Endpoint Protections - Security Research Engineer (R5154)


At Elastic, we see endless possibility in a world of endless data. And we use the power of search to help people and organizations turn that possibility into results. Elastic is the leading platform for search-powered solutions. With solutions in Enterprise Search, Observability, and Security, we help improve customer and employee search experiences, keep critical applications running smoothly, and protect against cyber threats. Elastic enables organizations worldwide to use the power of Elastic, including Netflix, Uber, BBC, Microsoft, and thousands of others.

Elastic was built on a foundation of being free and open, which trickles down to how we work. We’re a distributed organization and have been from the beginning. Being distributed isn’t just a way of doing business—it’s a mentality that is at the core of our culture.

About the Team:

The Elastic Security Endpoint Protections team researches, designs, builds, and monitors security detections and preventions in Elastic’s Endpoint product. We are looking for a Security Research Engineer to help our team continue to build innovative new features that will help secure our users against the latest emerging threats. You will collaborate with the broader Elastic Security team, which consists of a diverse group of skilled researchers, data scientists, and engineers who possess extensive domain expertise in their respective areas. Our team is distributed across the globe and several time zones, and we go to extensive lengths to maintain a positive and inclusive environment that strongly encourages learning from one another through open and honest communication.

If you are passionate about security research and would enjoy the challenge of devising novel methods for thwarting malicious actors in an ever-evolving threat landscape, we would love to have you join our growing team!

What you will be doing

  • Work as part of the Security Protections team at Elastic with other security researchers, data scientists, and software engineers.
  • Research state of the art attacker techniques and develop innovative and effective methods for detecting them
  • Enhance legacy preventions and detections over time to ensure we are staying ahead of the curve and improving efficacy
  • Solve complex and challenging technical problems in creative ways
  • Develop code in a collaborative environment with peers in multiple countries and timezones
  • Discover false positives in our customer telemetry and determine appropriate mitigation strategies
  • Present research at security conferences and publish security research blog posts to Elastic Security Labs
  • Contribute to open source Elastic projects used by organizations around the world
  • Solve security problems at scale with our global community of users

What you will bring along

  • Strong background developing robust, production code, primarily in C / C++ and Python
  • Proven experience analyzing, studying, and understanding attacker tactics, techniques, and procedures (TTPs), as well as developing new methods and approaches for detecting advanced security threats.
  • Collaborative mentality with a strong disposition to learn new skills and emerging technologies
  • Motivation to succeed in a distributed, fast-paced, and autonomous work environment
  • Passion for protecting the world’s data from attack!

Bonus Points

  • Low level C/C++ development, including kernel experience and familiarity with common code injection/process hooking techniques
  • Solid understanding of Windows internals and Windows development experience
  • Reverse engineering and malware analysis
  • Vulnerability research and exploitation
  • Penetration testing

Additional Information - We Take Care of Our People

As a distributed company, diversity drives our identity. Whether you’re looking to launch a new career or grow an existing one, Elastic is the type of company where you can balance great work with great life. Your age is only a number. It doesn’t matter if you’re just out of college or your children are; we need you for what you can do.

We strive to have parity of benefits across regions and while regulations differ from place to place, we believe taking care of our people is the right thing to do.

  • Competitive pay based on the work you do here and not your previous salary
  • Health coverage for you and your family in many locations
  • Ability to craft your calendar with flexible locations and schedules for many roles
  • Generous number of vacation days each year
  • Double your charitable giving - We match donations 1:1 up to $1500 USD (or local currency equivalent)
  • Up to 40 hours each year to use toward volunteer projects you love.
  • Embracing parenthood with minimum of 16 weeks of parental leave

The typical starting Total Cash Compensation range for new hires in this role is between $105,700 and $145,400, which consists of a Base Salary or a Base Salary plus a Target Commission, depending on the specific role. The Base Salary offered may vary depending on factors including skills and experience.

Additionally, this role is currently eligible to participate in Elastic’s equity plan as well as a range of health & wellbeing, retirement savings, and other benefits within a holistic total rewards offering.

Different people approach problems differently. We need that. Elastic is an equal opportunity/affirmative action employer committed to diversity, equity, and inclusion. Qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, pregnancy, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, disability status, or any other basis protected by federal, state or local law, ordinance or regulation.

We welcome individuals with disabilities and strive to create an accessible and inclusive experience for all individuals. To request an accommodation during the application or the recruiting process, please email candidate_accessibility@elastic.co We will reply to your request within 24 business hours of submission.

Applicants have rights under Federal Employment Laws, view posters linked below:
Family and Medical Leave Act (FMLA) Poster; Equal Employment Opportunity (EEO) Poster; and Employee Polygraph Protection Act (EPPA) Poster.

Please see here for our Privacy Statement.

Learn about Elastic's Culture

Notify Me of Open Positions

Sign in with your social account to receive emails when Elastic posts open positions you might be interested in:

Powered By Ongig