Senior Security Research Engineer

Elastic

About The Position

Elastic, the Search AI Company, enables everyone to find the answers they need in real time, using all their data, at scale — unleashing the potential of businesses and people. The Elastic Search AI Platform, used by more than 50% of the Fortune 500, brings together the precision of search and the intelligence of AI to enable everyone to accelerate the results that matter. By taking advantage of all structured and unstructured data — securing and protecting private information more effectively — Elastic’s complete, cloud-based solutions for search, security, and observability help organizations deliver on the promise of AI. The Elastic Security Endpoint Protections team research, designs, and builds visibility and detection capabilities that are integrated into Elastic Defend, our endpoint and SIEM security solution. We are looking for a Security Research Engineer to join our team and assist with leading our efforts to build new, innovative features which will help secure our users against the latest emerging threats. You will collaborate with the broader Elastic Security team, which consists of a diverse group of skilled researchers, data scientists, and engineers who possess extensive domain expertise in their respective areas. Our geographically dispersed team values positivity and inclusivity in the workplace, clear communication, collaborative learning, and guided mentorship. If you have a passion for security research and would enjoy the challenge of devising novel methods for thwarting malicious actors in an ever-evolving threat landscape, join our growing team!

Requirements

6+ years of professional experience analyzing attacker tactics, techniques, and procedures (TTPs) and developing detection methods for security threats
6+ years of strong development experience in C, C++, and Python.
experience in reverse engineering and malware analysis.
Subject matter expertise in Windows internals, security features, and system architecture.
Collaborative mentality with a strong disposition to learn new skills and technologies.
Motivation to succeed in a distributed, fast-paced, and autonomous work environment.

Responsibilities

Research emerging attacker techniques and develop innovative, effective, and resilient detection features.
Integrate extended eventing and visibility capabilities into our endpoint codebase.
Improve efficacy of our detection features by rapidly responding to emerging threats.
Implement endpoint code in collaboration with peers in multiple countries and time zones.
Review telemetry data and establish mitigation strategies to limit potential false positives and performance impact.
Present research material at security conferences and publish technical content on the Elastic Security Labs.

Benefits

Elastic believes that employees should have the opportunity to share in the value that we create together for our shareholders. Therefore, in addition to cash compensation, this role is currently eligible to participate in Elastic's stock program. Our total rewards package also includes a company-matched 401k with dollar-for-dollar matching up to 6% of eligible earnings, along with a range of other benefits offered with a holistic emphasis on employee well-being.
Competitive pay based on the work you do here and not your previous salary
Health coverage for you and your family in many locations
Ability to craft your calendar with flexible locations and schedules for many roles
Generous number of vacation days each year
Increase your impact - We match up to $2000 (or local currency equivalent) for financial donations and service
Up to 40 hours each year to use toward volunteer projects you love
Embracing parenthood with minimum of 16 weeks of parental leave

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume