Role Summary
Sophos is looking for a Linux Threat Researcher to join our team! The ideal candidate has extensive knowledge of Linux internals, is fluent in assembly, and has a knack for getting to the bottom of any issue. You enjoy thinking creatively; combining your deep technical knowledge, your tenacity for innovation, and your can‑do attitude to solve complex and challenging problems on a daily basis.
What You Will Do
- As a member of the Linux Behavior Protection Team, you will be responsible for:
- Implementing context‑aware & behavior‑based detection to provide multiple layers of protection from attacks targeting Linux infrastructure
- Mapping protection & detection of attack behaviors to MITRE ATT&CK framework
- Linux kernel exploit research and detection
- Threat hunting, data mining, and using other methods of research to discover new threats to Linux and opportunities to improve protection