[Hiring] Windows Malware Researcher / Detection Engineer - Senior or Staff @SentinelOne

Role Description

As a Senior/Staff Windows Detection Engineer, you will help shape the future of endpoint security through a unified, converged platform that automatically prevents, detects, and responds to threats in real time. You will design and develop advanced Windows detections by combining deep system process inspection, behavioral analysis, and innovative machine learning techniques to identify and stop sophisticated attacks before they cause harm.

You will join a growing team of passionate security experts and technical leaders who think differently, challenge assumptions, and constantly explore new ways to outsmart adversaries. In this role, you will hunt for emerging threats, solve complex security problems, and deliver high-impact detection capabilities with speed and precision.

• You will be responsible for detecting the newest malware and exploits based on SentinelOne’s Endpoint Protection platform.
• Your role won’t end with a hypothesis or a document - you’ll have an end-to-end responsibility for behaviour-based detection capabilities, starting from reversing the samples, designing new methods to detect or prevent those, and implementing it in the product (SW development in C++23 and scripting in Lua).
• You will be developing and using internal research tools, PoCs, and discovering new ways to detect/prevent exploitation attacks (EoP, drive-by attacks, and more).
• Your deliveries will enhance the security of dozens of millions of Windows endpoints protected by our platform.

Qualifications

• Proven experience with reverse engineering of x86/x64/ARM binaries.
• Several years of experience in malware analysis (statically and dynamically).
• Several years of experience with C++.
• Excellent understanding of Windows Internals - understanding how core system components (Process and Threads, Virtual Memory, and more) work behind the scenes.
• Experienced with analysis tools, such as: IDA, WinDBG, SysInternals, etc.
• An advantage would be kernel development experience, Python experience, and/or understanding of existing AVs internals.

Benefits

• Flexible working hours; this is a 100% remote role based within Italy.
• Optional membership in major coworking chains.
• Currently for this role in Italy, we are able to consider only candidates that are already eligible to work in the EU at the time of applying.
• Optionally for those willing to relocate to the Czech Republic, relocation assistance is available for any candidates that are already eligible to work in the EU at the time of applying.
• Generous employee stock plan in the form of RSUs (restricted stock units) grant; 4 years vesting with 1 year cliff and then quarterly, stock refresh yearly.
• Yearly bonus depending on the performance of the company, paid out in 2 installments.
• Quadro benefits - Private Medical, Life Insurance, Accident Insurance, Study funds, and Healthcare benefits.
• Flexible time off (up to 30 paid days off per annum!).
• Global gender-neutral Parental Leave (16 weeks, beyond the leave provided by the local laws) & Grandparent Leave.
• Volunteering paid day off & Additional paid Company holidays off (e.g. 4 days in 2022).
• Global Employee Assistance Program (confidential counseling related to both personal and work life matters).
• Udemy Business platform for Hard/Soft skills Training, internal mentoring 'MentorOne' & Support for your further educational activities/trainings.
• Above-standard referral bonus & Additional country-specific benefits to Italy.

Company Description

SentinelOne is a company at the intersection of AI and security, pioneering a new operating model for cybersecurity. Our AI-native platform unifies protection across endpoint, cloud, identity, data, and AI systems to deliver autonomous detection and response with clarity and speed. By combining real-time analytics, intelligent automation, and a unified data foundation, we reduce noise, simplify complexity, and empower security teams to focus on what truly matters.

Our teams are builders, problem-solvers, and innovators committed to shaping the future of security. If you are excited to solve hard problems alongside talented, mission-driven people, we invite you to help us build a safer future for humanity.