Jobs
>
London

    Threat Researcher - United Kingdom - Sophos

    Sophos
    Sophos United Kingdom

    1 week ago

    Default job background
    Description

    About Us

    Sophos is a worldwide leader and innovator of advanced cybersecurity solutions, including Managed Detection and Response (MDR) and incident response services and a broad portfolio of endpoint, network, email, and cloud security technologies that help organizations defeat cyberattacks. As one of the largest pure-play cybersecurity providers, Sophos defends more than 500,000 organizations and more than 100 million users globally from active adversaries, ransomware, phishing, malware, and more. Sophos' services and products connect throughitscloud-based Sophos Central management console and are powered bySophos X-Ops, the company's cross-domain threat intelligence unit. Sophos X-Ops intelligence optimizes the entire Sophos Adaptive Cybersecurity Ecosystem, which includes a centralized data lake that leverages a rich set of open APIs available to customers, partners, developers, and other cybersecurity and information technology vendors. Sophos provides cybersecurity-as-a-service to organizations needing fully managed, turnkey security solutions. Customers can also manage their cybersecurity directly with Sophos' security operations platform or use a hybrid approach by supplementing their in-house teams with Sophos' services, including threat hunting and remediation. Sophos sells through reseller partners and managed service providers (MSPs) worldwide. Sophos is headquartered in Oxford, U.K. More information is available at

    Role Summary

    Threat hunter? Programmer? Data-driven?

    We have a fantastic opportunity here at Sophos Labs for a Threat Researcher to join our global team of behaviour-based detection engineers, to hunt, to research, and to add real-time detection for suspicious activity across our customer environments.

    Our team of skilled security experts combine their passion to detect & disrupt cyber-attacks with their capability to develop classification rules that can cut through the noise in modern computing environments to tease out attacker's nefarious activities.

    You are intrinsically motivated to understand the core logic behind malware and hacking attacks, to find & predict new ways attackers will modify their techniques, and take great satisfaction in developing robust detection logic that is immune to evasive actions. You will be responsible for writing rules that are able to signal early to late-breaking IOCs that highlight customers under attack, which are the foundation of Sophos next-gen approach.

    Above all - you enjoy thinking creatively; combining your deep technical knowledge, your tenacity for innovation, and your can-do attitude to solve complex and challenging problems on a daily basis.

    Our team is active in the wider threat research community. Take a look at some recent publications:

    What You Will Do:
    • Understanding malware kill chain & hands-on-keyboard attacks
    • Accurate & efficient classification of malicious & suspicious behaviour
    • Author classification rules, for both Endpoint & Cloud scenarios, to identify malicious & suspicious use of TTPs
    • Analyse real world kill chains to discover new TTPs and gaps in coverage
    • Measure and tune TTP coverage through data mining, customer telemetry & internal sandbox feeds
    • Build & maintain playbooks on threat actor TTPs
    What You Will Bring:
    • Strong knowledge of Windows operating system, internals & forensic tools
    • Programming experience, Python/Lua
    • Excellent grasp of MITRE Attack tactics, techniques & simulation
    • Familiar with computational cost analysis & problem solving to minimize impact
    • Bachelor degree in Computer Software (Computer Security preferable)
    • Big data experience, Elastic Search, Kibana, Redshift

    #B2

    Ready to Join Us?

    At Sophos, we believe in the power of diverse perspectives to fuel innovation. Research shows that candidates sometimes hesitate to apply if they don't check every box in a job description. We challenge that notion. Your unique experiences and skills might be exactly what we need to enhance our team. Don't let a checklist hold you back –we encourage you to apply.

    What's Great About Sophos?

    · Sophos operates a remote-first working model, making remote work the primary option for most employees. However, some roles may necessitate a hybrid approach. Please refer to the location details in our job postings for further information.

    · Our people – we innovate and create, all of which are accompanied by a great sense of fun and team spirit

    · Employee-led diversity and inclusion networks that build community and provide education and advocacy

    · Annual charity and fundraising initiatives and volunteer days for employees to support local communities

    · Global employee sustainability initiatives to reduce our environmental footprint

    · Global fitness and trivia competitions to keep our bodies and minds sharp

    · Global wellbeing days for employees to relax and recharge

    · Monthly wellbeing webinars and training to support employee health and wellbeing

    Our Commitment To You

    We're proud of the diverse and inclusive environment we have at Sophos, and we're committed to ensuring equality of opportunity. We believe that diversity, combined with excellence, builds a better Sophos, so we encourage applicants who can contribute to the diversity of our team. All applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, sex, gender reassignment, marital status, race, religion or belief, color, age, military veteran status, disability, pregnancy, maternity or sexual orientation. We want to give you every opportunity to show us your best self, so if there are any adjustments we could make to the recruitment and selection process to support you, please let us know.

    Data Protection

    If you choose to explore an opportunity, and subsequently share your CV or other personal details with Sophos, these details will be held by Sophos for 12 months in accordance with our Privacy Policy and used by our recruitment team to contact you regarding this or other relevant opportunities at Sophos. If you would like Sophos to delete or update your details at any time, please follow the steps set out in the Privacy Policy describing your individual rights. If you have any questions about Sophos' data protection practices, please contact

    #J-18808-Ljbffr
  • Control Risks

    Researcher, Threat Intelligence

    5 days ago

    Control Risks London, United Kingdom

    To conduct open-source intelligence research to support a complex and fast-paced threat intelligence programme. · **Role tasks and responsibilities** · Intelligence Collection and Analysis · - Gather information on individuals and groups posing a threat to our client and their as ...

  • Control Risks

    Online Threat Intelligence Researcher

    1 day ago

    Control Risks London, United Kingdom

    Conduct open-source intelligence research and monitoring to support the work of the Online Threat Intelligence (OTI) team. · **Role tasks and responsibilities** · - Conduct research across multiple venues to identify possible threats and threatening discourse surrounding our clie ...

  • Sophos Group

    Threat Researcher

    6 days ago

    Sophos Group United Kingdom

    Threat Researcher – Detection Engineer - MAC OS · United Kingdom · Threat Intelligence – Threat Research and Engineering (SophosLabs) / · We have a fantastic opportunity here at Sophos Labs for a Threat Researcher to join our global team of behaviour-based detection engineers, ...

  • Sophos Group

    Threat Researcher

    4 days ago

    Sophos Group United Kingdom

    Threat Researcher – Detection Engineer - Windows OS · United Kingdom · Threat Intelligence – Threat Research and Engineering (SophosLabs) / · We have a fantastic opportunity here at Sophos Labs for a Threat Researcher to join our global team of behaviour-based detection engine ...

  • Control Risks

    Researcher - Threat Intelligence

    1 week ago

    Control Risks London, United Kingdom

    Job Description · In this role you will be responsible for conducting desktop research into cyber and online threats, to enrich our Cyber Threat Intelligence reporting. · This role will primarily involve contributing regular reporting for Control Risks' clients that subscribe to ...

  • Control Risks

    Researcher - Threat Intelligence

    6 days ago

    Control Risks London, United Kingdom Part time, Full time

    In this role you will be responsible for conducting desktop research into cyber and online threats, to enrich our Cyber Threat Intelligence reporting. · This role will primarily involve contributing regular reporting for Control Risks' clients that subscribe to our intelligence p ...

  • Control Risks

    Researcher - Threat Intelligence

    1 week ago

    Control Risks United Kingdom

    In this role you will be responsible for conducting desktop research into cyber and online threats, to enrich our Cyber Threat Intelligence reporting.This role will primarily involve contributing regular reporting for Control Risks' clients that subscribe to our intelligence plat ...

  • OpenText

    Lead Threat Research Analyst

    1 week ago

    OpenText United Kingdom

    OpenText · OpenText offers cloud-native solutions in an integrated and flexible Information Management platform to enable intelligent, connected and secure organizations. View company page · OPENTEXT · OpenText is a global leader in information management, where innovation, c ...

  • Protection Group International

    Threat Investigator

    1 week ago

    Protection Group International London, United Kingdom

    **PGI are looking for a Threat Investigator to join its Digital Investigations team.** · PGI is a digital risk company focused on intelligence and cybersecurity. PGI's Digital Investigations team leverage OSINT, SOCMINT, and WEBINT to provide contextual intelligence on state and ...

  • Recorded Future

    Senior Cyber Security Researcher

    5 days ago

    Recorded Future London, United Kingdom

    With 1,000 employees, over $250M in sales, 1,500+ clients, and rapid year-over-year growth, Recorded Future is the world's most advanced, and largest, intelligence company · **Senior Cyber Security Researcher/Reverse Engineer, Reverse Engineering Team**: · Reverse Engineering Tea ...

  • NHS Counter Fraud Authority

    Strategic Intelligence Lead

    1 week ago

    NHS Counter Fraud Authority London, United Kingdom

    The NHS Counter Fraud Authority (NHSCFA) is the national body responsible for all matters relating to the prevention, detection and investigation of economic crime across the NHS. Further information about our work and annual plan for delivering this is available on our website. ...

  • Pinnacle Employment

    Cyber Security Sales

    1 week ago

    Pinnacle Employment London, United Kingdom

    Required Skills: Excellent Communication, Understanding of Global Information Security & Privacy standards, regulations & guidelines, Good understanding of Cloud concepts, Good understanding of Attack surface monitoring, Understanding of Dark web monitoring & respective Threat In ...

  • Microsoft

    Security Researcher

    2 days ago

    Microsoft London, United Kingdom

    Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, an ...

  • Kite Human Capital

    Cyber Threat Intelligence Analyst

    2 days ago

    Kite Human Capital London, United Kingdom

    **Cyber Threat Intelligence Analyst - London - £60k package** · As this person will be doing a lot of research on current threats, and analysing and triage their severity - and reporting on those accordingly, you will need to have a high level of writing skills. · Key skills: · C ...

  • EasyHiring

    Senior Threat Intelligence Specialist

    1 week ago

    EasyHiring London, United Kingdom

    We believe in better. And we make it happen. · Better content. Better products. And better careers. · Working in Tech, Product or Data is about building the next and the new. From broadband to broadcast, streaming to mobile, we never stand still. We optimise and innovate. · We tu ...

  • Peel Recruitment & Training Solutions Ltd

    Intelligence Researcher

    4 days ago

    Peel Recruitment & Training Solutions Ltd London, United Kingdom

    **We are currently recruiting for Intelligence Researchers in Putney.** · **Hours**: Hybrid role · - 3 days in office · **Purpose**: · The role holder will provide research support collaboratively as part of a team of analysts, researchers and police officers working under the St ...

  • Arc IT Recruitment

    Incident Response Specialist

    1 day ago

    Arc IT Recruitment London, United Kingdom

    **Incident Response Specialist - SOC** · **London, City/ Remote** · **Salary £90K - £ 95K plus bonus, plus benefits** · **Key Responsibilities**: · - Lead and coordinate the investigation effort for cyber security incidents from initial escalation through after-action reporting · ...

  • Paysafe

    Group Head of Cyber Threat Intelligence

    6 days ago

    Paysafe London, United Kingdom

    **Position**: Group Head of Cyber Threat Intelligence · **Reporting to**:VP Cyber Defence & Resilience · If you are passionate about managing Information Security within a fast-growing global operating Payment organisation, this is a great opportunity to take a leadership role wi ...

  • Secret Intelligence Service

    Ai Research Lead

    1 week ago

    Secret Intelligence Service London, United Kingdom

    **About Us** · We're MI6, also known as the Secret Intelligence Service. Our mission is to protect the security and economic wellbeing of the UK from overseas threats such as regional instability, terrorism, and cyber-attacks. Working across the globe and in close partnership wit ...

  • Department for Science, Innovation & Technology

    Cyber Misuse Workstream Lead

    55 minutes ago

    Department for Science, Innovation & Technology London, United Kingdom

    **Details**: · **Reference number**: · **Salary**: · - £105,000 - £135,000- Base salary of between £55,805 (L5) - £68,770 (L6) which is supplemented with an allowance between £49,195 to £66,230- A Civil Service Pension with an average employer contribution of 27%**Job grade**: · ...