Senior Threat Researcher

Sydney, NSW, AU, 2040

Sophos Labs

Sophos Overview – Cybersecurity Evolved 

Sophos is a worldwide leader in next-generation cybersecurity, protecting more than 500,000 organizations and millions of consumers in more than 150 countries from today’s most advanced cyberthreats. Powered by threat intelligence, AI and machine learning from SophosLabs and SophosAI, Sophos delivers a broad portfolio of advanced products and services to secure users, networks and endpoints against ransomware, malware, exploits, phishing and the wide range of other cyberattacks. Sophos provides a single integrated cloud-based management console, Sophos Central – the centerpiece of an adaptive cybersecurity ecosystem that features a centralized data lake that leverages a rich set of open APIs available to customers, partners, developers, and other cybersecurity vendors. Sophos sells its products and services through reseller partners and managed service providers (MSPs) worldwide. Sophos is headquartered in Oxford, U.K. More information is available at www.sophos.com.




Job Purpose


SophosLabs is looking for a Threat Researcher to join our Reputation Services team – a branch of our global team of highly skilled security experts – to provide fast response and high detection coverage for cross-platform threats targeting Sophos users and their systems worldwide.

Our automated systems work with Big Data technologies and continuously populate databases with legitimate and malicious content. In this role, you will be tasked with developing rules, behavioral signatures, and prototypes, by leveraging SophosLab’s vast collection of telemetric data, which will then lead to automated decision making & classification. The ideal candidate should be passionate about IT security and their quality of work.

Main Duties

•    Analyze security threats. Focus on automated analysis and decision making for cross-platform threats via Sophos’s cloud-based protection systems.
•    Crunch through SophosLabs vast collection of FILE/URL telemetry data and look for patterns that lead to automated classification.
•    Develop algorithms, data analytics & measurements that support the Reputation services team product roadmap
•    Identifying, acquiring, and incorporating additional sources of data to enhance and expand our ability to protect our customer
•    Coordinating and collecting relevant data points to assist with the creation of our dashboards, reports with insights to support decision making
•    Compliance with Sophos systems to protect its digital assets and customers’ privacy and confidential information
•    Identify opportunities and then provide threat research blog posts, articles, and whitepapers on latest trends, newly discovered threats, interesting techniques found in malware for publication on the Sophos website, such as SophosLabs Uncut
•    Data mining to discover new threats


Skills & Experience


•    Bachelor’s degree in Computer Software (or equivalent
•    Deep understanding of relevant Internet protocols, technologies, and standards, SMTP, HTTP, DN
•    A creative ability to apply data and data relationships across multiple sources and domains to help solve customer problems. 
•    Solid working knowledge of querying and manipulating datasets with working experience of at least one industrial-strength database
•    Experience with Python
•    Strong oral and written communication and presentation skills. 
•    Smart, motivated, can-do attitude, and seeks to make a difference
•    Ability to thrive in a dynamic and fast-paced environment of product discovery and development
•    A self-starter, with the ability to manage own time and prioritize activities to achieve strong results whilst meeting deadline
•    Ability to work both independently and as part of a global team
•    Experience in agile methodologies such as Kanban and/or Scrum.




Equal Opportunities


Sophos is committed to equality opportunity in all areas of its work. All qualified applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, marital status, race, religion, colour, age, disability or sexual orientation.
If you choose to explore this opportunity, and subsequently share your CV or other personal details with Sophos, these details will be held by Sophos for 12 months in accordance with our Privacy Policy and used by our recruitment team to contact you regarding this or other relevant opportunities at Sophos.  If you would like Sophos to delete or update your details at any time, please follow the steps set out in the Privacy Policy describing your individual rights.  If you have any questions about Sophos’ data protection practices, please contact dataprotection@sophos.com.




At Sophos, we want every organization to be protected by innovative, next-generation IT security, even those who don't have a huge IT staff. We protect organizations of all sizes, all around the world by making enterprise-grade security that is simple to deploy, manage, and use. It is our passion, and something we are truly proud of.

Job Segment: Cloud, Database, Data Mining, Technology