Senior Cyber Threat Researcher

Who we are?

HarfangLab is a cybersecurity scale-up. We have developed an Endpoint Detection and Response (EDR) software to detect and mitigate modern cyberattacks targeting company workstations and servers. Our algorithms detect abnormal behaviors, generating security alerts or blocking malicious program executions.

From 40 employees in 2023 to 120 employees in 2024, HarfangLab is in hypergrowth mode and has already achieved several major milestones: winners of the Ministry of Defense's cyber challenge in 2019, recipients of the BPI's I-Nov competition in 2020, and ANSSI certification for our software in 2021.

Our initial clients include CAC40 industrial companies and government entities. We completed our first funding round of €5 million in 2021 and a second round of €25 million in 2023, which will enable us to strengthen our teams and expand internationally across Europe.

Our mission is to protect businesses and government agencies from modern cybersecurity threats (cybercrime, data theft, influence operations) that threaten the economic health of companies and the security of nations.

Why are we hiring?

HarfangLab's Cyber Threat Research (CTR) team has been established in late 2023 by
renowned cyber security researchers. Our mission is to hunt, identify, analyse, track and
distribute knowledge on advanced cyber threats. We also support product and service
development while enhancing brand reputation through expert analysis. Our
investigations and knowledge are most notably leveraged to produce actionable
intelligence, which we regularly publish in our 'Inside the Lab' blog:
https://harfanglab.io/insidethelab/ .
To strengthen our capabilities and further develop our activities, we're seeking a "Senior
Cyber Threat Researcher to join our team".

What you will do with us?

• Hunt for, identify, analyse, pivot from and track threats and attacks, using open-source, commercially available and private data sources;
• Author detailed threat intelligence reports and publicly present findings and methodologies to various audiences;
• Design and implement creative hunting and detection methodologies, heuristics, rules and analysis tools;
• Contribute to HarfangLab's detection products and services development;
• Foster partnerships and collaborate with industry peers, LEAs and intelligence communities combating sophisticated cyber threats;
• Represent HarfangLab at internal, local and international conferences and engagements.

• You are an experienced and passionate threats hunter with a drive to uncover malicious, advanced activities threatening businesses, critical infrastructures and governments.
• Your mission aligns with ours: to build a robust, recognized European cyber threat intelligence capability in the private sector, and you are willing to be part of it at the earliest stages.
• You like to dig into unchartered technical territories and connect technical and geopolitical dots to discover, cluster, and attribute attacks.
• While self-sufficient in analysing diverse data sources, you also excel in collaborative environments, developing ideas and navigating uncertainties with peers.
• Your ability to communicate complex concepts makes you an asset in contributing to global defence efforts and engaging with the public intelligence community.

• 5+ years working in cybersecurity, with expertise in areas such as incident response, penetration testing, threat intelligence, technical data analysis, and/or project development;
• Including a minimum of five years of experience in hunting for and analysing cyber threats, in the context of threat intelligence production;
• Proven track record in reporting on cybersecurity topics, presenting at conferences, or leading projects;
• Proficiency in Yara and/or Sigma rules writing;
• Solid and autonomous scripting ability;
• A strong experience with binary reverse engineering is determining, but is not considered a requirement;
• Solid background in one or several computer sciences (e.g. networks, development, infrastructure management, cryptography, artificial intelligence, data processing);
• Experience handling confidential data and with high-security requirements;
• Fluent in English and at least one other European language.

• Autonomy, flexibility, and ability to comfortably work in highly dynamic, distributed, international environments;
• Real-life social networking ability, ability to cooperate and establish trust relationships;
• Will and ability to simply summarize and describe complex technical concepts, adapting technical depth level to target audiences.

• Offices located in the heart of Paris, near Bourse (75002),
• High-quality equipment based on preferences and needs (PC, Mac, additional screens, etc.),
• Thanks to our Office Manager, we regularly organize events such as seminars, happy hours, themed evenings, and more,
• An onboarding process to welcome each new colleague with an explanation of the roles and a mentor to support you during your early days!"
• A great team that always seeks to improve their skills

1. A 30-minutes call with our Talent Acquisition Manager,
2. A 30-minutes visio interview with the Hiring Manager,
3. A take-home exercise
4. A 1 hour on-site interview + 30 minutes with the team for a team fit assessment,
5. A psychometric test to assess your motivations and soft skills,
6. A final HR video appointment to review your soft skills and motivations.