SentinelOne

Role Description As a Senior Windows Identity Detection Engineer, you will research and detect emerging identity threats by developing behavior-based detection methods. You’ll build tools and PoCs to identify and prevent attacks such as Pass-the-Hash, Silver Ticket, and MFA bypass. Your work will directly strengthen the security of millions of Windows endpoints protected by the platform. In this role, you’ll have a unique opportunity to expand your skillset beyond just Windows security, and to not only contribute, but to significantly influence the buildout of a new side of our business - Identity security from the ground up! What will you do? - Detect the newest identity threats with end-to-end responsibility for behavior-based detection capabilities. - Research attack techniques and design new methods to detect or prevent those attacks. - Implement detection methods in the product (SW development in C++23 and scripting in Lua). - Develop and use internal research tools and PoCs to discover new ways to detect/prevent identity-based attacks. - Enhance the security of dozens of millions of Windows endpoints protected by the platform. Working setup - Flexible working hours; this is a 100% remote role on full-time permanent employment (UoP) based within Poland. - Optional membership in major coworking chains. - Consideration for candidates already eligible to work in the EU at the time of applying. - Relocation assistance available for those willing to relocate to the Czech Republic, provided they are eligible to work in the EU at the time of applying. Qualifications - 3+ years of experience in malware analysis (statically and dynamically). - 3+ years of experience with C++; knowledge of Lua or similar scripting language is an advantage. - Excellent understanding of Windows Internals (Process and Threads, Virtual Memory, etc.). - Experience with analysis tools such as IDA, WinDBG, SysInternals, etc. - Experience with identity-based attacks (Pass the Hash, Silver Ticket, MFA bypass) is a big plus. - Kernel development experience and/or understanding of existing AVs internals is an advantage. Benefits - Equity & Rewards: Restricted Stock Units (RSUs), Employee Stock Purchase Plan (ESPP). - Time Off & Wellbeing: Competitive leave benefits, gender-neutral parental leave. - Insurance & Financial Security: Medical and insurance benefits, pension scheme, Employee Assistance Program (EAP). - Work Perks & Flexibility: Global home office allowance, mobile phone allowance. - Wellness & Lifestyle: Wellness benefit.

• Create compelling content at volume and velocity: Concept, produce and publish high-quality, platform-native content across formats — short-form video, graphics, copy, carousels, live moments and more — drawing on the storytelling playbooks of consumer brands, sports media and political campaigns to bring a modern, cultural relevance to cybersecurity • Drive cross-functional content strategy: Act as subject matter expert and primary business partner to demand generation, field marketing, threat intelligence, product marketing, talent brand and other teams — translating their objectives into social content that actually performs • Community engagement: Respond to and otherwise engage with customers, partners and security influencers on SentinelOne's channels and in the broader social media ecosystem • Experimentation and growth: Stay on top of evolving social media tactics, best practices and new platform offerings; borrow liberally from what's working in sports, consumer and political social to identify and test novel ways to grow SentinelOne's audience and deepen community engagement • Analytics & reporting: Work with comms leadership and the social media team to establish meaningful performance indicators and report on always-on tactics as well as specific campaigns

Role Description As a Sr. Staff Back-End AppSec Engineer, you will be tasked with becoming the trusted advisor customers turn to on Python and NodeJs stacks when the stakes are highest. You'll work directly on top of the output of our agentic code scanning pipeline, validate findings with human judgment, deliver results to diverse technical and leadership audiences, and shape the methodology that scales the practice. What Will You Do? - Lead Wayfinder Frontier AI Services customer engagements end-to-end, scope the work, deliver the technical findings, and present results to executive and technical stakeholders. - Review and triage findings from our agentic code scanning pipeline against customer Python and JS codebases. Validate true positives, eliminate noise, and ensure every finding that reaches the customer is a decision they can act on. - Conduct deep code review across Python and Node.js code and common frameworks. - Present findings to stakeholders, translate technical risk into business impact and map exposures into end-to-end exploitation chains. - Author and maintain SAST rule packs that scale across the customer base, and partner with our AI/ML engineers to improve our agentic scanning engine. - Provide expert remediation guidance to customer development teams and validate fixes through follow-up review. - Work closely with our engineering teams to enhance our agentic code scanning pipeline, and reduce false positives. - Mentor Senior-level AppSec engineers and dev-skilled threat hunters; raise the technical bar of the practice and shape the service line's methodology, engagement playbooks, and scoping templates. Qualifications - 7+ years in application security or product security with a strong software development background. - Proven track record translating complex findings into technical and executive-level debriefs. Excellent written and verbal communication is essential. - Experience delivering customer-facing or consulting-style engagements end-to-end, comfortable in a distributed remote organization. - Expert-level Python backend stack; Django, Flask, FastAPI. - Expert-level Node.js / TypeScript; Express, NestJS. - Working knowledge of front-end framework (React, Next.js, or Angular) and can follow how auth, CSRF, and data move between the client and the API. - Mastery of OWASP Top 10, CWE Top 25, and modern authentication infrastructure (SAML, OAuth, OIDC, JWT internals). - Hands-on experience authoring custom static-analysis rules and queries for modern SAST engines; familiarity with AI-assisted code review workflows and validating findings produced by automated and agentic analysis pipelines. - Working knowledge of Python and JS packaging and dependency-resolution behaviors (pip/Poetry/uv; npm/pnpm/yarn) and the supply-chain failure modes specific to each. - Fluency with Git-based source control and CI/CD pipelines, including build-pipeline security controls, runner hardening, and release-gate enforcement. - Experience with AI accelerated development / code scanning methodologies. Benefits - Equity & Rewards - Restricted Stock Units (RSUs) - Employee Stock Purchase Plan (ESPP) - Time Off & Wellbeing - Flexible time off - Paid company holidays and paid sick time - Gender-neutral parental leave - Grandparent leave - Insurance & Financial Security - Medical, dental, and vision coverage - 401(k) retirement plan with company match - Life and disability insurance - Health and dependent care FSA - Voluntary benefits (hospital, accident, critical illness) - Employee Assistance Program (EAP) - ARAG pre-paid legal - Nationwide pet insurance - Cancer Care program - Global business travel medical insurance - Work Perks & Flexibility - Home office allowance - Mobile phone reimbursement - Wellness & Lifestyle - Wellness coach - Wellness/gym reimbursement - Fertility coverage - Adoption & surrogacy reimbursement

Role Description As a Sr. Staff Back-End AppSec Lead, you will be tasked with: - Acting as a trusted advisor to customers by reviewing and validating AI-generated findings on Java and .NET back-end systems during high-stakes security engagements. - Working directly with SentinelOne’s agentic code scanning pipeline to analyze vulnerabilities, apply expert human judgment, and communicate actionable results to both technical teams and executive stakeholders. - Helping build and scale the Wayfinder Frontier AI Services practice by refining methodologies, improving AI-assisted exposure management workflows, and collaborating with elite offensive and defensive security experts. What Will You Do? Primary responsibilities include: - Lead Wayfinder Frontier AI Services customer engagements end-to-end, scope the work, deliver the technical findings, and present results to executive and technical stakeholders. - Review and triage findings from our agentic code scanning pipeline against customer Java and .NET codebases. Validate true positives, eliminate noise, and ensure every finding that reaches the customer is a decision they can act on. - Conduct deep code review across Java and .Net code and common frameworks. - Present findings to stakeholders, translate technical risk into business impact and map exposures into end-to-end exploitation chains. - Author and maintain SAST rule packs that scale across the customer base, and partner with our AI/ML engineers to improve our agentic scanning engine. - Provide expert remediation guidance to customer development teams and validate fixes through follow-up review. - Work closely with our engineering teams to enhance our agentic code scanning pipeline, and reduce false positives. - Mentor Senior-level AppSec engineers and dev-skilled threat hunters; raise the technical bar of the practice and shape the service line's methodology, engagement playbooks, and scoping templates. Qualifications - 7+ years in application security or product security with a strong software development background. - Proven track record translating complex findings into technical and executive-level debriefs. Excellent written and verbal communication is essential. - Experience delivering customer-facing or consulting-style engagements end-to-end, comfortable in a distributed remote organization. - Expert-level Java / Spring, you've identified and explained vulnerabilities at the framework level, not just the application level. - Expert-level .NET Framework and ASP.NET Core, vulnerabilities and secure coding methodologies. - Mastery of OWASP Top 10, CWE Top 25, and modern authentication infrastructure (SAML, OAuth, OIDC, JWT internals). - Hands-on experience authoring custom static-analysis rules and queries for modern SAST engines; familiarity with AI-assisted code review workflows and validating findings produced by automated and agentic analysis pipelines. - Strong threat modeling experience throughout the secure SDLC. - Fluency with Git-based source control and CI/CD pipelines, including build-pipeline security controls, runner hardening, and release-gate enforcement. - Experience with AI accelerated development / code scanning methodologies. Benefits - Equity & Rewards: Restricted Stock Units (RSUs), Employee Stock Purchase Plan (ESPP) - Time Off & Wellbeing: Flexible time off, Paid company holidays and paid sick time, Gender-neutral parental leave, Grandparent leave - Insurance & Financial Security: Medical, dental, and vision coverage, 401(k) retirement plan with company match, Life and disability insurance, Health and dependent care FSA, Voluntary benefits (hospital, accident, critical illness), Employee Assistance Program (EAP), ARAG pre-paid legal, Nationwide pet insurance, Cancer Care program, Global business travel medical insurance - Work Perks & Flexibility: Home office allowance, Mobile phone reimbursement - Wellness & Lifestyle: Wellness coach, Wellness/gym reimbursement, Fertility coverage, Adoption & surrogacy reimbursement Base Salary Range $184,000 — $235,000 USD

• Define and execute the technical roadmap for AI engineering, focusing on bringing the most recent advances in machine learning technology to help our customers efficiently discover and defeat threats. • Serve as a lead IC who also mentors across distributed teams, fostering a culture of technical excellence and continuous innovation. • Design and build net-new AI capabilities to be used across SentinelOne’s industry-leading cybersecurity platform. • Drive cross-functional collaboration across multiple engineering teams to ensure seamless integration and innovation in AI-powered cybersecurity products. • Oversee the establishment of best practices for MLOps, security, and performance monitoring to ensure the reliability and efficacy of our AI defense mechanisms.

Role Description As a Senior Software Engineer, you will join our team that is behind one of our leading and differentiated AI SIEM product capabilities, STAR™ - Storyline Active Response, responsible for real-time cloud-based automated hunting, detection, & response. It empowers security teams of our customers to create custom detection & response rules, and deploy them in real-time to the entire network or desired subset, to proactively detect & respond to threats. - Design, develop (in Go and/or Java), implement, test, document, and operate large-scale, high-volume and low latency applications, built to handle several millions of events per second. - Translate business and functional requirements into robust, scalable, operable solutions that work well within the overall data architecture. - Participate and collaborate with cross functional teams in the organization to understand the business requirements and to deliver solutions that can scale. - Maintain application stability and data integrity by monitoring key metrics and improving codebase accordingly. - Understand & maintain existing codebase by regular re-factoring and applying requested fixes and features. - Learn new technologies that can solve our huge volume of data and the challenges it poses. Qualifications - Passionate about building high-scale distributed systems. - Care about delivering customer value and want to hear directly from your customers on how to improve and evolve your applications. - Enjoy a collaborative development process using design discussions and code review. - Multiple years of software engineering experience in at least one high-level programming language (Golang and/or Java). - Strong background in distributed data processing microservices, building high-quality, scalable data products. - Familiarity with AWS and/or GCP, Kubernetes, Docker, Postgres, Redis, and Kafka (big advantage). - Ability to swiftly delve into new products and comprehend their inner workings. - Proven capacity to collaborate effectively with both local and remote teams across various time zones. - Excellent communication skills, as you'll regularly liaise with product and other engineering teams. - A huge plus would be previous experience in developing security-related products. Benefits - Salary starting from 4500 EUR/month. - Annual bonus based on company performance, paid in two installments. The final base salary may be adjusted based on the individual skills and experience of the selected candidate. - Equity & Rewards - Restricted Stock Units (RSUs) - Employee Stock Purchase Plan (ESPP) - Time Off & Wellbeing - Competitive leave benefits - Gender-neutral parental leave - Insurance & Financial Security - Medical and insurance benefits - Pension - Employee Assistance Program (EAP) - Work Perks & Flexibility - Global home office allowance - Mobile phone allowance - Wellness & Lifestyle - Meal allowance Company Description SentinelOne is a company at the intersection of AI and security, pioneering a new operating model for cybersecurity. Our AI-native platform unifies protection across endpoint, cloud, identity, data, and AI systems to deliver autonomous detection and response with clarity and speed. Our teams are builders, problem-solvers, and innovators committed to shaping the future of security.

Role Description As a Windows Low Level Engineer - Endpoint security, you will design and develop advanced security features for SentinelOne’s Windows endpoint protection platform, operating across both user-mode and kernel-mode environments. Your responsibilities include: - Building and optimizing mission-critical components including anti-tampering protections, network sensors, and agent infrastructure. - Solving complex performance and stability challenges at massive scale. - Researching Windows internals and debugging deep system issues. - Collaborating with distributed engineering teams to deliver high-impact security capabilities protecting millions of devices worldwide. Qualifications - Multiple years of experience as a software engineer in low-level programming using modern C++ (or using C and a willingness to learn modern C++). - Hands-on experience and in-depth understanding of Windows OS design & internals. - Experience with debugging of Windows applications and familiarity with related standard debugging and profiling tools. - Previous experience working on a production-grade product with wide-scale deployment. - Great communication skills and the ability to work both independently and with peers from different time zones. - Attention to detail and high coding standards. - An advantage: experience with Windows Kernel and Windows Drivers development, experience in security-oriented development, with reversing or malware analysis. Requirements - Ability to design and develop primarily in modern C++ (23). - Capability to test and debug complicated real-world problems. - Willingness to continuously enrich knowledge and experience with Windows OS internals & Kernel, Endpoint Protection, and Endpoint Detection & Response eco-system. - Experience in executing significant new features and rewriting existing ones from scratch. - Ability to deal with extraordinary performance & optimization challenges. Benefits - Flexible working hours; this is a 100% remote role based within France. - Optional membership in major coworking chains. - Generous employee stock plan in the form of grant of RSUs (restricted stock units), with 4 years vesting and 1 year cliff. - Yearly bonus depending on the performance of the company, paid out in 2 installments. - Paid Annual Leave. - Global gender-neutral Parental Leave (16 weeks, beyond the leave provided by local laws) & Grandparent Leave. - Volunteering paid day off & Additional paid Company holidays off. - Global Employee Assistance Program (confidential counseling related to both personal and work life matters). - LinkedIn Learning platform for Hard/Soft skills Training & Support for further educational activities/trainings. - Above-standard referral bonus & Additional country-specific benefits to France.

Role Description As a Senior Software Engineer on the Customer Lifecycle Management team, you'll join our dedicated platform team, committed to providing essential services that support the success of other developer teams. Your primary customers will be fellow SentinelOne developers who rely on our department's key services, including identity and user management, metering, license management, and more. You'll play a crucial role in ensuring the smooth functioning of these critical components and empowering our users to achieve their goals. We are seeking a seasoned colleague with the ability to lead epics, features, and inspire others; and also to participate in the architecture of the new solutions we're building. Together with us, you'll elevate the entire journey of our customers - create new features & scalable systems, rebuild the existing ones from scratch, and provide comprehensive & robust APIs that help both S1 and our customers/partners manage customer-centric interactions within our flagship SaaS platform. Join our international team of 12 (with colleagues across Brno, Prague, Slovakia, and Israel) and become an integral part of a friendly, collaborative, pragmatic, professional, and diverse group of individuals who are ready to tackle major SW engineering challenges! Qualifications - Several years of experience in designing services and developing features using Java. - Proven knowledge in designing and architecting large and scalable cloud-based applications. - Experience developing on public cloud infrastructure (AWS and/or GCP). - Familiarity with containerization & orchestration (Docker, Helm & Kubernetes). - Strong familiarity with agile development methodologies. - Exceptional drive, communication (written and verbal), and problem-solving skills. Requirements - Collaborate across teams to shape and define system requirements, ensuring alignment with overall business goals. - Design and drive projects, leading execution of high-priority, high-visibility platform projects, ensuring timely delivery and exceptional quality. - Own feature development, taking full ownership of the feature development lifecycle, from refining requirements through to successful production deployment. - Build and maintain secure and scalable backend infrastructure that serves as the backbone for other development teams. - Ensure efficiency and performance by developing solutions that guarantee reliability, scalability, and optimal performance. - Conduct code reviews, providing constructive feedback and fostering a culture of continuous improvement. - Troubleshoot complex issues, quickly identifying, diagnosing, and resolving them to minimize downtime. Benefits - Salary starting from 4000 EUR/month. - Annual bonus based on company performance, paid in two installments. - Flexible working hours and the option to work remotely from anywhere in Slovakia. - Grant of Restricted Stock Units with a 4-year vesting plan, annual performance-based bonuses, and an employee stock purchase plan. - Flexible Time Off, on top of the standard 5 weeks vacation, flexible paid sick days, fully paid Short Term Sick/Nursing Leave, 16-week parental leave, grandparent leave, and additional company holidays. - Pension Insurance Contribution, Premium life insurance, Paid Multisport Benefit Card, and a Global Employee Assistance Program. - Monthly meal and well-being allowance, high-end MacBook/Windows laptop, work-from-home support, and Multisport card paid by SentinelOne. - LinkedIn Learning, internal mentoring, educational support, generous referral bonuses, and optional company events (sports, BBQs, charity).

Role Description As a Senior Threat Intelligence Researcher, you'll lead deep-dive investigations into both emerging & known threats, while maintaining a vigilant watch over malware developments to ensure defenses remain a step ahead of evolving attack methods. You'll put into use your ability to synthesize complex data into actionable intelligence, and to provide senior management with the clear briefings necessary to understand and mitigate potential risks. Furthermore, you'll be expected to develop refined hunting strategies and to track adversary infrastructure, effectively counteracting shifts in threat actor tactics through detail-oriented investigation. What Will You Do? - Drive External Threat Research: Triage and evaluate findings from OSINT and lead in-depth investigations into emerging threats. Systematically evaluate signals from the global OSINT community and dark web forums to determine their fidelity, relevance, and impact. - Synthesize Actionable Intelligence: Transform raw data from dark web forums, leak sites, and research repositories into high-level threat briefings and risk assessments for senior stakeholders. - Adversary Knowledge Management: Curate and expand our internal Knowledge Base and IOCs collections. - Track Actor Tradecraft (TTPs): Monitor adversary behaviors across the open and deep web to identify shifts in recruitment, target selection, and shifting of operations. - Pivot Across Infrastructure: Identify and map threat actor footprints by pivoting through domain registrations, SSL certificates, passive DNS. - Bridge Intelligence Gaps: Collaborate closely with Detection Engineering to translate validated OSINT findings into durable hunting logic. - Develop OSINT Tooling: Build and automate scrapers, monitors, and data-visualization tools to identify anomalies and track threats in external telemetry. Qualifications - A Threat Intelligence / Threat hunting background. - Knowledge of the cyber threat landscape, including actors and TTPs. - Strong analytical skills, with the ability to identify patterns and trends in large datasets. - Programming skills in Python and knowledge of databases (SQL, noSQL). - Strong knowledge of YARA to track new malware families and knowledge on validation best practices. - Knowledge of MITRE ATT&CK, CISA KEV, EPSS, AMITT, MISP Galaxy. Requirements - Strongly preferred: Knowledge of malware analysis tools and techniques, including static and dynamic analysis, sandboxing, and debugging. - Technical writing & content development skills. - Nice to have: Understanding software vulnerabilities, and ability to implement hunting strategies to track and discover them. - Knowledge about internal working of EDR products. - Relevant certifications, such as Certified Malware Analyst (CMA), Certified Reverse Engineering Analyst (CREA), or GIAC Certified Malware Reverse Engineer (GREM). Benefits - Permanent-fulltime collaboration (UoP). - Flexible working hours; this is a 100% remote role based within Poland; optional membership in major co-working spaces. - Currently for this role in Poland we are able to consider only candidates that are already eligible to work in the EU at the time of applying. - Optionally for those willing to relocate to the Czech Republic, relocation assistance is available for any candidates that are already eligible to work in the EU at the time of applying. - Generous employee stock plan in the form of grant of RSUs (restricted stock units); 4 years vesting with 1 year cliff and then quarterly, stock refresh yearly. - Yearly bonus depending on the performance of the company, paid out in 2 installments. - LuxMed, Life Insurance, Disability Insurance, PPK (4% employer contribution). - Flexible time off (up to 30 paid days off per annum!). - Volunteering paid day off & Additional paid Company holidays off (e.g. 4 days in 2022). - Monthly Wellness Allowance. - Monthly Working from Home allowance. - Global gender-neutral Parental Leave (16 weeks, beyond the leave provided by the local laws) & Grandparent Leave. - Global Employee Assistance Program (confidential counseling related to both personal and work life matters). - LinkedIn Learning platform for Hard/Soft skills Training & Support for your further educational activities/trainings. - Above-standard referral bonus & Additional Country-specific Benefits & Allowances To Poland.

• Work closely with Art directors, Copywriter, and other brand team members to shape ideas and develop visually engaging campaigns. • Help shape our brand voice and ensure its consistency across all content. • Thrive in a fast-paced, collaborative environment with a high-volume workload often requiring short turnaround times. • Review and edit content produced by other team members or external contributors. • Stay up-to-date on industry trends and emerging platforms. Incorporating relevant information into the content. • Being comfortable with professional feedback and see it as a challenge to keep pushing your solutions. • Applying design as a method of thinking to the way you work, as much as the work itself.