Windows Detection Engineer at SentinelOne – Prague, Czech Republic

About us:

SentinelOne is defining the future of cybersecurity through our XDR platform that automatically prevents, detects, and responds to threats in real time. Singularity XDR processes data and leverages our patented AI models to deliver autonomous protection. With SentinelOne, organizations gain complete visibility into everything happening on the network at machine speed – defeating every attack, at every stage of the threat lifecycle.

We are a values-driven team where names are known, results are rewarded, and friendships are formed. Trust, accountability, relentlessness, ingenuity, and OneSentinel define the pillars of our collaborative and united global culture. We are looking for people who will drive team success and collaboration across SentinelOne. If you are passionate about innovative approaches to problem solving, we would love to talk to you about joining our team!

What are we looking for?

We are looking for talented detection engineers, people who look at the world differently, who discover, ‘hunt’, live to beat and challenge the system.
People who can tackle difficult security issues quickly.

What are you going to do?

You will be responsible for detecting the latest malware and exploits based on SentinelOne’s Endpoint Platform. The role includes end-to-end responsibility for behavior-based detection capabilities, starting from reversing the samples, designing new methods to detect or prevent them, and finally implementing them in the product.
You will develop and use internal investigation tools, PoCs, and discover new ways to detect/prevent exploit attacks (EoP, drive-by attacks, and more). Ultimately, your deliveries will improve the security of tens of millions of Windows endpoints protected by our platform.
You are also encouraged to write white papers, blogs and articles (but only if you wish).

What experience or knowledge should you bring?

Demonstrable experience in reverse engineering x86/x64 binaries.
4+ years of experience in malware analysis (static and dynamic)
4+ years of experience with C, C++
Excellent knowledge of the internal workings of Windows
Experience with analysis tools such as: IDA, WinDBG, SysInternals etc.
Experience with kernel development – advantage
Knowledge of the internal workings of existing AVs: an advantage.

Why us?

You will work on real problems and make an impact by protecting our customers from cyber threats. You will work on a groundbreaking project and influence the architecture, design and structure of our core platform. You will take on extraordinary challenges and collaborate with the very best in the industry.

In addition, we offer you:

Flexible working hours, in Prague and the surrounding area we operate in a hybrid model with offices in Karlin (the brand new Missouri Park), remotely in the rest of the Czech Republic or Slovakia, with optional offices in Brno (Clubco Vlněna) for those who like to meet
Generous employee share plan in the form of RSU awards (limited share units) no options; 4 year vesting with 1 year cliff and quarterly thereafter
Annual bonus depending on company performance, paid in 2 installments
Flexible free time (on top of the standard 5 weeks of vacation)
Flexible paid sick days
Fully paid short-term sick leave/short-term nursing leave
Global gender-neutral parental leave (16 weeks, in addition to the leave provided by local law) and grandparent leave
Paid day off for volunteer work and additional paid company holidays (e.g. 4 days in 2022)
Pension insurance contribution
Premium Life Insurance covered by S1
Monthly meal and wellness allowance
Membership for private medical care for you and your +1
Global Employee Assistance Program (confidential counseling regarding both personal and work-related matters), Wellness Coach: access to the company’s Mind Body Sleep app (sessions, audiobooks, classes, private coaching, etc.)
High-end MacBook or Windows laptop, home office setup equipment and on top of that an additional WFH allowance
Udemy Business platform for hard/soft skills training, internal mentoring ‘MentorOne’ and support for your further educational activities/trainings
Referral bonus above the norm
In addition to RSUs, you can also benefit from our attractive ESPP (employee stock purchase plan)
Refreshments and snacks in the office
Optional company activities for those who want to meet outside of work (sports, BBQ, charity etc.)
DEI&B programs that promote employee resource groups such as SentinelWIN (Women Inclusion Network), Blk@S1, Latinos@S1, Pan-Asian@S1, Out@S1 (LGBTQIA+), and Sentinels Who Served

SentinelOne is proud to be an equal opportunity and affirmative action employer. We do not discriminate on the basis of race, religion, color, national origin, sex (including pregnancy, childbirth or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability or other applicable legally protected characteristics.

SentinelOne participates in the E-Verify program for all functions in the US.