Detection Engineer Threat Analyst

Job description

At ReversingLabs, our software supply chain security and threat intelligence solutions have become essential to advancing cybersecurity maturity around the globe. We’re on a journey to expand adoption and accelerate growth by hiring top talent across the security industry.

Notable breaches such as SolarWinds, CircleCI, and 3CX have elevated software supply chain security as a top initiative across every organization developing or purchasing software. Only ReversingLabs delivers the software package analysis speed and intelligence needed to protect against this critical area of risk.

Our vision is clear. Arming every company with end-to-end insights to ensure development releases securely, IT purchases safely, and the SOC can effectively detect, isolate, and respond.

Key Responsibilities

• Analyze customer and researcher reports regarding false positives and false negatives

• Investigate detection gaps and design solutions to improve product detection accuracy

• Create, test, and refine YARA rules to enhance threat detection capabilities

• Leverage static and dynamic tools for malware analysis

• Provide technical recommendations to engineering teams on product improvements and data collection requirements

• Document findings, detection methodologies, and threat intelligence for internal knowledge base

• Stay current with emerging threats and malware trends in the cybersecurity landscape

• 3-5 years of experience in malware analysis, threat detection, or a similar cybersecurity role

• Familiarity with YARA rules and the ability to understand, apply, and tune existing rules

• Experience with static and dynamic malware analysis tools

• Solid understanding of various malware types, attack vectors, and evasion techniques

• Strong analytical and problem-solving skills

• Good communication skills in English for collaboration with internal teams and external stakeholders

Preferred Qualifications

• Demonstrable experience writing and optimizing YARA rules
• Knowledge of reverse engineering
• Experience working with large datasets for threat research and detection engineering
• Ability to identify patterns, anomalies, and unusual behaviors in data
• Familiarity with programming languages commonly used in threat analysis (Python, PowerShell, etc.)
• Understanding of common security frameworks and standards (MITRE ATT&CK, etc.)
• Experience analyzing malware across multiple platforms (Windows, Linux, macOS)
• Prior experience in handling customer-reported security issues

Benefits

• Hybrid or fully remote work options (paid accommodation & transportation to Zagreb during onboarding for remote employees)
• Flexible working hours
• Generous compensation and a bonus system based on annual performance
• Hefty personal education budget and the possibility to attend leading conferences and seminars in the field
• Company library and the possibility to order books of choice via Amazon
• Permanent contract in a fast-growing global company with Fortune 500 & government agencies as clients
• Great career advancement opportunities — clear goals & internal promotions
• Employee referral bonus program: 1.061,78 EUR net for junior positions, 2.123,56 EUR net for mid to senior positions, and 2.654,46 EUR net for principal/managerial positions
• Multisport card, annual health checkup, newborn child allowance, rent-cost, and 3rd pillar pension benefits
• Wellness Weekends — quarterly, company-wide three-day weekend, starting with a company-paid Friday off for all employees
• Fully covered car garage in Radnička cesta for all employees