Threat Researcher

Job description

The threat researcher role is a hybrid position that will be responsible for building and contributing directly to our platform and detection engineering roadmap, analyzing Keep Aware data at-scale, and designing new mechanisms for threat detection.

About Keep Aware
Keep Aware is changing the way that modern businesses approach workforce security.

We believe that to secure businesses today, security teams have to start by protecting where modern work lives, the web browser. Keep Aware starts by securing the browser blind spot and provides visibility and response capabilities to challenge threats organizations face every day. Our platform enables security teams to promote continuous awareness, tackle SaaS risk, and intelligently respond to cyber threats across the business.

Based in Austin, Texas, Keep Aware is backed by top-tier venture firms. Our experience comes from multiple cyber security industry leaders, and we are dedicated to developing and implementing the most advanced browser security solution. We are building a team of ambitious and knowledgeable individuals from diverse backgrounds with a passion for creating the best user experience for our customers.

Our engineering team is hybrid and meets in-person one to two days a week.

About the Role
The threat researcher role is a hybrid position that will be responsible for building and contributing directly to our platform and detection engineering roadmap, analyzing Keep Aware data at-scale, and designing new mechanisms for threat detection.

Responsibilities

Designing, developing, and maintaining systems for browser threat detection and response.
Collaborating with the CTO to lead the development and implementation of scalable detection and analysis methods to bring to the Keep Aware platform.
Analyzing large data sets, identifying threats, and designing additional detection capabilities.
Communicating technical information to non-technical stakeholders, such as the detection engineering roadmap and progress updates.

Qualifications

Background: Cyber security, software engineering, data engineering, data science, or related background with demonstrated success working for fast-growing companies and adapting to the needs of a company as it grows.
Domain expertise: Combination of technical and domain-specific knowledge, as well as a strong desire to learn and stay up-to-date with the latest user-facing security threats and attack methods. Demonstration of expertise through contributions to code repositories, projects, reports, articles or documentation.
Detection engineering or equivalent experience: Creating systems involving log analysis, threat hunting, anomaly detection, or machine learning. Experience with various security analytics tools like Splunk, Elasticsearch or other SIEMs.
Team collaboration: Experience working effectively as an individual and collaborating with a fast-growing group of diverse team members. Ensure security engineering goals are met with quality results.
Programming and scripting: Previous experience with web scraping technologies, creating ETL pipelines, or building scripts and software in the security engineering field with various technologies such as JavaScript, Puppeteer, Lambda and other AWS services.
Project ownership: Lead projects with a customer-centric focus, passion for problem-solving, and dedication to continually enhancing processes and procedures.

Benefits