Staff Malware Researcher / Detection Engineer - Linux

Staff Malware Researcher / Detection Engineer - Linux

At SentinelOne, we’re redefining cybersecurity by leveraging AI-powered, data-driven innovation to stay ahead of tomorrow’s threats.

We are looking for passionate individuals who thrive in collaborative environments and are eager to make an impact. If you enjoy solving complex challenges in innovative ways, we’d love to connect with you.

What are we looking for?

We seek an experienced Staff (technical-leader level) malware researcher / detection engineer with expertise in Linux and/or cloud security. You should be capable of exploring new technologies, designing and developing innovative detection methods, and scaling solutions for our products.

What will you do?

• Detect the latest malware and exploits using SentinelOne’s AI-powered Endpoint platform (EPP / EDR).
• Take responsibility for behavior-based detection capabilities, including reversing samples, designing detection/prevention methods, and collaborating with engineering teams.
• Develop and utilize internal research tools, PoCs, and discover new detection techniques.
• Lead research efforts, design detection features, mentor team members, and provide technical leadership. Collaborate with researchers, engineers, tech leads, architects, and product managers.

Your work will enhance the security of Linux endpoints and cloud workloads protected by our product, serving enterprise and public sector clients worldwide.

You are encouraged to write white papers, blogs, and articles.

• Develop detections
• Write tests for new detections
• Conduct security research
• Participate in peer code and design reviews
• Learn new Linux and Cloud security technologies
• Support customers within your domain

What skills & knowledge should you bring?

• Experience in malware analysis (static and dynamic)
• Understanding of Linux and Containers threat landscape (including frameworks, MITRE IaaS)
• Proficiency in Linux OS architecture and internals
• Scripting experience in Python, Lua, or similar
• Solid knowledge of C++
• Preferred: reverse engineering of x86 / x64 binaries, understanding of Anti-Virus / Endpoint Protection internals, experience with eBPF, Cloud Workloads (EKS, ECS, Fargate), and deployment experience.

Why us?

Join us to face emerging security challenges. Work with industry-leading professionals in a flexible, independent environment. Influence the design of innovative security products.

What we offer you

• Remote role within Italy; candidates must be eligible to work in the EU. Relocation assistance available for moving to the Czech Republic.
• Employee stock plan (RSUs), vesting over 4 years with a 1-year cliff.
• Yearly performance bonus, paid in two installments.
• Benefits: private medical, life insurance, accident insurance, study funds, healthcare.
• Up to 30 paid days off annually, flexible time off.
• Global parental leave (16 weeks) & grandparent leave.
• Paid volunteering days and additional holidays.
• Counseling through Employee Assistance Program.
• Access to Udemy Business, mentoring ('MentorOne'), and educational support.

Additional benefits for Italy

SentinelOne is an Equal Opportunity employer. We do not discriminate based on race, religion, gender, sexual orientation, age, veteran status, disability, or other protected characteristics. We participate in the E-Verify Program for U.S. roles.

J-18808-Ljbffr