Senior Security Research Engineer

برای توسعه نسل جدید محصولات Endpoint Security و Threat Detection به دنبال افرادی هستیم که درک عمیقی از Windows Internals، رفتار مهاجمان، تکنیک‌های Defense Evasion و روش‌های پیشرفته Threat Detection داشته باشند.
اگر علاقه‌مند به حل مسائل پیچیده در مرز Operating Systems, Security Research و Detection Engineering هستید، خوشحال می‌شویم با شما گفتگو کنیم.

Windows Internals

• Expert-level understanding of Windows Internals
• Deep knowledge of PE format, process/thread internals, memory management, object manager, I/O manager و registry internals
• Understanding of User-mode / Kernel-mode execution model
• Familiarity with Windows security architecture, access control mechanisms و token model
• Experience with Native APIs, syscalls و Windows execution model
• Working knowledge of ETW, kernel callbacks, minifilters و Windows telemetry mechanisms

Software Engineering

• Strong proficiency in modern C++ (C++17/20/23)
• Advanced understanding of templates, RAII, concurrency, asynchronous programming و performance-oriented design
• Experience developing low-level Windows components و security-sensitive software
• Ability to design maintainable, performant و production-grade systems

Reverse Engineering & Malware Research

• Strong reverse engineering skills using IDA Pro, Ghidra, Binary Ninja, x64dbg و WinDbg
• Experience analyzing malware, shellcode, packers, loaders و fileless techniques
• Familiarity with modern attacker tradecraft, persistence mechanisms و post-exploitation techniques
• Ability to analyze undocumented Windows behaviors و rapidly understand complex binaries

Detection Engineering

• Experience developing behavioral detections و telemetry-driven detection strategies
• IOC extraction, YARA, Sigma و custom detection logic development
• Strong understanding of endpoint telemetry sources و detection design principles
• Experience mapping detections to MITRE ATT&CK
• Familiarity with Threat Hunting و adversary-informed detection methodologies

Kernel & Driver Development

• Experience developing و debugging Windows kernel drivers
• Knowledge of WDM / KMDF
• Kernel debugging, crash dump analysis و low-level troubleshooting
• Understanding of Windows kernel security boundaries, enforcement mechanisms و driver architecture

موارد زیر امتیاز محسوب می‌شوند:

• Experience working on EDR, XDR, AV یا endpoint security products
• Experience with AMSI, ETW, kernel callbacks, minifilters و Windows telemetry sources
• Threat Hunting و Adversary Emulation experience
• Research experience involving EDR bypasses, detection bypasses و defensive countermeasures
• Python یا PowerShell برای research automation
• Publications, conference talks, CVEs, open-source projects یا publicly released security research

نکته مهم
تسلط کامل به تمامی موارد الزامی نیست. انتظار داریم در یک یا چند حوزه از موارد فوق تجربه و تخصص عمیق داشته باشید.

اگر سابقه فعالیت در Windows Security, Malware Research, Detection Engineering, Kernel Development یا توسعه محصولات Endpoint Security دارید، رزومه یا پروفایل خود را برای ما ارسال کنید.

منتظر گفتگو با شما هستیم.