Sr Staff Researcher (Advanced Threat Prevention)

About The Position

Requirements

• Strong collaborator with excellent communication skills and ability to work across cross-functional groups.
• Deep understanding of exploit techniques such as buffer overflows, use-after-free, format string, XSS, SQL injection, CSRF, MITM, and DoS.
• Strong knowledge of core network protocols including HTTP, UDP, FTP, SMTP, DNS, and SMB.
• Skilled in analyzing network traffic using tcpdump, Wireshark, or equivalent tools.
• Proficient in Windows and Linux development environments.
• Strong programming background with scripting languages (e.g., Python, Bash, Perl); experience with penetration testing tools (Metasploit, Burp Suite, Nmap) and debugging tools (WinDbg, OllyDbg, GDB) is a strong plus.
• BS/MS in Computer Science, Computer Engineering, or equivalent professional/military experience.

Nice To Haves

• Experience with AI/ML in security is a plus.
• CTF experience is a plus.
• Publications or presentations at top security venues (e.g., Black Hat, DEF CON) are highly valued.
• Proven ability to independently drive an idea into a delivered solution or project.

Responsibilities

• Propose and execute innovative detection ideas, bringing them from research into production.
• Lead at least one operational or research project end-to-end, ensuring quality and timely delivery.
• Conduct in-depth research into vulnerabilities, attack vectors, and exploit techniques, and translate findings into effective IPS/ML-based detections.
• Respond rapidly to Zero-Day vulnerabilities by developing and shipping protections within 24 hours.
• Reverse engineer software to uncover new vulnerabilities and deliver actionable intelligence.
• Collaborate with engineering, QA, and product teams to ensure scalable, robust detection methodology.
• Mentor junior team members, providing technical guidance and raising the overall bar of the team.