Senior Threat Researcher_Sophos Labs

extra holidays - fully flexible
Work set-up: 
Full Remote
Contract: 
Full time
Experience: 
Senior (5-10 years)
Work from: 
India

Offer summary

Qualifications:

Bachelor’s degree in computer science or related field., 5+ years of experience in Threat Research or cybersecurity roles., Proficiency in reverse engineering tools like IDA Pro, WinDbg, OllyDbg., Strong programming skills in C/C++, Python, or Perl..

Key responsibilities:

  • Analyze cyber threats using multiple information sources.
  • Investigate APT campaigns and understand threat actors.
  • Reverse engineer files to assess risks to customers.
  • Write threat descriptions and publish whitepapers and blogs.

Sophos logo
Sophos Large https://www.sophos.com/
1001 - 5000 Employees
See all jobs

Job description

About Us
Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. The company acquired Secureworks in February 2025, bringing together two pioneers that have redefined the cybersecurity industry with their innovative, native AIoptimized services, technologies and products. Sophos is now the largest pureplay Managed Detection and Response (MDR) provider, supporting more than 28,000 organizations. In addition to MDR and other services, Sophos’ complete portfolio includes industryleading endpoint, network, email, and cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, marketleading Taegis XDRMDR, identity threat detection and response (ITDR), nextgen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending more than 600,000 organizations worldwide from phishing, ransomware, data theft, other every day and statesponsored cybercrimes. The solutions are powered by historical and realtime threat intelligence from Sophos XOps and the newly added Counter Threat Unit (CTU). Sophos is headquartered in Oxford, U.K. More information is available at www.sophos.com.

Role Summary
Teams mandate is to find new and notable threats, assess their risk and produce protection where necessary. This include advanced targeted attacks, attack tool research, handling of vulnerability advisories and publishing blogs and whitepapers.
The successful candidate will provide analysis of the evolving cyber threat landscape and contribute to create the next generation of SophosLabs research tools. The ideal candidate is passionate about computer security and has high aptitude for solving challenging puzzles with an attention to detail.

What you will do
  • Perform cyber threat analysis utilizing multiple information sources
  • Engage research based on cyber threat intelligence
  • Investigate APT campaigns and understand cyber threat actors, their motivations and technical capabilities
  • Identify steps to be taken to respond and minimize the impact of emerging threats
  • Reverse engineer files to discover their intended functionality and risks to customers
  • Write threat descriptions for publication on the Sophos website and threat research whitepapers in a timely fashion
  • Triage requests submitted by other departments, respond to tasks or escalate complex issues to senior team members
  • Generating intelligence on new trends in the Threat Landscape and distributing between departments outside of the Lab
  • Identify opportunities to write blogs for the Sophos website to raise customer awareness

  • What you will bring
  • 5+ yrs in Threat Researcher role
  • Experience with x86 assembly
  • Windows Internals
  • Computer and Web Security experience
  • Programming skills and experience (CC++PythonPerl)
  • Reverse Engineering experience using IDA Pro, WinDbg, OllyDbg and Hex editors
  • Good written and verbal communication skills
  • Understanding of scripting basics (PerlPythonRegexp)
  • Experience with a wide array of Internet technologies and protocols (HTML, JavaScript, SMTP, DNS)
  • Experience with a broad range of operating systems
  • Bachelor’s degree in computer software (or equivalent)
  • #LIRemote
    #B2

    Ready to Join Us?
    At Sophos, we believe in the power of diverse perspectives to fuel innovation. Research shows that candidates sometimes hesitate to apply if they dont check every box in a job description. We challenge that notion. Your unique experiences and skills might be exactly what we need to enhance our team. Dont let a checklist hold you back – we encourage you to apply.

    Whats Great About Sophos?
    · Sophos operates a remotefirst working model, making remote work the primary option for most employees. However, some roles may necessitate a hybrid approach. While we are a remote first organization, applicants must have legal authorization to work in the jurisdiction where the position is posted, without requiring employer sponsorship.
    · Our people – we innovate and create, all of which are accompanied by a great sense of fun and team spirit
    · Employeeled diversity and inclusion networks that build community and provide education and advocacy
    · Annual charity and fundraising initiatives and volunteer days for employees to support local communities
    · Global employee sustainability initiatives to reduce our environmental footprint
    · Global fitness and trivia competitions to keep our bodies and minds sharp
    · Global wellbeing days for employees to relax and recharge
    · Monthly wellbeing webinars and training to support employee health and wellbeing

    Our Commitment To You
    We’re proud of the diverse and inclusive environment we have at Sophos, and we’re committed to ensuring equality of opportunity. We believe that diversity, combined with excellence, builds a better Sophos, so we encourage applicants who can contribute to the diversity of our team. All applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, sex, gender reassignment, marital status, race, religion or belief, color, age, military veteran status, disability, pregnancy, maternity or sexual orientation. We want to give you every opportunity to show us your best self, so if there are any adjustments we could make to the recruitment and selection process to support you, please let us know.

    Data Protection
    If you choose to explore an opportunity, and subsequently share your CV or other personal details with Sophos, these details will be held by Sophos for 12 months in accordance with our Privacy Policy and used by our recruitment team to contact you regarding this or other relevant opportunities at Sophos. If you would like Sophos to delete or update your details at any time, please follow the steps set out in the Privacy Policy describing your individual rights. For more information on Sophos’ data protection practices, please consult our Privacy Policy Cybersecurity as a Service Delivered | Sophos
    •

    Required profile

    Experience

    Level of experience: Senior (5-10 years)
    Spoken language(s):
    English
    Check out the description to know which languages are mandatory.

    Hard Skills

    Cyber SecurityThreat AssessmentReverse EngineeringComputer ProgrammingWinDBgAssembly LanguageComputer SecurityWindows Fundamentals For Legacy PCsIDA ProScriptingHyperText Markup Language (HTML)JavaScript (Programming Language)Web Server SecurityOllyDBgComputer SystemsDomain Name SystemSMTP (Simple Mail Transfer Protocol)

    Other Skills

    • Detail Oriented
    • Communication
    Are you interested?

    Related jobs

    See more jobs