Principal Security Research Engineer

Job Application for Principal Security Research Engineer at SpyCloud

SpyCloud is on a mission to make the internet a safer place by disrupting the criminal underground. SpyCloud’s solutions thwart cyberattacks and protect more than 4 billion accounts worldwide. Cybersecurity is an exciting, evolving space, and being at the forefront of the fight to disrupt cybercrime makes SpyCloud a special place to work. If you’re driven to align your career with a fantastic mission, look no further!

What You'll Do:

• Design, implement, and maintain internal tooling for acquiring and parsing recaptured underground data.
• Build and deploy cloud infrastructure using Infrastructure as Code technologies.
• Build and deploy automated CI/CD pipelines to test and deploy tooling and infrastructure.
• Collaborate directly with the research team to support the targeting and collection of new data sources.
• Be the subject matter expert on Security Research Engineering and the data acquisition process.
• Leverage modern AI and LLM-based tooling to streamline development and collection workflows.
• Constantly and independently work to identify improvements and automation opportunities in the recaptured data workflow and ETL pipelines.
• Participate in security research including investigation of threat actors, malware, and other critical research in support of SpyCloud’s priorities.
• Mentor junior security researchers and engineers including providing code review and guidance on efficient code writing and professional development

Requirements:

• 6+ years experience in a Senior role within cybersecurity engineering.
• 6+ years of professional software development experience, preferably in the cybersecurity industry
• Experience using AI/ML in development workflows.
• Experience implementing AI/ML in data processing applications.
• Highly skilled with Python. Golang proficiency a plus.
• Experience building internal tooling and deploying using Infrastructure as Code technologies (we use Terraform and Ansible).
• Bachelor’s degree, or equivalent experience, in Math, Science, Engineering, or Business fields.
• Self-directed with the ability to identify and deliver on tasks without needing direct supervision.
• Critical thinker that is comfortable supporting collaborative problem solving in a team environment.
• Excellent communication skills.
• Highly self-motivated, empathetic, curious, and flexible.

Nice to Have:

• Experience working with large enterprises in delivery of security analytics products.
• Experience in acquiring and processing malware-exfiltrated data
• Experience in using data science to analyze datasets for the purposes of detecting fraud or cyberthreats.
• Experience with databases (relational or NoSQL) and designing efficient database architecture.

U.S.-Based Benefits + Perks (for Full Time Employees):

• 401(k) with Employer Contribution
• Health, Vision, and Dental Insurance
• Health Savings Account (HSA) available with Employer Contribution
• Employer Paid Life, Short-term, and Long-term Disability Insurance
• Generous PTO Plan and 16 paid holidays per year

U.K.-Based Benefits + Perks (for Full Time Employees):

• Retirement Savings Plan with Employer Contribution
• Employer Provided Private Health Insurance and Healthcare Cashplan
• Employer Paid Life Insurance and Income Replacement
• Generous Holiday Plan and 14 paid holidays per year