Security Specialist

R&D United States

Apply

Description

Description:

Join our team as a Security Specialist within our Varonis Security Operations and Forensics Group.  As one of our elite cybersecurity experts, you will be at the forefront of cyber defense, helping to support our global Incident Response engagements through your engineering, development and research projects.  Your contribution will be pivotal in helping our team to deliver exception response and forensic services to our customer base.

Your role will involve researching, developing, building and supporting blue-team tools, technologies, automations and processes designed to support our 24/7/365 DFIR team.  You will also work alongside our internal engineering, IT, DevOps and R&D teams while also contributing knowledge and research towards product development areas.

If you are passionate about cybersecurity with a background in DFIR, Detection Engineering, Threat Hunting, SOC Operations or similar and an engineering / problem-solving mindset, this is the perfect opportunity to make an impact and advance your career.

Responsibilities:

  • Development, Research, and Engineering work focused on supporting our customer-facing Incident Response teams
  • Work with our global DFIR team to build and improve our automations, processes, tools, knowledge, and platforms
  • Build data transformation, parsing, and enrichment solutions in the context of response engagement data pipelines/automations
  • Work with platforms such as Velociraptor and ELK-stack to correct issues, improve processes, and reduce manual labor
  • Develop bespoke solutions to challenging and unique problems in our DFIR processes (scripts, integrations, automations, etc)
  • Contribute to internal knowledge bases through research focused on DFIR subject areas

Requirements:

  • 2+ years of experience working in an engineering-focused blue-team capacity
  • Demonstrate knowledge of common Windows and Linux forensic techniques, tools, artifacts, and concepts
  • Strong Python foundation (PowerShell/Go is a bonus)
  • Strong knowledge in Velociraptor (or similar tools) and ELK stack
  • Relevant knowledge of network architecture fundamentals (Proxies, NAT, firewalls, IDPS, DMZ, etc.) as well as common network protocols and applications (TCP/UDP, DNS, HTTP/S, etc.) 
  • Technical foundation of standard Information Technology concepts and services (Active Directory, Entra ID, M365, etc)
  • Experience working with enterprise-level security solutions (SIEMs, Firewalls, IDPS, EDR, IAM, DLP, etc)
  • Proven success contributing to a global team environment
  • Strong communication and interpersonal skills
  • A problem-solving mindset focused on creative or unique solutions to difficult challenges

Apply Apply Later
← Back to Current Openings

Share

Similar Jobs

{{ job.title }}