Senior Threat Intelligence Researcher - 5+ Yrs exp .

About Us:

SentinelOne is defining the future of cybersecurity through our XDR platform that automatically prevents, detects, and responds to threats in real-time. Singularity XDR ingests data and leverages our patented AI models to deliver autonomous protection. With SentinelOne, organizations gain full transparency into everything happening across the network at machine speed – to defeat every attack, at every stage of the threat lifecycle. 

We are a values-driven team where names are known, results are rewarded, and friendships are formed. Trust, accountability, relentlessness, ingenuity, and OneSentinel define the pillars of our collaborative and unified global culture. We're looking for people that will drive team success and collaboration across SentinelOne. If you’re enthusiastic about innovative approaches to problem-solving, we would love to speak with you about joining our team!

What are we looking for?

• An adept cybersecurity researcher capable of leading deep-dive investigations into both new and known cyber threats
• An individual who can synthesize complex data into actionable intelligence reports and briefings to clearly communicate potential risks to senior management and stakeholders.
• A strategic thinker with the ability to develop and refine cyber hunting strategies to adapt to and anticipate shifts in threat actor tactics and techniques.
• A vigilant analyst who stays abreast of the latest in malware developments, attack methods, and defensive evasion tactics, ensuring our defenses are always a step ahead.
• A detail-oriented investigator focused on monitoring and understanding the infrastructure of adversaries to effectively track and counteract their operations.

What will you do? 

Lead and conduct in-depth research and analysis of emerging and existing cyber threats, including ransomware campaigns, and other sophisticated attacks. - Utilize reverse engineering and malware analysis skills to identify and analyze malicious code and artifacts. Create actionable intelligence reports and threat briefings to inform senior management and key stakeholders of the potential risks associated with ransomware groups. keep curating a KB on ransomware operations, their tradecraft, affiliations. Identify and track threat actors, their capabilities, and the infrastructure they use. Analyze malware samples and artifacts to identify their functionality, capabilities, and potential impact.Stay current with emerging malware trends, attack techniques, and evasion tacticscreating and maintaining hunting strategies to keep track of operations and shifting in tactics creating and maintaining hunting strategies to keep track of operations and shifting in tacticsMonitoring malicious infrastructures and extract fingerprints to track C2s

• Work closely with detection in order to understand, track gaps in detection with respect to the latest evolutions of threats.
• Build and put in place tools to spot trends and anomalies in our telemetry.

What skills and knowledge should you bring?

• [must to have] Strong knowledge of malware analysis tools and techniques, including static and dynamic analysis, sandboxing, and debugging. + Knowledge of unpacking and deobfuscation.
• [must to have] Understanding software vulnerabilities, and ability to implement hunting strategies to track and discover them
• [must to have] Knowledge of various threat intelligence frameworks such as the Diamond Model, MITRE ATT&CK.
• [must to have] Knowledge of the cyber threat landscape, including actors and TTPs
• [must to have] Strong analytical skills, with the ability to identify patterns and trends in large datasets - [must to have] strong knowledge of Yara to track new malware families and knowledge on validation best practices
• [must to have] rudimentary knowledge about working of EDR in Linux environment
• [must to have] programming skills in python
• [nice to have] Relevant certifications, such as Certified Malware Analyst (CMA), Certified Reverse Engineering Analyst (CREA), or GIAC Certified Malware Reverse Engineer (GREM)

Why Us?

You will be joining a cutting-edge company, where you will tackle extraordinary challenges and work with the very best in the industry

• Employee stock purchase program and RSU 
• Numerous company-sponsored events including regular happy hours and team-building events
• Flexible Time Off.
• Flexible Paid Sick Days.
• Global gender-neutral Parental Leave (16 weeks, beyond the leave provided by the local laws) 
• Gym membership/sports gears by Cultfit.
• Wellness Coach app, with 3,000+ on-demand sessions, daily interactive classes, audiobooks, and unlimited private coaching. 
• Private medical insurance plan for you and your family.
• Life Insurance covered by S1 (for employees)
• Telemedical app consultation (Practo)
• Global Employee Assistance Program (confidential counseling related to both personal and work life matters)
• High-end MacBook or Windows laptop.
• Home-office-setup allowances (one time) and maintenance allowance. 
• Internet allowances.
• Provident Fund and Gratuity (as per govt clause)
• NPS contribution (Employee contribution)
• Half yearly bonus program depending on the individual and company performance.
• Above standard referral bonus as per policy.
• LinkedIn Business platform for Hard/Soft skills Training & Support for your further educational activities/trainings
• Sodexo food coupons.

SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

SentinelOne participates in the E-Verify Program for all U.S. based roles.