Threat Researcher

| Greater Boulder Area

Why Carbon Black?

At Carbon Black, you’ll have the chance to make an impact in the ever-evolving cybersecurity space. Our advanced technology tackles even the toughest challenges and stays ahead of the latest threats.

If you want to join an agile company that’s building bleeding edge technology in the cloud, Carbon Black is the place for you. Driven by passionate people who are dedicated to making the world safer, it’s no wonder we’ve been named a “Top Place to Work” by the Boston Globe for four consecutive years. Join us!.

Why You Matter

Carbon Black, the leader in advanced threat protection, is seeking a Threat Engineer. This is a senior level position targeted toward individuals with more than 10 years of experience in software development.  

Experience in software development, debugging, and testing - including in languages such as C++, C, Python, assembly, and shell scripting is required.  Understanding of modern defensive and offensive security tools, techniques and methods are also required. Educational and personal experience with network/systems administration and/or information security related work is necessary.

Threat Engineers at Carbon Black are responsible for leading, conducting and presenting threat research done by the Threat Analysis Unit (TAU) and building systems used across our security program.  This includes a strong understanding of endpoint detection, cloud technologies, security operations, current threatscape, and emerging threats. Threat Engineers will participate in the design, development, and deployment of tools to assist in threat research and security frameworks utilized by our products.  Senior Threat Engineers are also expected to provide mentorship to other members of the team, and take lead in maturing procedures, evaluating new security technologies, incident response, penetration testing, and prototype/experiment with new ideas and technologies to improve both our product and services.

What You’ll Do

  • Actively work on current software development projects related to product enhancements and efficacy.  Create new software tools for internal research and development.
  • Design and implement software proof of concepts for emerging malware technique detections.
  • Performs security research, reverse engineer malware, handle complex security events, and analyze incident response, and coordinating with other teams.
  • Work closely with internal and external customers for product and service improvements.
  • Take ownership or support ongoing projects by assisting in the implementation, research, testing and documentation of security-related projects.
  • Maintain knowledge of emerging security technologies and discipline developments. Research and manage the implementation of new technologies to enhance our products and customers’ security postures.
  • Actively participate in the Carbon Black User-Exchange community as a subject matter expert, presenting in forums, online and at conferences.

Technical Skills / Experience:

  • Experience with a number of the following is a requirement: C, C++, x86/x64 assembly, Python, Unix Shell scripts, Powershell
  • Experience in participating in medium and large scale software development projects - from initial conception and design to final deployment.
  • Experience with Java or C# is a plus
  • Windows operating system internals (registry, APIs, kernel operations, forensic artifacts)
  • Windows development of user mode applications using Visual Studio.  Kernel development experience is a plus. Development on other platforms other than Windows is also a plus.
  • Ability to translate descriptions of attacks or malware techniques into proof of concept demonstrations for testing and product improvement.

What You’ll Bring

  • Windows or other operating system internals experience
  • Knowledge of x86 and x64 instruction set architectures
  • Knowledge of user and kernel level debuggers and static analysis applications such as WinDbg, OllyDbg, x64dbg, Binary Ninja, or IDA Pro
  • Ability to analyze malware, determine TTPs (tactics, techniques, and procedures) unique to threat actors, and extract indicators to feedback into the products
  • Strong interpersonal skills, ability to mentor/train staff and bring awareness to current and emerging threats
  • Certifications preferred: CISSP, OSCP/OSCE, SANS GIAC Certifications (GREM, GCFA, GCFE)
  • Strong written and verbal communications skills with an ability to present technical risks and issues to non-technical audiences
Read Full Job Description

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • C++Languages
    • JavaLanguages
    • JavascriptLanguages
    • PerlLanguages
    • PythonLanguages
    • ScalaLanguages
    • HTMLLanguages
    • D3JSLibraries
    • ReactLibraries
    • AngularJSFrameworks
    • Node.jsFrameworks
    • MySQLDatabases
    • Google AnalyticsAnalytics
    • IllustratorDesign
    • PhotoshopDesign
    • SketchDesign
    • ConfluenceManagement
    • JIRAManagement
    • Microsoft ProjectManagement
    • WordpressCMS
    • SalesforceCRM
    • MarketoLead Gen


Located in the Pearl Street Mall, it’s a prime location for employees who like to hike, enjoy great restaurants, or love to grab pints at the brewpub.

An Insider's view of Carbon Black, Inc.

How would you describe the company’s work-life balance?

The company believes in work-life balance. If I ever had a family obligation or wanted to check out early to start a vacation, I’ve never been given a hard time. It’s all about getting your work done but if you need to take off to get oil changed or something, don’t sweat it. I never felt pressured to be here from 9-5 or sit in traffic.


Product Manager

How do you collaborate with other teams in the company?

Our vision is to create an organization with highly performing self-organizing teams. When we first embarked on our Agile Transformation, we looked at how we wanted to reorganize ourselves in a way that would make it easy for developers, quality engineers, UX, and product owners to collaborate.


Senior Director of Agile Program Management

What does career growth look like on your team?

We consider the Sales Development Representative Program an important first step in building out the foundation of a future leader. Whatever your first steps are at Carbon Black won’t be your last. Our program isn’t just about getting SDRs to be a good quota carrying rep; it’s also about helping them develop the next best step in their careers.


Sr. Director, Corporate Sales

How do you make yourself accessible to the rest of the team?

My leadership style is all about empowering my teams. I work in a way that is transparent and honest and want to help people achieve personal and professional goals. I want to foster technical abilities and make sure our people are keeping up with the leading edge technologies.


VP of Product Infrastructure & Operations

What are some social events your company does?

Our culture club, Life at Cb, focuses on a range of events. From company parties and sports leagues, to philanthropy and learning and development, there's a ton of ways we get together. Also, a lot of communities were created by our employees, such as the Hiking Club, Women in the Workplace, and more.


Talent Brand Ambassador

What are Carbon Black, Inc. Perks + Benefits

Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Pet Insurance
Wellness Programs
Retirement & Stock Options Benefits
Performance Bonus
Child Care & Parental Leave Benefits
Flexible Work Schedule
Remote Work Program
Family Medical Leave
Vacation & Time Off Benefits
Unlimited Vacation Policy
Generous PTO
Paid Volunteer Time
Paid Holidays
Paid Sick Days
Perks & Discounts
Beer on Tap
Casual Dress
Commuter Benefits
Company Outings
Game Room
Stocked Kitchen
Some Meals Provided
Happy Hours
Recreational Clubs
Professional Development Benefits
Job Training & Conferences
Diversity Program
More Jobs at Carbon Black, Inc.9 open jobs
All Jobs
Dev + Engineer