Security Analyst / Researcher

Job Description

WithSecure™ protects businesses all over the world from modern threats. We do this through a Co-security approach born from first-hand knowledge that no one can solve every cyber security problem alone. Every single day, our diverse, growing team fights against online extortion, threats to national infrastructure, the unlawful spread of sensitive information, and everything in-between.

The best part about working for WithSecure is our people! We are a community of dedicated and passionate professionals that take workplace happiness seriously. If you’re looking for something that’s more than just a job – we’d love to hear from you.

Do you enjoy working with Detection & Response systems? Are you interested in helping design and using artificial intelligence and machine learning to detect malicious behavior in complex environments? Are you excited about researching the latest Techniques, Tactics and Procedures that cyber threat actors use as they move across the kill chain? If you have answered yes to any of these questions, this could be your dream job!

Key Responsibilities

As a Researcher / Security Analyst, you will be part of the WithSecure Intelligence Team and will focus on making sure that our Endpoint Detection & Response (EDR) as well as Managed Detection & Response (MDR) products can detect even the most sophisticated attackers.

• You will be responsible for using detection engineering skill set to design, build and maintain WithSecure Elements EDR incident's Broad Context Detection logic. Broad Context Detections combines all the detections related to an incident, visualizing them uniquely and allowing defenders to swiftly react to attacks
• You will be collaborating with product R&D and Security Research teams to design and lead the implementation of innovative detection technologies in EDR tech stack
• Your responsibilities will also include building new detection capabilities based upon research and analysis of TTPs used by malware and advanced threat actors
• You will be actively working with AI and ML experts to design artificial intelligence and machine learning models to detect attackers always more effectively

What are we looking for?

• Experience working with Endpoint telemetry and EDR products
• Understanding of security architecture, and API development/automation
• Software development experience (Java and Drools are a plus)
• Experience with scripting language such as Python, PowerShell, or Bash
• Familiarity with common techniques used by malware and threat actors
• Familiarity with Windows operating system internals

What’s in it for you?

• Learning from world-class cybersecurity experts that track and fight threat actors by building the detections behind top-notch cybersecurity products
• Flexible and friendly working environment
• Ability to contribute and influence the capabilities of WithSecure's cyber security products
• Make the digital world a better place by creating protection mechanism that block and detect threat actors

To apply for this position, please submit a cover letter and your resume.

A security background check will be conducted for the selected candidate, in accordance with the Finnish Security Clearance act 726/2014.