Staff Threat Research Engineer, IAAS

About Netskope

Today, there's more data and users outside the enterprise than inside, causing the network perimeter as we know it to dissolve. We realized a new perimeter was needed, one that is built in the cloud and follows and protects data wherever it goes, so we started Netskope to redefine Cloud, Network and Data Security.

Since 2012, we have built the market-leading cloud security company and an award-winning culture powered by hundreds of employees spread across offices in Santa Clara, St. Louis, Bangalore, London, Paris, Melbourne, Taipei, and Tokyo. Our core values are openness, honesty, and transparency, and we purposely developed our open desk layouts and large meeting spaces to support and promote partnerships, collaboration, and teamwork. From catered lunches and office celebrations to employee recognition events and social professional groups such as the Awesome Women of Netskope (AWON), we strive to keep work fun, supportive and interactive. Visit us at Netskope Careers. Please follow us on LinkedIn and Twitter@Netskope.

About the role

Today, there’s more data and users outside the enterprise than inside, causing the network perimeter as we know it to dissolve. We realized a new perimeter was needed, one that is built in the cloud and follows and protects data wherever it goes, so we started Netskope to redefine Cloud, Network, and Data Security.

Within Netskope Engineering, we have invented a Next Generation SaaS Security Posture Management (SSPM) tool that gives enterprises workload and compliance visibility to protect critical data within their numerous Software-as-a-Service deployments. The research team for this product works as content producers, pathfinders and minesweepers. The researcher's duties are to discover the best solutions to the problems our customers are facing before they know they have them and to find flaws in our design choices before we engineer them.

For this mission, we are looking for new security researchers to design new security-focused application integrations and develop new content for the platform.

What’s in it for you

We believe Netskope’s SSPM team is the best place for you to work if you seek:

• An opportunity to shape the design of a novel product and have a significant role on the impact it makes in the enterprise security domain.

• To solve intellectually rewarding problems with a meaningful purpose.

• A position with high agency and trust on how you choose to work.

• An amazing work environment, competitive compensation, benefits and great perks.

• The rest of the great reasons to join Netskope as described in https://www.netskope.com/company/careers

What you will be doing

Some examples of the problems the team needs to solve could include:

• Implement security and compliance content to the product. Help make the correct security configuration decisions on behalf of our customers.

• Investigate SaaS design and data models and translate them to security graphs consumed by the SPM product. Study API design, hardening manuals and security best practices to discover the essential security caveats of the target applications.

• Find novel solutions to provide visibility, security, compliance and remediation tools for enterprise SaaS application environments.

• Explore different threat vectors for cloud services.

• Support multiple stakeholders such as engineering, research, product management, customer success, and customer support teams as a domain expert.

• Public writing and presentation opportunities, such as publishing articles, blogs or papers in relevant conferences.

• Mentor, coach and lead a team of researchers to write detections that are of high quality.

Required skills and experience

• A decent understanding of Information Security. SaaS specific security experience preferable.

• At least 4 - 6 years of experience in security domain (any of CSPM, DSPM, ASPM or the like)

• Experience from security analysis work, enterprise SaaS deployment hardening duties or from security content development.

• Proficient enough in scripting language ( Python, Shell ) of one’s choice to be able to solve technical problems with code.

• Experience with public cloud security and other security solutions is an asset. Experience on novel product development, API-based automation and programming are great merits as well.

• Experience working with common database and search technologies such as SQL

• Experience working with big data frameworks such as Spark or BigQuery

Additional Skills

To perform this duty successfully, a candidate ideally has the following non-technical skills:

• Great written and verbal communication skills.

• Fast learning skills, intuitiveness and creativity. Comfortable working in unknown domains.

• Be opinionated and not afraid of expressing oneself.

• Precise, careful and detail oriented.

• Ability to work in a geo-distributed cross-functional group in asynchronous fashion.

Education

• BSCS or equivalent required, MSCS or equivalent strongly preferred

#LI-JB3

Netskope is committed to implementing equal employment opportunities for all employees and applicants for employment. Netskope does not discriminate in employment opportunities or practices based on religion, race, color, sex, marital or veteran statues, age, national origin, ancestry, physical or mental disability, medical condition, sexual orientation, gender identity/expression, genetic information, pregnancy (including childbirth, lactation and related medical conditions), or any other characteristic protected by the laws or regulations of any jurisdiction in which we operate.

Netskope respects your privacy and is committed to protecting the personal information you share with us, please refer to Netskope's Privacy Policy for more details.