Staff Engineer, Security Efficacy

Company: Netskope, Inc.
Location: Santa Clara
Posted on: March 30, 2025

Job Description:

Today, there's more data and users outside the enterprise than inside, causing the network perimeter as we know it to dissolve. We realized a new perimeter was needed, one that is built in the cloud and follows and protects data wherever it goes, so we started Netskope to redefine Cloud, Network and Data Security.Since 2012, we have built the market-leading cloud security company and an award-winning culture powered by hundreds of employees spread across offices in Santa Clara, St. Louis, Bangalore, London, Paris, Melbourne, Taipei, and Tokyo. Our core values are openness, honesty, and transparency, and we purposely developed our open desk layouts and large meeting spaces to support and promote partnerships, collaboration, and teamwork. From catered lunches and office celebrations to employee recognition events and social professional groups such as the Awesome Women of Netskope (AWON), we strive to keep work fun, supportive and interactive.About the roleThe Security Services organization is responsible for building core security products and features, such as Data Loss Prevention, IPS, Malware and Threat Prevention, Cloud Confidence Index, and Breach and Anomaly Detection. We apply Artificial Intelligence and Machine Learning technologies across the Netskope cloud security platform. As part of the Security Services org, the Security Efficacy team is responsible for continuous enhancement and enrichment of our malware detection, URL filtering, web security, IPS, threat modeling, and SaaS/IaaS security capabilities.What you will be doing

• Design and develop novel detection mechanisms to detect malware and advanced threats.
• Be the end-to-end owner of malware detection features and help to improve detection efficacy by implementing new features and product improvements.
• Ensure continuous high efficacy on all Netskope products through well-designed internal testing and collaboration with 3rd-party testing agencies.
• Respond to customer escalations and cover the latest threats discovered, ensuring the detection efficacy of Netskope threat protection.
• Work closely with data scientists, threat researchers, software engineers, and QE engineers to ensure our solutions deliver continuous security value to end customers.
• Document security content release process, testing methodology, testing environment, and results. Be the end-to-end owner of security efficacy SOPs.
• Be an evangelist of secure SDLC within the company.
• Collaborate with the data analytics team to define new platform requirements and continuously improve our horizontally scalable data lake.
• Lead in-depth research into emerging cyber threats, malware, APT groups, and TTPs (Tactics, Techniques, and Procedures).Qualifications/Requirements
  • First of all, candidates must have a true startup spirit and be willing to wear multiple hats and deliver end-to-end.
  • 5+ years of industry experience in malware detection engine development (i.e., AVEngine, Sandbox).
  • Experience with malware detection engines and building/tuning sandbox.
  • 5+ years of experience in malware analysis and reverse engineering.
  • Experience in malware hunting tools (e.g., Yara, fuzzy hashing).
  • Background in threat research, experience in static and dynamic analysis tools (e.g., IDA Pro, Ghidra), network analysis tools (e.g., Wireshark, Zeek), and sandbox environments.
  • Understand and be comfortable with parsing file structures of common file types including PE/Office/PDF.
  • Familiarity with the behaviors of various types of malware including trojans, ransomwares, viruses, rootkits, etc.
  • Strong understanding of network protocols, system internals (Windows, Linux), and attack techniques such as fileless malware, obfuscation, and evasion.
  • Rich experience in Python programming.
  • Working knowledge of SQL and NoSQL databases.
  • Familiarity with Git version control, CI/CD pipelines, bug tracking tools, etc.
  • Hands-on experience in public cloud infrastructure (AWS, GCP, or Azure) is a plus.
  • Design and develop accurate, high-quality signatures and detection rules for threat detection systems.
  • Strong problem-solving and analytical skills, with an ability to think critically about threat detection and mitigation strategies.
  • Familiarity with the MITRE ATT&CK framework and how it maps to threat detection and signature development.
  • Energetic self-starter, with the desire to work in a dynamic fast-paced environment.
  • Excellent verbal and written communication skills.
  • Data mining and machine learning experience highly desirable.
  • Working knowledge of big data platforms highly desirable.
  • Ability to influence without authority.
  • Ability to think outside of the box and evaluate results based on customer value.Education
    • BS or MS in Computer Science or equivalent technical degree.Netskope is committed to implementing equal employment opportunities for all employees and applicants for employment. Netskope does not discriminate in employment opportunities or practices based on religion, race, color, sex, marital or veteran status, age, national origin, ancestry, physical or mental disability, medical condition, sexual orientation, gender identity/expression, genetic information, pregnancy (including childbirth, lactation and related medical conditions), or any other characteristic protected by the laws or regulations of any jurisdiction in which we operate.Netskope respects your privacy and is committed to protecting the personal information you share with us, please refer to Netskope's Privacy Policy for more details.
      #J-18808-Ljbffr

Keywords: Netskope, Inc., Santa Clara , Staff Engineer, Security Efficacy, Engineering , Santa Clara, California