Sophos
Sophos25d ago

Senior Threat Researcher – Behavioral Protection

CanadaCanadaRemotesenior
SecurityOtherThreat Researcher
3 views0 saves0 applied
Apply Now

Quick Summary

Overview

About Us Sophos is a cybersecurity leader defending 600,000 organizations globally with an AI-driven platform and expert-led services.

Technical Tools
SecurityOtherThreat Researcher
About Us
Sophos is a cybersecurity leader defending 600,000 organizations globally with an AI-driven platform and expert-led services. Sophos meets organizations wherever they are in their security maturity and grows with them to defeat cyberattacks. Its solutions combine machine learning, automation, and real-time threat intelligence with frontline human expertise from Sophos X-Ops to deliver advanced, 24/7 threat monitoring, detection, and response.
 
Sophos offers industry-leading managed detection and response (MDR) alongside a comprehensive portfolio of cybersecurity technologies — including endpoint, network, email, and cloud security, extended detection and response (XDR), identity threat detection and response (ITDR), and next-gen SIEM. Together with expert advisory services, these capabilities help organizations proactively reduce risk and respond faster, with the visibility and scalability needed to stay ahead of evolving threats.
 
Sophos goes to market with a global partner ecosystem, including Managed Service Providers (MSPs), Managed Security Service Providers (MSSPs), resellers and distributors, marketplace integrations, and cyber risk partners, giving organizations the flexibility to choose trusted relationships when securing their business. Sophos is headquartered in Oxford, U.K. More information is available at www.sophos.com.

Role Summary 
 
We are seeking a skilled and passionate Threat Researcher with deep expertise in Windows based threat behaviors, particularly having a strong understanding on memory-resident threats. In this role, you will be at the forefront of detecting and understanding emerging attack techniques, developing behavioral-based protection strategies, and enhancing our real-time protection capabilities. Your insights and contributions will directly impact on the security posture of millions of users worldwide. 

  • Analyze malware behaviors aligned with MITRE ATT&CK TTPs (and beyond), covering the full attack lifecycle, including initial access vectors, execution techniques, payload delivery—with a strong focus on in-memory techniques, fileless malware, and evasive behaviors. 

  • Research and identify behavioral techniques employed by novel and sophisticated Advanced Persistent Threats (APTs) and translate these insights into effective behavioral protection rules to enhance prevention capabilities. 

  • Drive protection coverage for zero-day malware and novel attack techniques. 

  • Work independently with minimal supervision while managing priority protection tasks. 

  • Review and provide actionable feedback on detection logic and code developed by fellow researchers. 

  • Collaborate with the team to define clear protection priorities and deliver updates to customers in a timely manner. 

  • Produce quality threat analysis reports for both internal and external audience 

  • Proven hands-on experience in Windows based malware analysis using both static and dynamic analysis tools such as using IDAPro and Windbg. 

  • Deep understanding of behavioral techniques, memory injection methods, persistence mechanisms, and evasion tactics. 

  • Ability to write robust, high-quality behavioral protection rules. 

  • Demonstrated programming experience, preferably Python, Lua. 

  • Experience working in a fast-paced threat research or security operations environment. 

  • Strong communication skills and the ability to provide technical mentorship to peers. 

  • Proactive, self-driven mindset with the ability to lead in critical incident or zero-day response scenarios. 

Location & Eligibility

Where is the job
Canada
Remote within one country
Who can apply
Open to applicants worldwide
Listed under
Canada

Listing Details

Posted
April 9, 2026
First seen
April 9, 2026
Last seen
May 5, 2026

Posting Health

Days active
25
Repost count
0
Trust Level
32%
Scored at
May 5, 2026

Signal breakdown

freshnesssource trustcontent trustemployer trust
Apply for this position
Sophos
Sophos
lever
Employees
3k+
Founded
2019
Domain
sophos.com
Jobs
View 119 jobs
View company profile

4 other jobs at Sophos

View all →

Explore open roles at Sophos.

Sophos
Executive Assistant
PermanentSophos
Senior Quality Engineer
PermanentSophos
Sales Development Representative
PermanentSophos
Senior Software Engineer (C/C++ and Networking)
Permanent

Similar Threat Researcher jobs

View all →
CorelightCorelightRemote
Senior Threat Researcher
USD 145000-188000
Remote
Knowbe4Knowbe4
Cybersecurity Threat Researcher (Hybrid) (Position located in Arlington, Virginia)
Knowbe4Knowbe4
Cybersecurity Threat Researcher (Position located in Cheltenham, United Kingdom)
ZscalerZscaler
Staff Threat Researcher - macOS
ZscalerZscaler
Senior Threat Researcher - Threatlabz
SophosSophosRemote
Senior Threat Researcher (UK)
PermanentRemote

Browse Similar Jobs

Manager3kFitness & Wellness2.1kData Collector2kEngineer1.9kDirector1.9kAssistant Manager1.8kAssociate1.6kConsultant1.3kBehavioral Health1.2kAssistant1.1kSocial Work & Counseling1.1kSocial Worker1kTechnician900Analyst832Social784Coordinator764Development635Part Time584Operations Associate573Lead523
Newsletter

Stay ahead of the market

Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.

A
B
C
D
Join 12,000+ marketers

No spam. Unsubscribe at any time.

SophosSenior Threat Researcher – Behavioral Protection
Apply Now