widefield security
Website:
widefield.ai
Job details:
About WideField Security
At WideField Security, our mission is simple and ambitious: we stop identity breaches.
Eighty percent of today’s attacks start with an identity incident, yet enterprises still lack visibility and control over how identities are used, shared, and abused. WideField was founded to solve this problem by providing a new layer of protection focused on identities in use.
Our platform continuously monitors every human and non-human session across applications and cloud environments to detect identity-based threats in real time.
We are an early-stage, high-growth cybersecurity startup backed by Crosspoint Capital Partners and Engineering Capital. We have already achieved early success with enterprise customers who believe that the next frontier of security lies in protecting identities, not just credentials.
What You Bring
Adversary Simulation and Detection Efficacy Testing
● Design and execute realistic red team exercises, including testing scenarios against critical third-party services (IAM/ Iaas/Saas).
● Simulate real world attack scenarios (e.g., using techniques like AiTM with tools like Evilginx or simulating Infostealer activities) to find ways to steal credentials and gain unauthorized access.
● Operate within controlled test environments leveraging technologies such as EDR/Iaas/Saas.
● Generate authentic logs from successful attack simulations to train and validate our product's detection models.
● Develop new and novel attack variations to test the resilience and potential bypasses of existing detection mechanisms.
● Ability to quickly triage detections findings to address False Positive (FP) and False Negatives (FNs)
Manual Threat Hunting and Intelligence
● Work with online Threat Intelligence services, IOCs, security bulletins and apply the knowledge for creating and updating detections in the product.
● Manual threat hunting exercises within test systems and identify nascent or existing adversary TTPs not yet covered by automated detections.
● Synthesize hunting findings to provide actionable input for the development of new, high-fidelity security detections.
Nice to have Additional skills
● Monitor dark web forums, marketplaces, and other restricted communities to find information on relevant threat actor activities, data breaches, and emerging TTPs.
● Cloud Security Expertise: Strong practical knowledge of security controls and common attack vectors within cloud environments.
● Identity and SaaS Application Attacks: Understanding of attacks targeting IDP/IAM, Iaas and Saas environments.
● Offensive Tooling: Hands-on experience with tools used for simulating credential theft, phishing (e.g., Evilginx), and malware simulation (e.g., Infostealers).
● Detection Engineering Knowledge: Fundamental understanding of how security products generate detections (e.g., EDR, SIEM) and the ability to generate data/logs suitable for training and testing.
● AI Knowledge: Have the basic knowledge of new generation AI systems, LLMs. Comfortable working with or building AI enabled tools, build new or map your work to AI Agentic workflows.
What Makes You a Great Fit
Strong Fundamentals: Core knowledge of fundamentals like Operating Systems, Network Protocols, Web standards (HTTP, REST), Authentication and Authorization standards like OAuth, OIDC
Log Analysis : Experience with looking at various cloud and SaaS apps logs and filtering ‘signal from noise’, a keen eye to spot security issues from the logs.
Threat Intelligence: Experience collecting, analyzing, and synthesizing threat intelligence from various sources, including the dark web.
Excellent Communication: Ability to clearly document and articulate complex technical findings, attack paths, and detection recommendations to both technical and non-technical audiences.
Technical Depth: Proficiency in at least one scripting language (e.g., Python, Go) for developing custom attack tools and automating tasks.
Work with global teams: Comfortable collaborating with distributed teams in different time zones
Startup DNA
At WideField, we are building something that has never been done before. That requires a special kind of person.
We are looking for someone who:
● Is a self-starter who takes ownership from day one.
● Can operate creatively and efficiently on a startup budget.
● Shows perseverance and grit, is not afraid to experiment, fail fast, learn, and improve.
● Brings a positive, can-do attitude and thrives in a collaborative, high-trust culture
Click on Apply to know more.