Senior Threat and Detections Researcher

At Jamf, we believe in an open, flexible culture based on respect and trust. Our track record and thriving work environment all stem from the freedom we grant ourselves to get the job done right. We take pride in helping tens of thousands of customers around the globe succeed with Apple.

The secret to our success lies in our connectivity, while operating with a high degree of flexibility. Work-life balance remains our priority while feeling connected is important to maintain our strong culture, achieve our goals, and thrive as #OneJamf.

This role is offered as a hybrid in Brno, Czech Republic. We are only able to accept applications from those based in the Czech Republic and have sponsorship to live and work in the Czech Republic.  #LI-Hybrid 

What You'Ll Do At Jamf:

At Jamf, we empower people to be their best selves and do their best work. 

At Jamf Threat Labs, we lead the way in protecting Apple users worldwide. Our team has uncovered new malware families, developed zero-day exploits, and earned recognition across the security community and media.

As a Senior Threat & Detections Researcher, you’ll design innovative methods to detect malicious activity in macOS environments—ranging from monitoring indicators of compromise to building advanced behavioral detections. You’ll also help mentor teammates and share your expertise to push the field forward.

This is a unique opportunity to:

• Work with cutting-edge in-house tooling and technology.
• Contribute research that’s used by industry peers and showcased at conferences.
• Make a direct impact by discovering threats before the rest of the world sees them.

What You Can Expect To Do In This Role:

• Write and manage host based macOS detections at the endpoint level
• Perform analysis of detections to determine accuracy and precisions and tune detections accordingly based on results
• Research new ways to detect malicious activity on macOS using a wide variety of custom-built tooling
• Manage malware signatures to detect known threats on the macOS platform.
• Stay up to date on the latest malware trends on macOS and design detections accordingly
• Development of tools using python or other scripting languages to assist in day to day tasks
• Research macOS system internals to find and report new vulnerabilities
• Develop public facing material for important research developed while investigating newly discovered malware techniques and system internal findings
• Train others on system internals and malware signature development
• Assists in the management, organization, and prioritization of team efforts and goals
• Serves as a technical resource for the team with regards to best practices and technical approach
• Builds a deep understanding of workflows that make Jamf customers successful and apply that knowledge to ensuring the quality of each release 

What We Are Looking For:

Required Skills And Experience:

• Minimum 5 years of experience in cybersecurity and intrusion detection 
• Minimum 5 years of experience with endpoint detection software 
• Minimum 3 years of experience in incident response 
• Experience with static and dynamic reverse engineering 
• Strong interest in macOS security

Preferred Skills And Experience:

• Strong experience with detecting malware using Yara rules
• Experience with scripting or programming languages such as Bash, Python, Ruby, Objective-C or Swift
• Experience with GitHub and Git
• Customer value focus with the ability to quickly iterate based on emerging threats and customer feedback.
• Solution-focused ability working collaboratively in a fast-paced, agile environment

Why Jamf?

• We are progressive but laid back. You are free to be a yourself and work how you work best. Here, you manage your own day and your own work style. 
• Named a 2023 Best Workplaces for Women™ by Great Place to Work and Fortune Magazine.
• Named a 2024 PEOPLE Companies That Care by PEOPLE® and Great Place To Work®.
• You will have the opportunity to work with a small and empowered team where the culture is based on trust, ownership, and respect.
• Benefits are a critical part of the “whole employee experience”. Our benefits package includes 30 days of paid time off, 3 paid days to volunteer, Benefit Plus cafeteria, Multisport Card, and more.
• Visit our Jamf Engineering blog to learn more about the innovative projects our team is working on and what we learn from each challenge we solve. A blog written by engineers, for engineers at https://engineering.jamf.com

What it means to be a Jamf?
We are a team of free-thinkers, can-doers, and problem-crushers. We value humility and the relentless pursuit of knowledge. Our culture flows from a spirit of selflessness and relentless self-improvement - driving both personal growth and collective progress throughout our company. We unite around common goals while respecting personal approaches, believing that fulfilled individuals create a thriving, vibrant workplace.  

Our aim is simple: hire exceptionally good people who are incredibly good at what they do and let them do it. We provide the support and resources to let everyone be their authentic, best selves at work, at rest, and at play. We are committed to supporting the continual improvement of Apple in the workplace, the organizations that rely on them and the people who keep it all running smoothly.  

Above it all, waves our banner of #OneJamf – and the knowledge that when we stand together, we accomplish so much more than we could alone. We seek individuals who share this unwavering journey toward growth to join us in our quest for constant improvement. 

What does Jamf do?
Jamf extends the legendary Apple experience people enjoy in their personal lives to the workplace. We believe the experience of using a device at work or school should feel the same, and be as secure as, using a personal device. With Jamf, customers are able to confidently automate Mac, iPad, iPhone and Apple TV deployment, management, and security – anytime, anywhere – to protect the data and applications used by employees in the workplace, students learning in the classroom, and streamline communications in healthcare between patients and providers. More than 2,500 Jamf strong worldwide, we are free-thinkers, can-doers, and problems crushers who are encouraged to bring their whole selves to work each and every day.

Get social with us and follow the conversation at #OneJamf

Jamf is committed to creating an inclusive & supportive work environment for all candidates and employees. Candidates with disabilities or religious beliefs are encouraged to reach out if they need additional support or alternative options to our recruiting processes to accommodate their disability or religious belief. If you need an accommodation, please contact your Recruiter or Recruiting Coordinator directly. Requests for accommodation will be handled confidentially by Recruiting and will not be shared with the hiring manager. Jamf is an equal opportunity employer and does not discriminate against individuals who request reasonable accommodation for disability or religious beliefs. To request accommodations please email us at recruiting@jamf.com