Full-Time

Sr. Tools Engineer

Threat Intelligence, Sentinellabs

Posted on 11/20/2024

SentinelOne

SentinelOne

1,001-5,000 employees

Autonomous cybersecurity solutions for endpoints

Cybersecurity
AI & Machine Learning

Compensation Overview

$148k - $204kAnnually

Senior

Remote in USA

Category
Cybersecurity
IT & Security
Required Skills
Python
Go
Requirements
  • Expertise working with threat intelligence platforms, particularly Vertex Synapse, with a strong understanding of how to leverage these platforms for data enrichment and threat intelligence automation.
  • A solid understanding of threat hunting processes and the ability to codify these processes into repeatable, scalable pipelines that enhance the efficacy of threat research efforts.
  • Strong analytical skills, capable of dissecting complex problems, synthesizing actionable information from diverse data sources, and finding opportunities for novel correlation.
  • Experience in software development, with strong proficiency in Python and/or Go, especially in developing and maintaining tools for security applications.
  • Comfort with rapidly prototyping and iterating on tools to ensure they meet the evolving needs of threat hunters and security researchers.
  • Knowledge of security telemetry data management, including the collection, analysis, storage, tagging, and enrichment of indicators of compromise and associated data sources such as VirusTotal Intelligence/Stairwell, and types like passive DNS, netflow, and scanning.
  • Excellent communication and collaboration skills, able to work effectively with cross-functional teams and surmise technical requirements from diverse stakeholders.
Responsibilities
  • Collaborating closely with threat hunters and security researchers to identify their needs, translating these into technical specifications for tool development.
  • Developing and integrating tools with Vertex Synapse, incorporating external enrichments, custom internal tools, and existing power ups to meet research requirements.
  • Rapidly prototyping and refining tools to ensure they effectively support threat hunting processes and are seamlessly integrated into a repeatable pipeline.
  • Designing and implementing systems for telemetry enrichment and data curation to streamline the collection, analysis, storage, tagging, and enrichment of indicators of compromise and related data.
  • Codifying threat hunting processes to maximize the value of diverse and unique data sources, meaningfully contributing to SentinelLabs threat research.

SentinelOne offers security solutions designed to protect endpoints, cloud environments, and identities from cyber threats. Their main product is an AI-powered platform that integrates various security functions, including prevention, detection, response, remediation, and forensics. This platform works by using artificial intelligence to identify both known and unknown threats, such as malware and ransomware, in real-time. When a threat is detected, SentinelOne can automatically respond to eliminate it quickly. What sets SentinelOne apart from its competitors is its fully automated response capabilities and its recognition as a leader in endpoint protection by Gartner. The company's goal is to provide comprehensive security that adapts to the ever-changing landscape of cyber threats, ensuring that enterprise customers, including those in finance, healthcare, and government, are well-protected.

Company Stage

IPO

Total Funding

$677.6M

Headquarters

Mountain View, California

Founded

2013

Growth & Insights
Headcount

6 month growth

8%

1 year growth

23%

2 year growth

39%
Simplify Jobs

Simplify's Take

What believers are saying

  • Recognition through awards like Pax8 MVP and Global Partner's Choice underscores SentinelOne's industry leadership and innovation.
  • The launch of Singularity Cloud Workload Security for Serverless Containers demonstrates the company's commitment to securing modern cloud environments.
  • Collaborations with major players like AWS and Ooredoo Group expand SentinelOne's influence and customer base.

What critics are saying

  • The significant drop in stock price since its IPO could indicate market volatility and investor uncertainty.
  • The highly competitive cybersecurity market requires continuous innovation to maintain leadership and market share.

What makes SentinelOne unique

  • SentinelOne leverages AI-driven real-time malware and ransomware detection, setting it apart from traditional signature-based cybersecurity solutions.
  • The company's focus on Extended Detection and Response (XDR) positions it as a leader in comprehensive threat management.
  • Strategic partnerships with industry leaders like Aon and NetApp enhance its service offerings and market reach.

Help us improve and share your feedback! Did you find this helpful?

Benefits

Medical, Vision, Dental, 401(k), Commuter, Health and Dependent FSA

Unlimited PTO

Industry leading gender-neutral parental leave

Paid Company Holidays

Paid Sick Time

Employee stock purchase program

Disability & life insurance

Employee assistance program

Gym membership reimbursement

Cell phone reimbursement

Numerous company-sponsored events