Senior Threat Researcher

Sydney, NSW, AU, 2040

Sophos Labs

Sophos makes IT security simple with next-generation solutions that protect networks, servers, and devices, wherever they are. Today, more than 100 million users in 150 countries and a global network of channel partners trust Sophos to deliver simple solutions to complex security challenges. Focused on innovation and backed by a global network of Sophos Labs threat intelligence centers and industry-leading support, Sophos delivers solutions that are simple to deploy, maintain, and manage, enabling organizations to focus on performance and growth. Sophos — Security made simple.


Job Purpose

SophosLabs is looking for a Threat Researcher to join our Reputation Services team – a branch of our global team of highly skilled security experts – to provide fast response and high detection coverage for cross-platform threats targeting Sophos users and their systems worldwide.

Our automated systems work with Big Data technologies and continuously populate databases with legitimate and malicious content. In this role, you will be tasked with developing rules, behavioral signatures, and prototypes, by leveraging SophosLab’s vast collection of telemetric data, which will then lead to automated decision making & classification. The ideal candidate should be passionate about IT security and their quality of work.
Main Duties


  • Analyze security threats. Focus on automated analysis and decision making for cross-platform threats via Sophos’s cloud-based protection systems
  • Crunch through SophosLabs vast collection of FILE/URL telemetry data and look for patterns that lead to automated classification.
  • Develop algorithms, data analytics & measurements that support the Reputation services team product roadmap.
  • Identifying, acquiring, and incorporating additional sources of data to enhance and expand our ability to protect our custome
  • Coordinating and collecting relevant data points to assist with the creation of our dashboards, reports with insights to support decision makin
  • Compliance with Sophos systems to protect its digital assets and customers’ privacy and confidential information
  • Identify opportunities and then provide threat research blog posts, articles, and whitepapers on latest trends, newly discovered threats, interesting techniques found in malware for publication on the Sophos website, such as SophosLabs Uncut
  • Data mining to discover new threats


Skills & Experience


  • Bachelor’s degree in Computer Software (or equivalen
  • Deep understanding of relevant Internet protocols, technologies, and standards, SMTP, HTTP, DNS
  • A creative ability to apply data and data relationships across multiple sources and domains to help solve customer problems.
  • Solid working knowledge of querying and manipulating datasets with working experience of at least one industrial-strength databas
  • Experience with Python
  • Strong oral and written communication and presentation skills. 
  • Smart, motivated, can-do attitude, and seeks to make a difference
  • Ability to thrive in a dynamic and fast-paced environment of product discovery and development
  •  A self-starter, with the ability to manage own time and prioritize activities to achieve strong results whilst meeting deadline
  • Ability to work both independently and as part of a global team
  • Experience in agile methodologies such as Kanban and/or Scrum.


Equal Opportunities


Sophos is committed to equality opportunity in all areas of its work. All qualified applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, marital status, race, religion, colour, age, disability or sexual orientation.
If you choose to explore this opportunity, and subsequently share your CV or other personal details with Sophos, these details will be held by Sophos for 12 months in accordance with our Privacy Policy and used by our recruitment team to contact you regarding this or other relevant opportunities at Sophos.  If you would like Sophos to delete or update your details at any time, please follow the steps set out in the Privacy Policy describing your individual rights.  If you have any questions about Sophos’ data protection practices, please contact dataprotection@sophos.com.

At Sophos, we want every organization to be protected by innovative, next-generation IT security, even those who don't have a huge IT staff. We protect organizations of all sizes, all around the world by making enterprise-grade security that is simple to deploy, manage, and use. It is our passion, and something we are truly proud of.