Senior Threat Researcher

  • Sophos,
  • Abingdon
Telecommuting not available Travel not required

Job Description

SophosLabs is a global network of highly skilled and trained analysts and IT security professionals that is the front line in protecting businesses from known and emerging threats.

Our analysts cover every area of IT security with integrated systems tracking malware, vulnerabilities, intrusions, spam, legitimate applications, legitimate and infected websites and mobile threats. Our automated systems work with Big Data technologies and continuously populate databases with legitimate and malicious content.

Sophos is focused on delivering the best IT security and data protection for businesses. Today Sophos products protect over 100,000 businesses and 100 million users, in more than 150 countries. We provide an excellent, supportive, open and lively work environment with exposure to leading technologies and opportunities for professional development and training.

As a Threat Researcher you will be part of the front line responsible for helping to protect millions of users worldwide from computer security threats like malware, spam and phishing.

The successful candidate will provide analysis and detection of the latest threats and help create the next generation of SophosLabs research tools. The ideal candidate is passionate about computer security and has high aptitude for solving challenging puzzles with an attention to detail.

Main duties

- Analyze malware, spam campaigns and other threats
- Reverse engineer files to discover their intended functionality and risks to customers
- Create high-quality detection for threats
- Build, test and publish detection data files
- Write threat descriptions for publication on the Sophos website and threat research whitepapers.
- Triage requests submitted by other departments, respond to tasks or escalate complex issues to senior team members
- Answer customer queries routed through Technical Support and internal queries from all departments
- Identify opportunities to write blogs for the Sophos website to raise customer awareness
- Available for occasional weekend working

Experience And Skills


- Proven problem-solving skills with an inquisitive nature
- Proven ability to prioritize and organize assigned tasks
- Possess an analytical and methodical approach to workflow
- Good written and verbal communication skills
- Ability to work both independently and as part of a global team
- Understanding of basic executable file formats (MZ/NE/PE) or scripting basics (Perl/Python/Regexp)
- Experience with a wide array of Internet technologies and protocols (HTML, JavaScript, SMTP, DNS)


- Experience with x86 assembly
- Experience in researching and reverse engineering malware using tools such as IDA Pro, WinDbg, OllyDbg and Hex editors
- Computer & Web Security experience
- Experience with a broad range of operating systems
- Programming skills and experience (C/C++/Python/Perl)
- Understanding of advanced executable file formats (ELF/DEX/Mach-O)
- Familiarity with exploitable file formats including Java, PDF, Flash and Office documents
-Published technical / whitepapers
- Bachelor’s degree in Computer Software (or equivalent)

The remuneration package includes:

- Annual holiday entitlement of 25 days
- Group personal pension scheme
- Private medical insurance
- Critical illness insurance
- Death in service policy (life assurance)
- Permanent health insurance
- Travel insurance
- Personal accident cover

Working conditions at Sophos are very good and include:

- Subsidised staff restaurant
- Free beverages, fruit and pastries

If you are a recruiter or placement agency, please do not submit resumes to any person or email address at Sophos prior to having a signed agreement from Human Resources. Sophos is not liable for and will not pay placement fees for candidates submitted by any agency other than its approved recruitment partners. Furthermore, any resumes sent to us without an agreement in place will be considered your company's gift to Sophos and may be forwarded to our recruiters for their attention. Thank you.
Dice Id : DI6692
Position Id : SNR Threat Researcher
Have a Job? Post it

Similar Positions

Senior Penetration Tester
  • SThree
  • Reading
Software Engineers/Senior Software Engineers
  • Science and Technology Facilities Council
  • Oxfordshire
Senior Insight Analyst
  • 2M Employment Solutions
  • Feltham
Technical Lead / Senior Penetration Tester
  • BAE Systems Applied Intelligence
  • Guildford
Senior Security Specialist
  • Aviva
  • London (uk)