Senior Threat Researcher Endpoint/Cloud - Detections at Arctic Wolf - ScoutJobs - The AI-curated global job board
Skip to content
ScoutJobs.AI
Log inGet started
Navigate
How it worksThe agent, step by stepFeaturesEverything else it doesPricingSimple plansFAQQuestions everyone asks
Log inGet started. Free.
Arctic Wolf
Posted a day ago

Senior Threat Researcher Endpoint/Cloud - Detections

Arctic WolfSenior Threat Researcher Endpoint/Cloud - Detections
Apply now

Perks & benefits

CommissionHealth InsurancePaid Leave

Requirements

6+ years security detection experience, Expertise in endpoint, cloud, or network detection, Experience with anomaly and behavioral-based detections, Knowledge of TCP/IP, DNS, LDAP, and NTLM, Experience with MITRE ATT&CK and packet capture analysis

Skills

Cloud SecurityCybersecurity

About the role

Responsibilities

  • Develop and maintain high-quality custom detection rules across endpoint, cloud, and network environments
  • Research emerging threats, attack techniques, and telemetry sources to improve detection coverage
  • Design and continuously improve anomaly-based and behavioral-based detections
  • Conduct code reviews and troubleshoot existing detection and signature codebases
  • Collaborate with engineering and security operations teams to tune detection capabilities and reduce false positives
  • Build runbooks, documentation, and research reports to support detection surfaces
  • Participate in the full software development life cycle to build secure and maintainable detection content

Requirements

  • 6+ years of experience authoring and maintaining security detections
  • Strong expertise in endpoint, cloud, or network detection and signature development
  • Proven experience with anomaly-based and behavioral-based detections
  • Deep knowledge of networking protocols including TCP/IP, DNS, LDAP, and NTLM
  • Experience using MITRE ATT&CK, packet capture analysis, and threat intelligence to drive development
  • Experience working within Managed Detection and Response (MDR) environments

Preferred Qualifications

  • Experience developing SIEM, EDR, or cloud security detections
  • Proficiency in programming languages such as Python, Go, Java, or C++
  • Experience authoring Sigma and YARA rules
  • Knowledge of DevOps practices, automation frameworks, and Test Driven Development (TDD)
  • Experience with cloud platforms (AWS, Azure, GCP) and container technologies like Kubernetes
  • Familiarity with open-source tools such as Zeek or Suricata

Benefits

  • Equity for all employees
  • Flexible annual leave, paid holidays, and volunteer days
  • Comprehensive private benefits plan including medical, life, and personal accident insurance
  • Training and career development programs
  • Fertility support and paid parental leave

About the Company

Arctic Wolf is a leader in security operations, dedicated to the mission of ending cyber risk. We build award-winning technology, such as our Aurora Platform, to protect organizations worldwide through innovation and expert research.

ScoutJobs Agent

Get matches like this delivered daily

Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.

Get started — it's free

Senior Threat Researcher Endpoint/Cloud - Detections

Arctic Wolf · Bengaluru

Sign up to apply