In the cloud, every second counts. On the leading edge of security, Sysdig stops attacks in real-time by instantly detecting changes in cloud security risk with runtime insights and open source Falco. We are passionate open source enthusiasts at heart and problem-solvers who are building and delivering powerful solutions to secure cloud-native applications. We value diverse opinions and open dialogue to spur ideas. We believe in working together to achieve our goals and we pride ourselves on a flexible work culture. We're an international company that understands how to cultivate an inclusive environment across remote teams. And we're a great place to work too – we've been named a "Best Place to Work" by Inc., the San Francisco Business Times and the Silicon Valley Business Journal, and we won six workplace awards from Comparably this year. We have been recognized by Deloitte as one of the 500 fastest-growing organizations for the last four years. We are looking for driven team members who want to join us on our mission to lead cloud security globally. Does this sound like the right place for you? What you will do Reporting to the Manager of Threat Engineering You will be responsible for researching, developing, and maintaining threat detections to identify threats that may affect our customers. Participate in Sysdig Threat Research Team activities by conducting impactful research on new detection use cases and developing detection methods Help automation efforts as they relate to security content by using scripting languages such as Python Develop reports and dashboards to measure the progress of detection efforts What you will bring with you 2 years of hands-on experience with one of the following : Security operations, EDR, security engineering, or incident response Hands-on experience in Linux, including expertise with system calls and in-depth knowledge of Linux internals Experience creating threat detections for cloud environments, such as AWS, Azure, or GCP Knowledge of Kubernetes, container technologies, and container runtimes (e.g. Docker, containers, cri-o) Experience with SQL and programming languages such as Python or Go, plus using Git for version control and collaborative development. Experience with or knowledge of Falco, the OSS threat detection tool Familiarity with analysing logs or other security artifacts for malicious behaviour to create detection rules. Comfortable working directly with customers to help improve their experience. What we look for People acting as trusted advisors with a customer success mindset Experience from a startup environment Growth and learning mindset Why work at Sysdig? We're a well funded startup that already has a large enterprise customer base We have an organizational focus on delivering value to customers Our open source tools are widely used and loved by technologists & developers When you join Sysdig, you can expect: Great compensation package, including equity opportunities An international culture with employees in more than 40 countries Flexible work arrangement Mental well-being support for you and your family and company-wide wellness days Development opportunities We would love for you to join us Please reach out even if your experience doesn't perfectly match the job description. We can always explore other options after starting the conversation. Your background and passion will set you apart, especially if your career path is different. Some of our Hiring Managers are globally distributed, an English version of your CV will be appreciated. Sysdig values a diverse workplace and encourages women, people of color, LGBTQIA individuals, people with disabilities, members of ethnic minorities, foreign-born residents, and veterans to apply. Sysdig is an equal-opportunity employer. Sysdig does not discriminate on the basis of race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, gender identity, or any other legally protected status. LI-SM1 LI-Hybrid J-18808-Ljbffr