Windows Detection Engineering Manager

Our Purpose

At SentinelOne we are driven by a clear purpose: to give the advantage to those who secure our future. As AI reshapes how organizations build operate and innovate the responsibility to protect them becomes more critical than ever. When you join SentinelOne your work helps protect global enterprises critical infrastructure and the technologies shaping tomorrow. If you are motivated by meaningful challenges and want your impact to be real measurable and global you will find purpose here.

About Us

SentinelOne is a company at the intersection of AI and security pioneering a new operating model for cybersecurity. Our AI-native platform unifies protection across endpoint cloud identity data and AI systems to deliver autonomous detection and response with clarity and speed. By combining real-time analytics intelligent automation and a unified data foundation we reduce noise simplify complexity and empower security teams to focus on what truly matters.

Our teams are builders problem-solvers and innovators committed to shaping the future of security. If you are excited to solve hard problems alongside talented mission-driven people we invite you to help us build a safer future for humanity.

What Are We Looking For

Were looking for people who are relentlessly curious and committed to continuous learning. AI is reshaping every function across our business and we enable every team member regardless of role or level to build fluency in AI tools and concepts. Those who thrive here actively seek out new solutions experiment thoughtfully and apply what they learn to drive better faster smarter outcomes.

As aWindows Detection Engineering Manager you will be tasked with helping shape the future of endpoint security through a unified converged platform that automatically prevents detects and responds to threats in real time. You will lead a team of engineers that create advanced Windows detections by combining deep system process inspection behavioral analysis and innovative machine learning techniques to identify and stop sophisticated attacks before they cause harm.

You will join a growing team of passionate security experts and technical leaders who think differently challenge assumptions and constantly explore new ways to outsmart this role you will lead a strategic team to advance windows detection forward through both research and engineering.

What Will You Do

Primary responsibilities include:

• You will manage a team of detection engineers and guide them through the research and development of detection rules and infrastructure.
• You will be responsible for driving the detection of the newest malware and exploits based on SentinelOnes Endpoint Protection platform. Your role wont end with a hypothesis or a document - youll have an end-to-end responsibility for behavior-based detection capabilities starting from leading any prior research designing new methods to detect or prevent those and the implementation of it in the product in the end (SW development in C23 and scripting in Lua).
• You will be leading the development and research of attack tools PoCs and the discovery of new ways to detect/prevent exploitation attacks (EoP drive-by attacks and more).
• At the end of the day your deliveries will enhance the security of dozens of millions of Windows endpoints which are protected by our platform.
• You will meet extraordinary challenges facing the newest attacks and tech obstacles and overcome them. You will work with the very BEST in the industry in a flexible and independent environment. You will influence the design of a disruptive product that will shape the security industry of tomorrow.

What Skills and Knowledge Will You Bring

Ideal candidates will have:

• Proven experience in leading a team of researchers or detection engineers
• Experience in writing behavioral detection rules - understanding how to detect low-level malicious techniques while evaluating the rules efficacy
• Proven experience with reverse engineering of x86/x64/ARM binaries
• Several years of experience in malware analysis (statically and dynamically)
• Excellent understanding of the Windows Internals - understanding how core system components (Process and Threads Virtual Memory and more) work behind the scenes
• An advantage would be - modern C experience and understanding of existing AVs internals

Why SentinelOne

AI is redefining how the world operates and rewriting the rules of security in real time and SentinelOne was built for this moment. From day one we architected an AI-native platform designed to operate at machine speed not as an add-on to legacy systems but as the foundation itself. If you want to build where innovation and impact move together this is that place.

We invest in our Sentinels with comprehensive competitive benefits designed to support you and your family:

Equity & Rewards

• Restricted Stock Units (RSUs)
• Employee Stock Purchase Plan (ESPP)

Time Off & Wellbeing

• Competitive leave benefits
• Gender-neutral parental leave
• Employee Assistant Program
• Workout sessions and a Wellness App

Insurance & Financial Security

• Medical and insurance benefits
• Pension
• Employee Assistance Program (EAP)

Work Perks & Flexibility

• Global home office allowance
• Mobile phone reimbursement