Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!
Brief Description
We are looking for a highly skilled Senior Cloud Threat Research Engineer with strong expertise in container security, exploit research, threat detection, and mitigation engineering. This role involves researching emerging attack techniques, developing advanced detections, building automation using scripting, and leveraging AI-driven security tools to improve cloud and container security posture.
Responsibilities
Research container, Kubernetes, and cloud-native attack techniques
Develop detections for runtime, syscall, process, file, and network threats
Build mitigation strategies for container and cloud security risks
Analyze malware, exploits, and adversary behavior in Linux environments
Create and optimize detection rules using threat intelligence and behavioral analytics
Develop automation for threat simulation, testing, and validation
Work with eBPF, runtime security tools, and cloud telemetry for threat monitoring
Improve detection accuracy and reduce false positives using AI-driven automation
Validate exploits and execute PoCs in containerized environments
Collaborate with engineering and security teams to enhance detection coverage
Write technical blogs, research reports, and security documentation
Required Technical Skills
3+ years of hands-on security engineering experience
Expertise in cloud threat research and detection engineering
Strong knowledge of exploit development, reproduction, CVE analysis, and vulnerability research
Experience with SOC, XDR, and cloud-native detection platforms
Deep understanding of:
Containers and Kubernetes security
Linux internals and OS concepts
AWS, Azure, and GCP
Docker and containerd runtimes
Hands-on experience in:
Threat research and exploit analysis
Runtime security and detection engineering
Malware analysis and MITRE ATT&CK mapping
Incident detection and mitigation
Red Teaming and Adversary Simulation
Experience with eBPF, syscall monitoring, and tools like Tetragon
Strong understanding of detection tuning and noise reduction strategies
Strong scripting skills in Python, Bash/Shell, and Go (preferred)
Experience building AI-powered security automation and LLM-driven workflows
Knowledge of security analytics and behavioral detection techniques
Experience with Git, CI/CD pipelines, and automation frameworks
Contributions to security research, blogs, or open-source projects preferred
Soft Skills & Attributes
Strong analytical and problem-solving skills.
Passion for cloud and container security research.
Ability to independently drive research initiatives.
Strong collaboration and communication skills.
Continuous learner with interest in emerging threats and AI-driven security innovation.
Nice to Have
Kubernetes hardening experience.
Knowledge of kernel security mechanisms.
