Lead Threat Research Engineer

Responsibilities

• Monitor, analyze, and research emerging cyber threats, vulnerabilities, and exploits to identify novel TTPs and mitigations.
• Produce and test rules for hunting and enrichment, such as Yara rules.
• Analyze the threat attack life-cycle, including behavior, modus operandi, and objectives.
• Research new methods and technologies to detect cyber threats and design approaches to identify security breaches.
• Develop tools to automate and scale detection and response activities.
• Write detailed technical blog posts regarding discovered threats and TTPs.
• Collaborate with security, malware research, and engineering teams to develop cross-product intelligence and novel protection strategies.

Requirements

• E./B.Tech/M.Tech in Computer Science, MCA, or MCS from a reputed institution.
• 7 years of relevant technical experience in cybersecurity.
• Expertise in MITRE ATT&CK frameworks and EDR/XDR technologies.
• Proven experience with threat hunting, incident response, or security operations.
• Ability to perform initial static and dynamic malware analysis.
• Proficiency in reverse engineering techniques.
• Strong knowledge of networking, the TCP/IP stack, and networking protocols.
• Proficiency in programming or scripting languages.
• Experience with threat intelligence tools such as VirusTotal or Shodan.

Preferred Qualifications

• Certifications in Computer Security domains.
• Deep understanding of operating system internals and application file formats (e.g., PDF, Office files).
• Experience with forensics, kill chain analysis, and risk assessment.

About the Company

Qualys, Inc. (NASDAQ: QLYS) is a pioneer and leading provider of disruptive cloud-based security, compliance, and IT solutions. With more than 10,000 subscription customers worldwide, including a majority of the Forbes Global 100 and Fortune 100, Qualys helps organizations streamline and automate their security and compliance onto a single platform for greater agility and cost savings.