Senior Windows Security Researcher

At SentinelOne, we’re redefining cybersecurity by pushing the limits of what’s possible—leveraging AI-powered, data-driven innovation to stay ahead of tomorrow’s threats.

From building industry-leading products to cultivating an exceptional company culture, our core values guide everything we do. We’re looking for passionate individuals who thrive in collaborative environments and are eager to drive impact. If you’re excited about solving complex challenges in bold, innovative ways, we’d love to connect with you.

What are we looking for?

We are seeking talented security researchers—individuals who explore, hunt, and challenge the system to outsmart malware and overcome security threats.

Why us?

You will work on real-world problems involving high-stakes risks (e.g., ransomware) and make a tangible impact by preventing attacks that could make headlines. Join a cutting-edge project, influence our platform’s architecture and design, and collaborate with industry-leading experts.

What will you do?

You’ll be part of an exceptional research team responsible for detection, protection, and visibility across our security products on Windows platforms. Your work will include analyzing vulnerabilities, developing detection assets, and collaborating with detection teams to ensure optimal security solutions for millions of endpoints globally.

Research

• Evaluate detection and protection coverage against vulnerabilities, exploits, and anti-tampering techniques.
• Discover and implement innovative solutions through in-depth research.
• Conduct long-term research on Windows internals, detection techniques, and emerging threats.
• Stay updated on vulnerabilities, exploits, and new technologies.
• Collaborate with teams to support their security research efforts.

Detection and Protection Assets

• Develop detection content to improve security across all endpoints.
• Ensure the quality and accuracy of your deliverables.
• Maintain and enhance existing infrastructure and tools.

Additionally, you are encouraged to publish white papers, blogs, or articles if interested.

What experience or knowledge should you bring?

• 3+ years in security research focused on Windows.
• Strong knowledge of Windows Kernel development and low-level research.
• Deep understanding of Windows vulnerabilities and exploitation techniques.
• Expertise in Windows Internals, including processes, memory management, and system security.
• Proven offensive and defensive security research skills.
• At least 3 years in reverse engineering (x86 / x64, static / dynamic).
• Solid skills in C, C++, and assembly language.
• Experience with analysis tools like IDA, Ghidra, WinDBG, SysInternals.
• Good understanding of EDR, EPP, and antivirus internals.

Nice to have (but not required) :

• Experience with EDR / EPP bypasses or self-protection mechanisms.
• Knowledge of exploit mitigations and bypass techniques.
• Experience with threat emulation, red teaming, or malware frameworks.
• Published research, CVEs, or conference presentations.

Why us?

Because you will work on impactful, real-world problems related to high monetary and reputational risks, with opportunities to influence our core platform’s architecture and design, alongside industry experts.

What we offer :

• Flexible, remote work within Spain, with options for relocation support to the Czech Republic.
• Generous employee stock plan (RSUs), vesting over 4 years.
• Yearly performance bonus, paid in two installments.
• 30 days paid annual leave, flexible sick days, pension, life, and medical insurance.
• Meal, transport, and home office allowances (€440 / month).
• Global parental and grandparent leave policies.
• Access to LinkedIn Learning and support for further education.

Additional benefits specific to Spain :

SentinelOne is an Equal Opportunity Employer and participates in the E-Verify program for U.S. roles, committed to diversity and inclusion.

J-18808-Ljbffr