Staff Security Researcher

BeyondTrust is a place where you can bring your purpose to life through the work that you do, creating a safer world through our cybersecurity SaaS portfolio.

Our culture of flexibility, trust, and continual learning means you will be recognized for your growth, and for the impact you make on our success. You will be surrounded by people who challenge, support, and inspire you to be the best version of yourself.

The Role

As a Staff Research Engineer, you'll drive the evolution of our identity security platform by combining cutting-edge security research with robust engineering practices. You'll work at the intersection of security domain expertise and software development, translating novel research findings into production-ready systems that protect our customers from sophisticated identity-based threats. This role offers the opportunity to shape the future of identity security through innovative research, scalable engineering solutions, and thought leadership in the security community.

Please check out our page on X -- https://x.com/btphantomlabs -  for an overview of our recent projects. This will help you determine if we’re a good fit for you.

What You’ll Do

Research & Innovation

• Conduct original security research to identify emerging identity attack vectors and develop novel detection methodologies
• Design and implement advanced analytics including rule-based systems, behavioral analysis, and machine learning models for threat detection
• Expand and optimize our large-scale entitlement graph systems that map privilege escalation paths across customer environments
• Develop proactive recommendation engines that identify security misconfigurations before they become attack vectors

Engineering & Implementation

• Utilize graph theory to build entitlement paths from new areas of research across multiple domains
• Integrate AI usage into engineering workflows to optimize efficiency
• Design custom data representations (graphs, time-series, etc.) to support advanced analytical capabilities
• Establish engineering best practices including comprehensive unit testing, automation, and CI/CD pipelines

Data Analysis & Optimization

• Explore large-scale customer datasets using Spark and Databricks to validate detection hypotheses and uncover new threat patterns
• Continuously monitor and tune detection algorithms based on real-world telemetry and performance metrics
• Collaborate with data science teams to integrate machine learning models into production detection systems
• Optimize system performance to handle massive data volumes efficiently

Leadership & Knowledge Sharing

• Provide technical leadership and mentorship to product and engineering teams
• Present research findings at industry conferences and security forums
• Publish technical blogs and research papers to establish thought leadership
• Collaborate with cross-functional teams to translate research insights into product roadmap priorities

What You’ll Bring

Required Qualifications

• Strong engineering background with proven experience developing and maintaining production security systems
• Experience working with SIEM tools, log analysis platforms, or similar security data systems
• Knowledge of adversarial tactics, techniques, and procedures (TTPs) and corresponding defensive strategies
• Background in security research with a focus on cloud, identity/IAM, or AI.
• Experience in engineering event detection and response systems with focus on tuning and optimization

<