Security Research Engineer – EDR Analytics
Share
Job Location:
Monthly Salary:
Posted on:
18 hours ago
Vacancies:
1 Vacancy
Job Summary
Join Fortinet a cybersecurity pioneer with over two decades of excellence as we continue to shape the future of cybersecurity and redefine the intersection of networking and security. At Fortinet our mission is to safeguard people devices and data everywhere. We are currently seeking a dynamicSecurity Research Engineerto contribute to the success of our rapidly growing business.
As aSecurity Research Engineeryou will:
Research and prototype new server-side and cloud-based security capabilities to improve detection classification and prioritization of security incidents.
Identify and evaluate emerging attack techniques threat patterns and behavioral anomalies using EDR/EPP provided telemetry logs and security events.
Define and validate security requirements for cloud and server infrastructures in collaboration with engineering teams.
Perform root cause analysis on detection failures false positives and missed attacks.
Participate in escalations and investigations providing expert-level analysis and remediation guidance.
An insightful and influential collaborator to join our team. We encourage you to apply for this position if you have the following qualities:
- 4 years of experience in the Threat Detection field.
- Hands-on experience developing and tuning high-fidelity detection content (such as YARA rules).
- Understanding Windows internals including process trees memory artifacts system calls audit logs etc.
- Experience analyzing large-scale telemetry log data and detection outputs to identify anomalies validate detection coverage and reduce false positives.
- Scripting proficiency (Python PowerShell Bash) for automation analysis or tool development.
- Familiarity with the malware landscape (APT groups Ransomware families and operations Crimeware etc.)
- Knowledge of networking and internet protocols.
- Proven experience in the data analysis field (Bigtable ELK Splunk) - Advantage
- Experience guiding product detection strategy and feature design from a research-informed perspective - Advantage
- Proven expertise in malware reverse engineering static/dynamic analysis and exploit/malicious tool deconstruction Advantage
- Experience working on a product team that have been developing a product in the fields of EDR XDR AV Attack Simulation Threat hunting Incident response or other endpoint cyber security solutions - Advantage
- Team player as well as ability to work independently
- English on a professional level
Why Join Us:
At Fortinet we embrace diversity and inclusivity. We encourage applications from diverse backgrounds and identities. Explore our welcoming work environment designed for a rewarding career journey with an attractive Total Rewards package to support you with your overall health and financial well-being. Join us in bringing solutions that make a meaningful and lasting impact to our 660000 customers around the globe.
We will only notify shortlisted candidates.
Fortinet will not entertain any unsolicited resumes please refrain from sending them to any Fortinet employees or Fortinet email aliases. Should any Agency submit any resumes to Fortinet these resumes if considered will be assumed to have been given by the Agency free of any related fees/charges.
#LI-hybrid
Required Experience:
IC
Key Skills
- Adobe Analytics
- Data Analytics
- SQL
- Attribution Modeling
- Power BI
- R
- Regression Analysis
- Data Visualization
- Tableau
- Data Mining
- SAS
- Analytics
About Company
From the start, the Fortinet vision has been to deliver broad, truly integrated, high-performance security across the IT infrastructure. We provide top-rated network and content security, as well as secure access products that share intelligence and work together to form a cooperativ ... View more
