Full-Time
Threat Detection Engineer 2
Sysdig
501-1,000 employees
Cloud-native security and monitoring solutions
No salary listed
Mid
Italy
Hybrid
Hybrid position requiring some in-office presence in Italy.
- 2+ years of hands-on experience with one of the following: Security operations, EDR, security engineering, or incident response
- Hands-on experience in Linux, including expertise with system calls and in-depth knowledge of Linux internals
- Experience creating threat detections for cloud environments, such as AWS, Azure, or GCP
- Knowledge of Kubernetes, container technologies, and container runtimes (e.g. Docker, containers, cri-o)
- Experience with SQL and programming languages such as Python or Go, plus using Git for version control and collaborative development
- Experience with or knowledge of Falco, the OSS threat detection tool
- Familiarity with analysing logs or other security artifacts for malicious behaviour to create detection rules
- Comfortable working directly with customers to help improve their experience.
- Research and maintain threat detections to identify threats that may affect our customers
- Participate in Sysdig Threat Research Team activities by conducting impactful research on new detection use cases and developing detection methods
- Help automation efforts as they relate to security content by using scripting languages such as Python
- Develop reports and dashboards to measure the progress of detection efforts.
- People being trusted advisors with a customer success mindset
- Experience from a startup environment
- Growth and learning mindset
Sysdig specializes in security and monitoring solutions for cloud-native environments, particularly applications running in containers and Kubernetes. Their products, such as Sysdig Secure and Sysdig Monitor, help organizations manage security risks, ensure compliance, and maintain application performance. Sysdig operates on a subscription model, offering various service tiers to meet the needs of different clients, from small businesses to large enterprises. This approach allows clients to access the tools necessary for securing and optimizing their applications while providing Sysdig with a steady revenue stream. The company's goal is to support organizations in navigating the complexities of modern IT environments by delivering effective security and performance management solutions.
Company Size
501-1,000
Company Stage
Series G
Total Funding
$729.5M
Headquarters
San Francisco, California
Founded
2013
Simplify's Take
What believers are saying
- William Welch's appointment as CEO focuses on accelerating growth and global expansion.
- Sysdig's 'Company of the Year' award boosts its reputation in container security.
- Falco Feeds expansion shows Sysdig's commitment to enhancing open-source threat detection.
What critics are saying
- Reliance on open source tools exposes Sysdig to potential vulnerabilities and attacks.
- Cryptojacking campaigns highlight risks of misconfigured systems and unauthorized access.
- New CEO may introduce strategic shifts disrupting current operations or client relationships.
What makes Sysdig unique
- Sysdig uses runtime insights and AI architecture for real-time cloud attack detection.
- Open source Falco enhances Sysdig's threat detection with community-driven security insights.
- Sysdig's integration with Cycode offers a comprehensive approach to securing cloud workloads.
Help us improve and share your feedback! Did you find this helpful?
Benefits
Flexible Work Hours
Mental Health Support
Company Equity
Professional Development Budget
Growth & Insights and Company News
6 month growth
↑ 0%1 year growth
↑ 0%2 year growth
↑ 2%The disclosure comes as Sysdig revealed details of a malware campaign targeting Linux and Windows by exploiting a misconfigured system hosting Open WebUI to upload an artificial intelligence (AI)-generated Python script and ultimately deliver cryptocurrency miners.
Attackers also rely on open source: While open source security tools have become essential for businesses, cybercriminals continue to leverage open source malware and target open source software as an attack vector - a trend already observed in Sysdig's 2024 Global Threat Year-in-Review.
In this article, Anthony Leverington (pictured), Regional Director for Sysdig, a cloud-native security company, discusses data security in the Australian fintech industry.1. Please start with a quick overview of yourself, your role, and your company.I’m Anthony Leverington, Regional Director for Sysdig, a cloud-native security company focused on helping organisations detect and respond to threats in real time. Cloud attacks happen fast, unfolding in 10 minutes or less, which is why we provide deep visibility and real-time security insights to protect cloud environments. Our mission is to help companies “Secure Every Second” by preventing attacks, managing vulnerabilities, and ensuring compliance across their infrastructure.2. What threats are currently keeping security professionals awake at night?Security professionals are most concerned about sophisticated cloud-based attacks, like supply chain vulnerabilities, zero-day exploits, and identity-based threats. Attackers are increasingly leveraging misconfigurations and unpatched vulnerabilities to breach cloud environments
By combining Sysdig's deep insights into cloud-native vulnerabilities with Cycode's Application Security Posture Management (ASPM) platform, Cycode Ltd. is providing organizations with an integrated approach to securing their critical cloud workloads.
Sysdig named Customers' Choice in Gartner(R) "Voice of the Customer" CNAPP report.