Senior Threat Researcher (m/f/d)

Stellenbeschreibung

Do you like to tinker with things and tear them apart to figure out how they work? Are you able to take your ideas and quickly bring them to life? Do you have a passion to build things that don't exist and disrupt the status quo? If so, we want to meet you. The Splunk Security Research Team is looking for a special candidate who shares our passions for pushing boundaries. As a devoted researcher (m/f/d) who eats, sleeps, and breathes technology, you love learning, discovering, and thinking. Because you are awesome, you have a track record that demonstrates that you go beyond just theory and big ideas; you can point to specific deliverables and tangible results. In this position, you will have the freedom to interact with various stakeholders across the company, from product teams that span the Splunk portfolio, to internal customers, to product and program management.

Responsibilities:

• Conduct in-depth research on emerging threats, attack techniques, and adversary tactics
• Develop and maintain high-quality detection content using the Splunk platform
• Build prototypes and proof-of-concepts to validate new detection methods
• Author comprehensive research papers, blog posts, and technical articles for public presentation
• Collaborate with product teams to enhance threat detection capabilities across the Splunk portfolio
• Develop automation tools to optimize analytics development and increase market adoption of security analytics
• Contribute to the broader security community through open-source projects and knowledge sharing

Requirements:

• 7+ years of experience in threat research, malware analysis, or related cybersecurity fields
• Familiarity with common log formats Windows, Linux, Cloud Service Providers, etc. and experience utilizing them to create detection logic.
• Familiarity with regular expressions for pattern matching and capture, and knowledge surrounding features and functions as they relate to specific implementations PCRE, re2, python re, etc.
• Expert-level skills in Python and proficiency in at least one other programming language (e.g., JavaScript, Go)
• Deep understanding of threat detection methodologies and familiarity with detection content platforms like Sigma
• Strong background in data analysis, machine learning, and statistical modeling as applied to security use cases
• Excellent knowledge of adversary tactics, techniques, and procedures (TTPs)
• Experience with threat intelligence platforms and MITRE ATT&CK framework
• Solid foundation in API development, data structures, algorithms, and software design
• Strong communication skills with the ability to present research findings to both technical and non-technical audiences

Nice to Have:

• Contributions to open-source security projects or personal research initiatives
• Experience with cloud security and containerization technologies (e.g., Docker, Kubernetes)
• Familiarity with reverse engineering and malware analysis techniques
• Presentations at industry conferences such as RSA, Black Hat, DEF CON, or BSides
• Published research papers or articles in reputable security publications

As a Senior Threat Researcher (m/f/d), you'll have the opportunity to work with a diverse team of expert problem solvers, pushing the boundaries of threat detection and analysis. Your work will directly impact the security posture of organizations worldwide. If you're ready to make a significant impact in the cybersecurity industry and have a passion for innovative research, we want to hear from you. Join our team and help shape the future of threat detection and response.

Splunk is an Equal Opportunity Employer: At Splunk, we believe creating a culture of belonging isn't just the right thing to do; it's also the smart thing. We prioritize diversity, equity, inclusion, and belonging to ensure our employees are supported to bring their best, most authentic selves to work where they can thrive.

Qualified applicants receive consideration for employment without regard to race, religion, color, national origin, ancestry, sex, gender, gender identity, gender expression, sexual orientation, marital status, age, physical or mental disability or medical condition, genetic information, veteran status, or any other consideration made unlawful by federal, state, or local laws. We consider qualified applicants with criminal histories, consistent with legal requirements.

Note: Base Pay Range Germany Base Pay: EUR 92,800.00 - 127,600.00 per year. Splunk provides flexibility and choice in the working arrangement for most roles, including remote and/or in-office roles. We have a market-based pay structure which varies by location. Please note that the base pay range is a guideline and for candidates who receive an offer, the base pay will vary based on factors such as work location as set out above, as well as the knowledge, skills and experience of the candidate. In addition to base pay, this role is eligible for incentive compensation and may be eligible for equity or long-term cash awards. Benefits are an important part of Splunk's Total Rewards package. This role is eligible for a comprehensive, competitive benefits package which may include healthcare and retirement plans, paid time off, wellbeing expense reimbursement, and much more!