Senior Anti-Spam Researcher

Budapest, HU, 1117

Sophos Labs

Sophos Overview – Cybersecurity Evolved

Sophos evolves to meet every new challenge, protecting more than 400,000 organizations of all sizes in more than 150 countries from today’s most advanced cyberthreats. Powered by SophosLabs, our cloud-native and AI-enhanced solutions are able to adapt and evolve to secure endpoints and networks against never-before-seen cybercriminal tactics and techniques. Managed through our award-winning, cloud-based platform, Sophos Central, our best-of-breed products work together through our unique Synchronized Security system to share threat intelligence and respond to evolving threats. The Sophos suite of products secures networks and endpoints against automated and active-adversary breaches, ransomware, malware, exploits, data exfiltration, phishing, and more.

Senior Anti-Spam Researcher


SophosLabs is recruiting a Senior Anti-spam Researcher for its Messaging Security team to work closely with our global team of highly skilled cybersecurity experts. A successful applicant will become a part of an advanced research team responsible for helping protect millions of users worldwide from cyber-threats that spread via email and other messaging systems.


SophosLabs is a global network of highly skilled and trained analysts and IT security professionals that is the front line in protecting businesses from known and emerging threats.


Our analysts cover every area of IT security with integrated systems tracking malware, vulnerabilities, intrusions, spam, legitimate applications, legitimate and infected websites and mobile threats. Our automated systems work with Big Data technologies and continuously populate databases with legitimate and malicious content.


Sophos is focused on delivering the best IT security and data protection for businesses. Today Sophos products protect over 100,000 businesses and 100 million users, in more than 150 countries. We provide an excellent, supportive, open and lively work environment with exposure to leading technologies and opportunities for professional development and training.


This is a fantastic opportunity for an individual from either Software Development, Software Engineering or SOC environments with a keen interest in anti-spam and protection development to join an exciting team working to offer unbeatable protection to our end customers. This is an exceptional opportunity for those wishing to enter or continue their journey within the Cyber Security arena.




You will be responsible for discovery and investigation of spam campaigns, phishing, BEC, spoofing, scams, email malware and other cyber-threats that rely on email and messaging channels. You’ll develop protection against current and future threats, will prototype new and instrument existing analysis systems, and produce threat statistics/trends, sharing your findings internally and externally.


The ideal candidate is passionate about cybersecurity and has high aptitude for solving challenging puzzles with an attention to detail. At SophosLabs, we receive billions of analytics data events each day and use big data systems for mining and correlation.


Main Duties


  • Research and develop protection against email threats and spam
  • Prototype new technology to automate analysis tasks and improve protection
  • Collaborate with Labs team members to develop and refine tools and workflows
  • Work with engineers and data scientists to review and improve reputation and AI based systems
  • In-depth research into the modern email security problem to produce whitepapers, statistics, conference presentations and blog articles.
  • Instrument network reputation systems. Track abusive networks and ISPs
  • Analyze large amounts of threat intelligence data to expose and report on messaging security trends
  • Crunch through SophosLabs vast volumes of threat intelligence and telemetry data to develop new automation patterns and algorithms
  • Stay on top of technology innovation in the messaging security space. Work with other Sophos teams to develop strategic feature roadmaps
  • Answer customer queries routed via Technical Support and internal queries from all departments
  • Compliance with Sophos systems to protect its digital assets and customers’ privacy and confidential information


Essential skills


  • Bachelor’s degree in Computer Software (or equivalent experience)
  • Strong understanding of relevant Internet protocols, technologies, and standards (SMTP, HTTP, DNS, TLS)
  • A creative ability to apply data and data relationships across multiple sources and domains to help solve customer problems
  • Solid working knowledge of querying and manipulating datasets with working experience of at least one industrial-strength database
  • Computer programming/scripting – Python, Shell, JavaScript
  • Solid understanding of SQL
  • Ability to manipulate data and draw insights from large datasets
  • Proven problem solving skills and an attention to detail
  • Experience with Unix/Linux and a range of command-line tools
  • Ability to prioritize and organize assigned tasks
  • Builds stable and useful working relationships with other members of the team
  • Strong interpersonal, verbal, and written communication skills (English)
  • Experience in agile methodologies such as Kanban and/or Scrum


Desired Skills and Experience


  • Anti-spam and threat analysis experience
  • Knowledge of email delivery, including related email standards and technologies – SMTP, RFC822, DKIM, SPF, DMARC
  • Regular expression development skills
  • Computer programming/scripting using Perl, C/C++
  • Experience using ElasticSearch based solutions
  • Developing machine learning and data mining algorithms

Equal Opportunities & Privacy

Sophos is committed to equality opportunity in all areas of its work. All qualified applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, marital status, race, religion, colour, age, disability or sexual orientation. If you choose to explore this opportunity, and subsequently share your CV or other personal details with Sophos, these details will be held by Sophos for 12 months in accordance with our Privacy Policy and used by our recruitment team to contact you regarding this or other relevant opportunities at Sophos.  If you would like Sophos to delete or update your details at any time, please follow the steps set out in the Privacy Policy describing your individual rights.  If you have any questions about Sophos’ data protection practices, please contact dataprotection@sophos.com.


At Sophos, we want every organization to be protected by innovative, next-generation IT security, even those who don't have a huge IT staff. We protect organizations of all sizes, all around the world by making enterprise-grade security that is simple to deploy, manage, and use. It is our passion, and something we are truly proud of.

Job Segment: Database, Linux, SQL, Unix, Cloud, Technology