Security Researcher – Behavioral Detections - Kandji

Job Title: Security Researcher – Behavioral Detections
Job Location: Miami
Job Listing URL: https://jobs.lever.co/kandji/27afd804-743c-490e-bba4-d0ec1dac92f8
Job Description: About Kandji

Kandji is the Apple device management and security platform that empowers secure and productive global work. With Kandji, Apple devices transform themselves into enterprise-ready endpoints, with all the right apps, settings, and security systems in place. Through advanced automation and thoughtful experiences, we’re bringing much-needed harmony to the way IT, InfoSec, and Apple device users work today and tomorrow.

Some of the smartest money in tech has partnered with Kandji to realize our vision, including Tiger Global, Felicis, Greycroft, First Round Capital, and Okta Ventures. In July 2024, Kandji raised $100 million in capital from General Catalyst, bringing Kandji’s valuation to $850 Million.

Since Kandji’s Series C in 2021, the company has seen a 600%+ increase in annual recurring revenue, and its customer base has grown nearly 4X across 40+ industries. Notable customers include Allbirds, Canva, and Notion, and the company has partnerships with such industry giants as ServiceNow, AWS, and Okta.

Kandji was also named to Forbes’ Next Billion Dollar Startup List 2023 and recognized as a top venture-backed startup with the potential to reach unicorn status.

The Opportunity

We are looking for a Security Researcher specializing in detection engineering to join our growing Threat Intelligence and Research team. In this critical role, you'll research, analyze, and develop robust file-based and behavioral detections targeting malware, threat actors, and attack methodologies. Your work will significantly contribute to our Endpoint Detection and Response (EDR) solution.
How you'll make a difference day to day:
Perform analysis of malware and adversarial behavior to identify detection opportunities.
Develop and enhance detection rules and behavioral analytics tailored to endpoint environments.
Collaborate closely with engineering teams to integrate detection logic into our security agent.
Continuously monitor and respond to emerging threats and trends.
Document and communicate research findings internally and externally.
Minimum qualifications:
3+ years of experience in cybersecurity, specifically focused behavioral detections.
Proven expertise in developing file-based and behavioral detections (YARA, Sigma).
Familiarity with threat hunting methodologies, behavioral analytics frameworks, and behavioral DSLs (osquery).
Experience with tools and techniques for malware analysis.
Solid understanding of common endpoint internals and endpoint security mechanisms.
Strong problem-solving skills, adaptability, and a proactive attitude towards learning.
Excellent written and verbal communication skills.
Preferred qualifications:
Experience developing or contributing to EDR or next-gen antivirus products.
Experience writing or prototyping security agent code.
Familiarity with security-focused data analytics and scripting languages (Python, etc.).
Contributions to open-source security projects or published research.