid Company holidays off (e.g. 4 days in 2022)
• Global Employee Assistance Program (confidential counseling related to both personal and work life matters)
• Udemy Business platform for Hard / Soft skills Training & Support for your further educational activities / trainings
• Above-standard referral bonus
• DEI&B programs that promote employee resource groups like SentinelWIN (Women Inclusion Network) (LGBTQIA) and Sentinels Who Served
• Aditional country-specific benefits to Spain

Required Experience : Staff IC

Computer Science,Docker,Kubernetes,Python,VMware,C / C++,Go,System Architecture,gRPC,OS Kernels,Perl,Distributed Systems

Employment Type : Full-Time

Experience : years

Vacancy : 1