Job Description

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!

Brief Description

We are looking for a highly skilled Senior Cloud Threat Research Engineer with strong expertise in container security, exploit research, threat detection, and mitigation engineering. This role involves researching emerging attack techniques, developing advanced detections, building automation using scripting, and leveraging AI-driven security tools to improve cloud and container security posture.

Responsibilities

• Research container, Kubernetes, and cloud-native attack techniques
• Develop detections for runtime, syscall, process, file, and network threats
• Build mitigation strategies for container and cloud security risks
• Analyze malware, exploits, and adversary behavior in Linux environments
• Create and optimize detection rules using threat intelligence and behavioral analytics
• Develop automation for threat simulation, testing, and validation
• Work with eBPF, runtime security tools, and cloud telemetry for threat monitoring
• Improve detection accuracy and reduce false positives using AI-driven automation
• Validate exploits and execute PoCs in containerized environments
• Collaborate with engineering and security teams to enhance detection coverage
• Write technical blogs, research reports, and security documentation

Required Technical Skills

• 3+ years of hands-on security engineering experience
• Expertise in cloud threat research and detection engineering
• Strong knowledge of exploit development, reproduction, CVE analysis, and vulnerability research
• Experience with SOC, XDR, and cloud-native detection platforms
• Deep understanding of:
  • Containers and Kubernetes security
  • Linux internals and OS concepts
  • AWS, Azure, and GCP
  • Docker and containerd runtimes
• Hands-on experience in:
  • Threat research and exploit analysis
  • Runtime security and detection engineering
  • Malware analysis and MITRE ATT&CK mapping
  • Incident detection and mitigation
  • Red Teaming and Adversary Simulation
• Experience with eBPF, syscall monitoring, and tools like Tetragon
• Strong understanding of detection tuning and noise reduction strategies
• Strong scripting skills in Python, Bash/Shell, and Go (preferred)
• Experience building AI-powered security automation and LLM-driven workflows
• Knowledge of security analytics and behavioral detection techniques
• Experience with Git, CI/CD pipelines, and automation frameworks
• Contributions to security research, blogs, or open-source projects preferred

Soft Skills & Attributes

• Strong analytical and problem-solving skills.
• Passion for cloud and container security research.
• Ability to independently drive research initiatives.
• Strong collaboration and communication skills.
• Continuous learner with interest in emerging threats and AI-driven security innovation.

Nice to Have

• Kubernetes hardening experience.
• Knowledge of kernel security mechanisms.