Senior Cloud Security Researcher

About Us

At SentinelOne, we’re redefining cybersecurity by pushing the limits of what’s possible—leveraging AI-powered, data-driven innovation to stay ahead of tomorrow’s threats.

From building industry-leading products to cultivating an exceptional company culture, our core values guide everything we do. We’re looking for passionate individuals who thrive in collaborative environments and are eager to drive impact. If you’re excited about solving complex challenges in bold, innovative ways, we’d love to connect with you.

What are we looking for?

We are looking for hands-on security researchers who love picking apart complex cloud stacks and turning new attack ideas into reliable detections. If you thrive on exploring AWS, Azure, GCP and Kubernetes you’d rather find bypasses and build detections than read about it - we’re looking for you.

What will you do?

• You will proactively look for the newest and most sophisticated attacks techniques, deeply research and understand their internals and emulate these attacks in order to assess and improve our detection engines.
• You will be responsible for writing detection content for our various engines across the agent and cloud platform.
• You will publish clear, engaging research blogs that demystify cloud exploits and showcase our findings.
• You will be conducting a comprehensive analysis of potential attack paths within diverse systems and networks in cloud environments. You will be responsible for identifying and prioritizing potential vulnerabilities and weaknesses that could be exploited by cyber adversaries.
• You will build tools to support detection assessments, create proof-of-concepts for the newest techniques & exploits, and develop automation flows to automate unconventional attacks and offensive frameworks.
• You will work closely with our Threat-Intelligence team, offensive and engineering detection teams, to provide guidance and expertise in attack path analysis. 

What experience or knowledge should you bring?

• 2+ years of experience in Security Development / Red Teaming / Offensive Research / Detection Engineering with a deep understanding of Kubernetes or Linux Containers Internals
• 2+ years of hands-on experience with coding in C/C++/Rust or any other low-level language
• 2+ years of hands-on experience with coding in Python or any other scripting language

• Deep understanding of the cloud and Kubernetes threat landscape, including malware operations, prominent threat actor groups, and their evasion and exploitation techniques within cloud-native environments.

• Experience in cloud attack path analysis, vulnerability assessment, and threat modeling.
• Familiarity with cloud services, Kubernetes, cloud architecture, and major cloud providers (AWS, GCP, Azure).
• In-depth understanding of cloud ecosystem, security principles, services, configurations, best practices, and relevant frameworks.

• Advantage
• Experience writing detection signatures/heuristics
• Experience with with eBPF
• Experience with Cloud pentest frameworks, Stratus red team/Pacu
• Open-source contributions or published cloud security research
• Understanding of the MITRE ATT&CK Framework

Why us?

We are at the forefront of the most dominant space of the Cyber Security market. You'll be working closely with some of the best researchers on the planet on the most innovative and challenging features that will shape the future of Cyber Security. You will be part of a truly global team that is rapidly growing around the world, on an amazing journey of success. You will work with great people in an open, fun environment, and you will be part of an organization that truly values its people.

• Study Funds- SentinelOne contributes 7.5% over your base salary (no tax ceiling is applied), and employees contribute 2.5% of their base salary
• Pension fund- SentinelOne contributes to your pension fund according to local law. Pension contribution may vary based on the selected plan.
•  RSUs- 4 years vesting with 1-year cliff and then quarterly.
• Annual bonus (depending on the performance of the company) paid out in 2 cycles
• Employee Stock Purchase Plan- The plan enables employees to purchase SentinelOne stocks at discounted prices vs. market value. (the plan is subject to local taxation)
• Company time off and holidays
• Private medical insurance
• Meal allowance
• Home office allowance
• Hybrid work model- The possibility of working both from the office and working from home
• Parental Leave - Embracing a new child into the family is a unique moment for everyone! In support of that, we offer 20 weeks of fully paid leave for the birth parent and 12 weeks of paid leave for the non-birth parent
• Employee Assistance Program- Psychological sessions with certified therapists to help you overcome stress, personal and professional challenges
• Free Parking in our office building 
• Music Room fully equipped room

Wellness- workout sessions and a wellness app

SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

SentinelOne participates in the E-Verify Program for all U.S. based roles.