Oh oh! Awesome! {$ msg.text $} ({$ msg.count $})

Security Analyst / Researcher

  • Applications are considered on a rolling basis
  • Helsinki
  • Applications are considered on a rolling basis
  • Helsinki

WithSecure™ protects businesses all over the world from modern threats. We do this through a Co-security approach born from first-hand knowledge that no one can solve every cyber security problem alone. Every single day, our diverse, growing team fights against online extortion, threats to national infrastructure, the unlawful spread of sensitive information, and everything in-between.

The best part about working for WithSecure is our people! We are a community of dedicated and passionate professionals that take workplace happiness seriously. If you’re looking for something that’s more than just a job – we’d love to hear from you.

Do you enjoy working with Detection & Response systems? Are you interested in helping design and using artificial intelligence and machine learning to detect malicious behavior in complex environments? Are you excited about researching the latest Techniques, Tactics and Procedures that cyber threat actors use as they move across the kill chain? If you have answered yes to any of these questions, this could be your dream job!

Key Responsibilities

As a Researcher / Security Analyst, you will be part of the WithSecure Intelligence Team and will focus on making sure that our Endpoint Detection & Response (EDR) as well as Managed Detection & Response (MDR) products can detect even the most sophisticated attackers.

  • You will be responsible for using detection engineering skill set to design, build and maintain WithSecure Elements EDR incident's Broad Context Detection logic. Broad Context Detections combines all the detections related to an incident, visualizing them uniquely and allowing defenders to swiftly react to attacks
  • You will be collaborating with product R&D and Security Research teams to design and lead the implementation of innovative detection technologies in EDR tech stack
  • Your responsibilities will also include building new detection capabilities based upon research and analysis of TTPs used by malware and advanced threat actors
  • You will be actively working with AI and ML experts to design artificial intelligence and machine learning models to detect attackers always more effectively

What are we looking for?

  • Experience working with Endpoint telemetry and EDR products
  • Understanding of security architecture, and API development/automation
  • Software development experience (Java and Drools are a plus)
  • Experience with scripting language such as Python, PowerShell, or Bash
  • Familiarity with common techniques used by malware and threat actors
  • Familiarity with Windows operating system internals

What’s in it for you?

  • Learning from world-class cybersecurity experts that track and fight threat actors by building the detections behind top-notch cybersecurity products
  • Flexible and friendly working environment
  • Ability to contribute and influence the capabilities of WithSecure's cyber security products
  • Make the digital world a better place by creating protection mechanism that block and detect threat actors

To apply for this position, please submit a cover letter and your resume.

A security background check will be conducted for the selected candidate, in accordance with the Finnish Security Clearance act 726/2014.

Work with great people

Karolina Malagocka
Senior Marketing Manager
"We see the value of each and every person"
William Jardine
Managing Consultant
"The freedom is a big thing for me. The trust you are doing something worthwhile."
Robert Grześkowiak
Lead Software Engineer
"At WithSecure you won't feel bored. There are opportunities to learn new things every day."
Fairuz Zainor
"I joined WithSecure (previously F-Secure) straight after graduating and now, 10 years later, I am still happy to be here."

Great Place to Work

  • Over 1,700 amazing colleagues in nearly 30 offices

  • Possibility to protect the world

  • Work with best of class experts who care

  • Relaxed, open and fun working environment

  • 68+ of nationalities

  • Global with the spirit of a small company

About the company

Purpose – Why we exist
We are here to build and sustain trust in a digital society
We are here to build and sustain trust in a digital society — trust that is threatened by uncertainty, fear and worry caused by cyber attacks and crime.

Vision – Where we are heading
No one should experience a serious loss because of a cyber attack
We envision a future where no one should experience a serious loss or be put out of business because of cyber attack or crime. At least no one who puts their trust in us.

Mission – What we do
Accelerate transition to outcome-based security
Our mission is to research, innovate and build technologies, human expertise and delivery-business models that will accelerate our customers’ and partners’ transition to outcome-based security.

Paolo Palumbo | Contact Person

I'm interested

Visit website