Principal Windows Security Researcher
Edr
Posted on 3/15/2024
INACTIVE
Huntress

201-500 employees

Threat detection cybersecurity company
Company Overview
Huntress is on a mission to enable IT providers and resellers to stop hidden threats that sneak past preventive security tools. Founded by former NSA Cyber Operators—and backed by a team of ThreatOps researchers—Huntress helps their partners protect their customers and take the fight directly to hackers.
AI & Machine Learning
Data & Analytics
Cybersecurity
B2B

Company Stage

Series C

Total Funding

$159.9M

Founded

2015

Headquarters

Ellicott City, Maryland

Growth & Insights
Headcount

6 month growth

11%

1 year growth

26%

2 year growth

110%
Locations
Remote in USA • Remote
Experience Level
Entry
Junior
Mid
Senior
Expert
Desired Skills
PowerShell
Python
CategoriesNew
IT & Security
Cybersecurity
IT Project Management
Requirements
  • Expert in Windows OS internals, components, APIs, and design
  • Prior experience with Windows OS kernel coding and device drivers
  • Experience testing EDRs, bypasses, and evasion techniques
  • Comfortable reverse engineering and using debuggers
  • Proficiency in multiple programming/scripting languages, such as C/C++/C#, PowerShell, and Python
  • Commitment to clear documentation of research findings
  • Experience with MITRE ATT&CK matrix, SIGMA, Yara, and Elasticsearch/Kibana
Responsibilities
  • Identify innovative ways to detect Windows OS threats
  • Develop cross-platform features that leverage telemetry from common OS subsystems such as file system, memory, process, and network activity
  • Research and development of sensor capabilities to provide visibility and detection support for attack techniques across supported Windows OS versions
  • Work collaboratively to implement detection logic
  • Identify and evaluate new telemetry opportunities
  • Identify and address gaps in product coverage
  • Respond to product escalations
  • Perform False Positive and False Negative investigations
  • Lead product research initiatives to develop and evaluate security product strategies and technologies
  • Coordinate with Product and Engineering teams to integrate and operationalize solutions developed by Threat Operations teams
  • Develop internal and external technical documentation to educate customers and communicate research findings to adjacent teams about security risks and opportunities
  • Mentor and teach technical expertise to advance the broader community
  • Promote Huntress' reputation through media interaction, public speaking, CFPs, CTFs, and blogs