Security Developer Co-op

Arctic Wolf, with its unicorn valuation, is the leader in security operations in an exciting and fast-growing industry—cybersecurity. We have won countless awards for our excellence in security operations and remain dedicated to providing an industry-leading customer and employee experience.

Our mission is simple: End Cyber Risk. We’re looking for a Security Developer Co-op to be part of making this/that happen.  

A Managed Detection & Response (MDR) Security Developer Co-op has interest in both cybersecurity and detections development for endpoint. They research and curate alerts and reports for their surface area. They look at new and emerging threats to identify the investments we should be making to improve our threat detection capabilities. Their overarching goal is to help us make security better for our clients every day. This role could work with team members, Product Management, Security Services and various other specialists to continuously improve the coverage and efficacy of our MDR solution.

AS A SECURITY DEVELOPER AT ARCTIC WOLF, YOU WILL:

• Research and develop expertise in the various threat surfaces and telemetry available for them

• Propose coverage and efficacy improvements to the detection surface

• Work with team members to develop novel detections and continuously tune existing ones

• Participate in the full software development life cycle

• Assist in building well-designed, testable, efficient and secure code

• Assist in building runbooks, reports and supporting material for detection surface

• Document research findings and knowledge share with team and other departments

 
We value a culture of sharing, so every team has the opportunity to share their work with the entire department during our monthly R&D Demos. Once a year we hold a department-wide Hackathon, teaming up across all R&D teams over four days to collaborate and build cool ideas outside the normal project scope. While innovation is the focus, some of these ideas do make it into our products.
 

WE’RE LOOKING FOR SOMEONE:
 

Interest in the development of security products/systems:

• OS specific telemetry (Windows Security/Sysmon logs, Linux)

• Windows PowerShell monitoring

• SIEM detections

• EDR detections/signatures

• Sigma and Yara rules

• Development of anomaly and behavioural based detections

• Tuning and optimization of detections for all the above

Experience or familiarity with the at least two of the following Development Languages & Methodologies:

• Python, Go, Java, and C/C++

• Test Driven Development

• Full understanding and use of DevOps methods/tooling

• Full understanding/application of secure development practices

• Agile (SCRUM/Kanban)

Experience or familiarity with the following security tooling:

• EDR providers (e.g. SentinelOne, Defender for Endpoint, CrowdStrike)

• Windows Security/Sysmon logging

• Windows PowerShell telemetry

• Linux logging system

• SIEMs and Security Analytics platforms (e.g. Elastic, Open Source Big Data Stacks, Splunk, etc.)

Don’t meet all the requirements? That’s okay! We still want you to apply. We have many opportunities, and we are always looking for top talent.  

About Arctic Wolf 

At Arctic Wolf we’re cultivating a collaborative and productive work environment that welcomes a diversity of backgrounds, cultures, and ideas to make our teams even stronger as we grow globally. We’ve been named one of the 50 Most Innovative Companies in the world for 2022 (Fast Company)—and the 2nd Most Innovative Security Company. This is in addition to consecutive awards from Top Workplace USA (2021, 2022), Best Places to Work - USA (2021, 2022) and Great Place to Work - Canada (2021, 2022). 

Our Values 

Arctic Wolf recognizes that success comes from delighting our customers, so we work together to ensure that happens every day. We believe in diversity and inclusion, and truly value the unique qualities and unique perspectives all employees bring to the organization. And we appreciate that—by protecting people’s and organizations’ sensitive data and seeking to end cyber risk— we get to work in an industry that is fundamental to the greater good. 

We celebrate unique perspectives by creating a platform for all voices to be heard through our Pack Unity program. We encourage all employees to join or create a new alliance. See more about our Pack Unity here.  

We also believe and practice corporate responsibility, and have recently joined the Pledge 1% Movement, ensuring that we continue to give back to our community. We know that through our mission to End Cyber Risk we will continue to engage and give back to our communities. 

Security Requirements 

• Conducts duties and responsibilities in accordance with AWN’s Information Security policies, standards, processes and controls to protect the confidentiality, integrity and availability of AWN business information (in accordance with our employee handbook and corporate policies)

• Background checks are required for this position

• This position may require access to information protected under U.S. export control laws and regulations, including the Export Administration Regulations (“EAR”).  Please note that, if applicable, an offer for employment will be conditioned on authorization to receive software or technology controlled under these U.S. export control laws and regulations.