🛠 Tech Stack

💼 About This Role

You'll join the X-OPS team at Sophos, a global cybersecurity leader. You'll analyze advanced threats and translate intelligence into high-fidelity detections across the platform. You'll leverage data from 40+ sources to ensure actionable alerts with minimal noise.

🎯 What You'll Do

• Develop countermeasures to detect advanced threats based on CTU research.
• Analyze endpoint behaviors and logs to design detections using multi-source telemetry.
• Continuously refine and monitor detection rules to optimize signal-to-noise ratio.
• Collaborate on internal tools, automation, and detection infrastructure.

📋 Requirements

• Scripting in PowerShell, Bash, or Python.
• Proficiency with Python data science libraries (NumPy, Pandas, Matplotlib).
• Knowledge of CI/CD pipelines and automation principles.
• Strong understanding of endpoint detection and OS internals.

✨ Nice to Have

• Experience in malware analysis (static/dynamic, reverse engineering).
• Familiarity with event correlation and incident reconstruction.
• Network traffic analysis skills for identifying anomalous traits.