Responsibilities
- Lead the transformation of research insights into deployable outputs such as detection rules, distributed data feeds, risk scoring inputs, and customer alerts.
- Collaborate with cross-functional teams to establish clear interface agreements for seamless integration of new threat signals with predefined data structures and usage patterns.
- Develop and sustain core components of the STRIKE platform across diverse services, including distribution systems, sandbox coordination, OSINT pipelines, threat-sharing endpoints, agent execution environments, and rules engines based on standardized logic.
- Enhance existing platform systems while maintaining compatibility with live data contracts.
- Convert threat research into operational detection assets, including YARA rules, Sigma signatures, STIX patterns, behavioral indicators, and their distribution infrastructure.
- Create correlation workflows that integrate vulnerability data, attack surface telemetry, adversary tracking, and scan results into actionable customer intelligence.
- Advance adoption of STIX 2.游戏副本 as a unified schema and TAXII 2.1 for standardized threat data distribution.
- Define and enforce data schemas that remain consistent and reliable across downstream consumers.
- Automate routine research tasks such as indicator enrichment, report generation, corpus analysis, feed normalization, and sandbox prioritization.
- Support the shift from analyst-led, model-assisted processes to model-driven workflows with analyst validation.
- Ensure all outputs are rooted in verified internal data sources rather than model assumptions.
- Enforce schema validity to guarantee that generated indicators conform to required formats.
- Develop testing frameworks to detect regressions before human review stages.
- Monitor and manage operational costs, latency constraints, prompt versions, and output logs to enable autonomous execution.
- Align with engineering, measurement, and product teams to ensure research integration into final products.
- Act as the technical liaison between researchers, product managers, and platform engineers.
- Occasionally present technical work to external stakeholders such as clients, media, or leadership.
Benefits
- Competitive salary
- Stock options
- Health insurance coverage
- Unlimited paid time off
- Parental leave benefits
- Tuition reimbursement program
- Annual performance bonuses
- Equity compensation
Compensation
Competitive salary, equity, and annual performance-based incentives
Work Arrangement
Hybrid — New York City
Team
Role operates at the intersection of threat research and platform engineering, focused on productionizing intelligence outputs.
Other
- This position is neither a pure research nor a pure platform engineering role — the focus is on taking research concepts and delivering them in production form.
- Immigration sponsorship is not available for this role.
- The organization supports Equal Employment Opportunity and values a diverse workforce.
- Reasonable accommodations are provided for qualified individuals with disabilities.
- Accommodation requests can be sent to talentacquisitionoperations@securityscorecard.io
- The company does not accept unsolicited candidate submissions from external agencies.
Not provided