Full-Time

Sr. Tools Engineer

Threat Intelligence, Sentinellabs

Posted on 11/20/2024

SentinelOne

SentinelOne

1,001-5,000 employees

Autonomous cybersecurity solutions for endpoints

Enterprise Software
Cybersecurity

Compensation Overview

$148k - $204kAnnually

Senior

Remote in USA

This role is only for candidates based in the United States.

Category
Cybersecurity
IT & Security
Required Skills
Python
Go
Data Analysis

You match the following SentinelOne's candidate preferences

Employers are more likely to interview you if you match these preferences:

Degree
Experience
Requirements
  • Expertise working with threat intelligence platforms, particularly Vertex Synapse, with a strong understanding of how to leverage these platforms for data enrichment and threat intelligence automation.
  • A solid understanding of threat hunting processes and the ability to codify these processes into repeatable, scalable pipelines that enhance the efficacy of threat research efforts.
  • Strong analytical skills, capable of dissecting complex problems, synthesizing actionable information from diverse data sources, and finding opportunities for novel correlation.
  • Experience in software development, with strong proficiency in Python and/or Go, especially in developing and maintaining tools for security applications.
  • Comfort with rapidly prototyping and iterating on tools to ensure they meet the evolving needs of threat hunters and security researchers.
  • Knowledge of security telemetry data management, including the collection, analysis, storage, tagging, and enrichment of indicators of compromise and associated data sources such as VirusTotal Intelligence/Stairwell, and types like passive DNS, netflow, and scanning.
  • Excellent communication and collaboration skills, able to work effectively with cross-functional teams and surmise technical requirements from diverse stakeholders.
Responsibilities
  • Collaborating closely with threat hunters and security researchers to identify their needs, translating these into technical specifications for tool development.
  • Developing and integrating tools with Vertex Synapse, incorporating external enrichments, custom internal tools, and existing power ups to meet research requirements.
  • Rapidly prototyping and refining tools to ensure they effectively support threat hunting processes and are seamlessly integrated into a repeatable pipeline.
  • Designing and implementing systems for telemetry enrichment and data curation to streamline the collection, analysis, storage, tagging, and enrichment of indicators of compromise and related data.
  • Codifying threat hunting processes to maximize the value of diverse and unique data sources, meaningfully contributing to SentinelLabs threat research.

SentinelOne offers security solutions designed to protect endpoints, cloud environments, and identities from cyber threats. Their main product is an AI-powered platform that integrates various security functions, including prevention, detection, response, remediation, and forensics. This platform works by using artificial intelligence to identify both known and unknown threats, such as malware and ransomware, in real-time. It can automatically respond to and eliminate threats, making it efficient in handling security incidents. What sets SentinelOne apart from its competitors is its fully automated response capabilities and its recognition as a leader in endpoint protection by Gartner. The company's goal is to provide comprehensive security solutions that adapt to the evolving landscape of cyber threats, ensuring that enterprise customers, including those in finance, healthcare, and government, are well-protected.

Company Stage

IPO

Total Funding

$774.9M

Headquarters

Mountain View, California

Founded

2013

Growth & Insights
Headcount

6 month growth

1%

1 year growth

2%

2 year growth

1%
Simplify Jobs

Simplify's Take

What believers are saying

  • Integration of DeepSeek's R1 model enhances AI capabilities and cost-effective threat detection.
  • Expansion in Asia Pacific with new leadership boosts growth and market penetration.
  • Doubling of Purple AI Security Suite's market reach indicates strong demand and effectiveness.

What critics are saying

  • DeepSeek's R1 model poses a competitive threat with lower costs and reinforcement learning.
  • Open-source nature of DeepSeek's R1 model may attract more cybersecurity startups.
  • Increased competition in AI-driven cybersecurity solutions market due to new entrants.

What makes SentinelOne unique

  • SentinelOne offers AI-powered security solutions for endpoint, cloud, and identity environments.
  • Recognized as a Visionary in Gartner's Endpoint Protection Magic Quadrant.
  • First next-gen endpoint protection certified as antivirus replacement for Windows, OS X, and Linux.

Help us improve and share your feedback! Did you find this helpful?

Benefits

Medical, Vision, Dental, 401(k), Commuter, Health and Dependent FSA

Unlimited PTO

Industry leading gender-neutral parental leave

Paid Company Holidays

Paid Sick Time

Employee stock purchase program

Disability & life insurance

Employee assistance program

Gym membership reimbursement

Cell phone reimbursement

Numerous company-sponsored events

INACTIVE