About the Role
System Two Security is looking to hire a Senior Security Engineer with a wide expertise in both offensive and defensive measures in enterprise cybersecurity. The Senior Security Engineer is essential in enhancing development efforts for our flagship threat hunting product, working closely with Data Science and Data teams. This role puts you in a central role as the in-house expert focused on providing solution direction and validation for the System Two Security’s backend systems supporting the product. A key outcome is improving system accuracy.
Requirements
Responsibilities
Narrative Building: Integrate defensive tactics and controls with the threats and vulnerabilities into a single narrative.
Emulation: Emulate the tools and techniques of attackers in the most realistic way possible.
Threat Intelligence Research: Utilize threat intelligence and security research to stay informed about emerging threats, vulnerabilities, industry best practices, and regulations. Engage with peers and industry groups that share threat intelligence analytics. Conducting research to identify potential security threats
Workflow Design: Develop efficient workflows for the threat hunting system.
Accuracy Analysis: Assess and improve the accuracy of the S2S backend systems.
Collaboration: Partner with the data science team to align efforts.
Reporting: Communicate findings and insights effectively.
Continuous Improvement: Seek ways to enhance cybersecurity practices within the product.
Guidance: Provide guidance on industry standards and best practices to product managers and application developers.
Design and execute testing and simulations: Penetration tests, technical controls assessments, cyber exercises, or resiliency simulations, and contribute to the development and refinement of assessment methodologies, tools, and frameworks
Required Skills
Bachelor's degree in computer science, information technology, or a related field.
3+ years of work experience.
Experience in the field of cybersecurity.
Experience in one or more technical roles in the areas of Security Operations, Threat Intelligence, Penetration Testing, Red Teaming, Purple Teaming, Threat Hunting or Incident Response.
Experience with Threat Research and detection engineering.
Experience in validation systems to reduce False Positives.
Experience querying log sources within large centralized logging platforms, e.g. Splunk, Elastic, Cloudera, SQL.
Functional understanding of how threat actors gain access, move laterally, privilege escalate, set persistence, and evade defenses to achieve objectives.
Ability to critically examine an organization’s systems through the perspective of a threat actor and articulate risk in a clear and precise manner.
Excellent communication and teamwork skills.
Ability to stay up-to-date with the latest security trends and technologies.
Ability to manage and balance business and technical requirements.
Highly organized with an ability to manage competing priorities.
About the Company
System Two Security is driving SOC transformation with its unique application of AI computing with an initial focus on generative AI powered proactive threat research, threat analysis and iterative threat hunting. The product’s purpose-built language agents respond to new threat actors and attack patterns within minutes with its agentic workflows delivering end-to-end threat detection and containment from integrated feeds of raw cyber threat advisories. Early users of the product include prominent MSSPs, and enterprise SOCs across retail, healthcare, SaaS and technology verticals. It is based in Palo Alto, CA and is venture funded by The Hive.