Senior Security Researcher - Threat Intelligence

Summary

Join Datadog's Security Research Team as a Security Researcher specializing in Cyber Threat Intelligence. You will be a subject matter expert on how the cyber threat landscape intersects with Datadog, working closely with internal teams to execute the cyber threat intelligence lifecycle and deliver insights. Responsibilities include building the cyber threat intelligence program, leveraging internal and third-party tools, participating in emerging events, assisting security research, coordinating with information sharing communities, providing threat briefings, collaborating on research content, and conducting external threat hunts. Datadog offers a hybrid workplace and values its office culture. The role requires advanced understanding of the cyber threat intelligence lifecycle and experience in coordinating with threat detection and response teams. Competitive benefits and a competitive salary are offered.

Requirements

• Advanced understanding of the cyber threat intelligence lifecycle, including building and maintaining intelligence requirements
• Be able to write and present technical but accessible long form strategic intelligence content for senior leadership
• Be able to write and present operational and technical intelligence content for our threat detection and response teams
• Experience in coordinating closely with threat detection and response teams to help direct investigations, develop a detections backlog, and improve response playbooks based on relevant attacker TTPs
• Experience and connected with information sharing communities and the ability to execute sound judgment on ingesting and acting on TLP-marked intelligence
• Experience in nation-state and cybercrime, especially those that target cloud environments and customers of Datadog

Responsibilities

• Build our cyber threat intelligence program with our Threat Detection leadership, focusing on disseminating timely and relevant threat intelligence to internal teams
• Leverage internal and 3rd party tools to build a picture of the Datadog threat landscape, adjusting it as the threat landscape changes, and inject that data into Datadog telemetry to help find threats
• Participate in emerging events, such as emerging vulnerabilities or threats, to help stakeholders understand impact on Datadog
• Assist our security research arm in identifying new clusters of activity to hunt for in our telemetry
• Actively coordinate with relevant information sharing communities to fast-track intelligence dissemination for the purpose of protecting Datadog, our customers and the community
• Provide threat briefings and build relationships with the greater Datadog engineering organization, so that every Datadog employee can understand the threat landscape
• Collaborate with the Datadog Security Research & Community teams to create research content (blogs, webinars, conferences) and build external partnerships advancing global cybersecurity
• Conduct external threat hunts to map attacker infrastructure relevant to Datadog, and disseminate technical intelligence into our security products which protect Datadog and thousands of other customers

Benefits

• Generous and competitive global and US benefits
• New hire stock equity (RSUs) and employee stock purchase plan
• Continuous career development and pathing opportunities
• Product training to develop an in-depth understanding of our product and space
• Best in breed onboarding
• Internal mentor and buddy program cross-departmentally
• Friendly and inclusive workplace culture
• Healthcare, dental, parental planning, and mental health benefits
• A 401(k) plan and match
• Paid time off
• Fitness reimbursements
• A discounted employee stock purchase plan