Search for Associate Cyber Security Research Engineer roles in the Washington DC-Baltimore Area, requiring 3+ years of experience, with a focus on offensive security and automation, and a salary range of $100,000 to $175,000.

Okay, I've found several Associate Cyber Security Research Engineer roles in the Washington DC-Baltimore Area that match your criteria. Specifically, these positions require 3+ years of experience, focus on offensive security and automation, and offer salaries ranging between $100,000 and$ 175,000. You can review the listings now.

Associate Cyber Security Research Engineer

Washington DC-Baltimore Area

3 years + Experience

Offensive Security

$100000+

$175000-

Can you help me to analyze the job description and company culture?

Sure. Here's the analysis:

Job Analysis:

The core purpose of the Security Researcher role at Twenty is to innovate and develop sophisticated cyber capabilities that defend democracies against digital threats. Responsibilities include designing attack paths that mimic real-world adversary behaviors, leveraging machine-speed data processing, and creating tools for enhanced cyber operations. Success in this role hinges on a blend of strong research capabilities, a solid foundation in software development, and offensive security expertise. Candidates will need to navigate complex technical environments, collaborate cross-functionally, and adapt rapidly to the evolving landscape of cyber threats. The analytical and creative skills required for this position are complemented by a deep understanding of adversarial tactics, underscoring the importance of the MITRE ATT&CK framework. Moreover, the role involves using automation to streamline processes, which speaks to the necessity of efficiency in response to national security challenges. As key performance indicators, successful candidates may be expected to deliver innovative solutions that lead to enhanced national security through measurable metrics such as threat detection improvements or development timelines for security tools.

Company Analysis:

Twenty operates at the intersection of cyber and electromagnetic domains, positioning itself as a leader in national security within the digital landscape. The organization takes on the significant challenge of defending democracies, aiming for revolutionary advancements that directly impact national and allied security. The culture at Twenty appears to be rooted in pragmatism and optimism, seeking individuals who are both innovative and collaborative. This suggests a work environment that values problem-solving and creative thinking in complex scenarios. The Security Researcher will likely engage in high visibility activities within teams focused on rapid and impactful outcomes, possibly collaborating closely with leadership to ensure alignment with strategic security goals. Given the company’s orientation toward national security and advanced technologies, this role is not just about technology but also about contributing to a vital mission that can shape the safety of nations. Overall, this position is integrally aligned with Twenty’s growth goals as the company scales its operations to respond to the increasing complexity of cyber threats.

Mock up some interview questions based on the job description.

Absolutely. Here are some mock interview questions that could come up:

Tell me about a time when you had to design a security solution for a complex problem. What was your approach and what were the results?
Describe your experience with the MITRE ATT&CK framework. Can you provide an example of how you've mapped adversarial tactics in a previous role?
Can you share a specific instance where you automated a repetitive security task? What tools did you use and what was the outcome?
Discuss a time when you had to work with a cross-functional team to achieve a common goal in your security research or implementation. How did you navigate any challenges?
How would you go about developing a tool that enhances threat detection for your team? What key features would you prioritize?
What strategies would you employ to implement effective data enrichment pipelines in a security context?
Imagine you are tasked with creating a seamless workflow for running security testing procedures. What key components would you consider including?
Suppose you are given a new type of threat intelligence data source. How would you go about integrating this into your existing analysis framework?
Why are you interested in working at Twenty specifically, and how do you align with our mission of defending democracies?
How do you see your values reflecting the culture of Twenty as described in the company information?
If you encountered a significant ambiguity while developing attack paths, how would you approach resolving it?
What interests you about the intersection of cyber and electromagnetic domains in the context of national security?
What questions do you have for us about the role and its impact on the company's mission?

Job Details

Overview Company

Cyber Security Research Engineer

$100k/y-$175k/y

Twenty

8 days ago

Highlight

OnsiteFull-time3+ yearsMid

Summary

Twenty is seeking an Associate Cyber Security Research Engineer for an in-office position in Arlington, VA. The role involves developing and automating sophisticated attack paths, leveraging machine-speed data processing, and creating tools to advance cyber and electromagnetic capabilities.

About the Role

As a Security Researcher, you will design and implement sophisticated attack paths that emulate real-world adversary behaviors, create modular components for common attack techniques, and develop custom tools to support attack path execution. You will research and evaluate diverse data sources, implement data enrichment pipelines, automate red team tools, and design ETL pipelines for processing security-relevant data.

About You

Required:

3+ years of threat research and coding experience.
Deep understanding of the MITRE ATT&CK framework.
Proven experience with industry-standard threat emulation platforms.
Advanced programming skills in Python and/or Golang.
Experience with Docker and containerization.
Bachelor's degree in Computer Science, Software Engineering, or related field.
U.S. citizenship and eligibility to obtain a U.S. Government security clearance.

Preferred:

Experience with AI/ML integration in operational systems.
Background in developing tools for cyber operators or security analysts.
Experience with large-scale data processing and analysis.
Open-source contributions or personal projects demonstrating relevant skills.

Twenty

At Twenty, we're taking on one of the most critical challenges of our time: defending democracies in the digital age. We develop revolutionary technologies that operate at the intersection of cyber and electromagnetic domains, where the speed of operations exceeds human sensing and the complexity transcends conventional boundaries. Our team doesn't just solve problems – we deliver outsized outcomes that directly impact national security. We're pragmatic optimists who understand that while our mission is challenging, we have everything needed to succeed in protecting our nation and allies.

Arlington, VA