Security Research Engineer

Job Summary

Required Qualifications

• 4+ years of experience in the Threat Detection field
• Hands-on experience developing and tuning high-fidelity detection content (such as YARA rules)
• Understanding of Windows internals, including process trees, memory artifacts, system calls, audit logs, etc.
• Experience analyzing large-scale telemetry, log data, and detection outputs to identify anomalies, validate detection coverage, and reduce false positives
• Scripting proficiency (Python, PowerShell, Bash) for automation, analysis, or tool development
• Familiarity with the malware landscape (APT groups, Ransomware families and operations, Crimeware, etc.)
• Knowledge of networking and internet protocols
• Team player as well as ability to work independently
• English on a professional level

Desired Qualifications

• Proven experience in the data analysis field (Bigtable, ELK, Splunk)
• Experience guiding product detection strategy and feature design from a research-informed perspective
• Proven expertise in malware reverse engineering, static/dynamic analysis, and exploit/malicious tool deconstruction
• Experience working on a product team that have been developing a product in the fields of EDR, XDR, AV, Attack Simulation, Threat hunting, Incident response, or other endpoint cyber security solutions

Additional Requirements

• Fortinet will not entertain any unsolicited resumes, please refrain from sending them to any Fortinet employees or Fortinet email aliases.
• Should any Agency submit any resumes to Fortinet, these resumes if considered, will be assumed to have been given by the Agency free of any related fees/charges.