Threat Research Engineer

About Netskope

Today, there's more data and users outside the enterprise than inside, causing the network perimeter as we know it to dissolve. We realized a new perimeter was needed, one that is built in the cloud and follows and protects data wherever it goes, so we started Netskope to redefine Cloud, Network and Data Security. 

Since 2012, we have built the market-leading cloud security company and an award-winning culture powered by hundreds of employees spread across offices in Santa Clara, Bangalore, London, Melbourne, and Tokyo. Our core values are openness, honesty, and transparency, and we purposely developed our open desk layouts and large meeting spaces to support and promote partnerships, collaboration, and teamwork. From catered lunches and office celebrations to employee recognition events (pre and hopefully post-Covid) and social professional groups such as the Awesome Women of Netskope (AWON), we strive to keep work fun, supportive and interactive. Visit us at Netskope Careers. Please follow us on LinkedIn and Twitter@Netskope.

You will be a member of Netskope’s Threat Research Team, a team of security researchers and subject matter experts working together to solve today’s security challenges in new and innovative ways. The primary output of the Threat Research Team is thought leadership (patents, blog posts, conference presentations, webinars, and podcasts) and product improvements (new features, protections against new threats). The Threat Research Team collaborates closely with the security, data science, product, and engineering teams to develop novel protection strategies against emerging cybersecurity threats.

As a member of the Threat Research Team, you will be be responsible for:

• Identifying novel tactics, techniques, and procedures (TTPs) being used by attackers
• Identifying the ways that those TTPs might be used against Netskope customers
• Using threat simulation and red-team tools to simulate attacks in a controlled environment
• Manually reproducing new attacks in a controlled environment
• Assessing the ability of a set of security controls to provide visibility, detection, and preventative measures against attacks.
• Identifying opportunities to bolster the security controls by providing better visibility, more accurate detection, or more robust preventative measures against attacks.
• Communicating the findings of your research to a broad audience including engineering, product management, PR, sales, and marketing.

We are looking for threat researchers who can leverage their experience and expertise to identify, analyze, and reproduce threats. 

Requirements

• Communication
• Communication skills to work in a collaborative team
• Written and verbal skills to create and deliver high-quality publications and presentations

• Threat Research
• Expertise in web and network security
• Experience with threat hunting and analyzing large-scale cybersecurity datasets
• Experience creating POCs of threats in a controlled environment
• Experience using threat simulation tools to evaluate the effectiveness of security controls
• Experience using red-team tools such as Empire, Metasploit, and CobaltStrike.
• Experience with common threat intelligence tools, such as VirusTotal

• Data
• Experience working with common database and search technologies, such as SQL

• Software Development
• Strong software development skills to develop your own tooling as needed
• Discipline to create well-tested and documented code

Nice To Have

• Communication
• Experience interacting with cybersecurity leadership in large organizations
• Experience working collaboratively with other groups to resolve security incidents 

• Threat Research
• Experience responding to security incidents and/or triaging alerts and incidents at scale
• Experience with common analysis tools, such as IDA Pro, Ghidra, Wireshark, and Fiddler

• Data
• Experience working with big data frameworks, such as Spark or BigQuery.

• Leadership
• Product leadership / program management experience - implement your vision across teams and stakeholders.

LI-HC1

Netskope respects your privacy and is committed to protecting the personal information you share with us, please refer to Netskope's Privacy Policy for more details.