Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Research and develop detections for malware and phishing threats.
- Company: Mimecast is a leading cybersecurity company focused on protecting users from online threats.
- Benefits: Enjoy a hybrid working model, comprehensive benefits, and opportunities for professional growth.
- Why this job: Make a real impact by neutralising diverse threats and enhancing security for millions globally.
- Qualifications: 5+ years in cybersecurity with strong skills in malware analysis and detection signature writing.
- Other info: Collaborate in a dynamic team environment while enjoying flexible work arrangements.
The predicted salary is between 43200 - 72000 £ per year.
Security Research Engineer – Threat Protection
The Role
As a Security Research Engineer at Mimecast, you will be a pivotal technical expert dedicated to researching, analyzing, and developing detections for both malware and phishing threats. Your work will involve dissecting real-world file and web threats, building and optimizing detection signatures, and driving improvements to our advanced detection systems. This role combines in-depth threat investigation with a focus on enhancing our capabilities to block evolving attacks and provide actionable insights to our customers and internal teams.
Why Join Our Team?
At Mimecast, you will be at the forefront of neutralizing diverse phishing and malware threats through comprehensive file analysis and research across web vectors. You will dissect attacker tactics, techniques, and procedures (TTPs), crafting and optimizing detection signatures using industry-standard tools like Yara and ClamAV, as well as Mimecast\’s advanced proprietary detection technologies. This is an opportunity to leverage vast real-world threat data and transform your technical expertise into tangible protection for millions of users globally. If you\’re driven to understand and dismantle sophisticated attacks, Mimecast offers a dynamic environment where your work has immediate and significant customer impact.
What You’ll Do:
- Analyse and classify file and web-based threats, including credential phishing campaigns and a wide range of malware families.
- Develop, test, and maintain detection signatures (Yara, ClamAV, and proprietary solutions) for both phishing and malware threats targeting Mimecast customers.
- Automate threat analysis and detection processes.
- Investigate emerging attack techniques and develop proactive, high-quality detections.
- Measure and improve detection efficacy using large-scale data analysis tools.
- Collaborate with engineering on integrating detection scanners and optimizing scanning systems.
- Create and maintain documentation for detection techniques, code, and analysis findings.
What You’ll Bring:
- Deep technical proficiency in malware and phishing analysis, including hands-on experience with real-world threats.
- Strong experience writing and tuning detection signatures (Yara, ClamAV, or similar).
- Advanced scripting and automation skills (Python required; additional scripting languages a plus).\\
- Experience with static, dynamic or behavioural analysis of malicious files and URLs.
- Familiarity with web technologies (HTML, JavaScript, URL manipulation).
- Proficiency in analysing large data sets and extracting actionable insights.
- Experience setting up and using virtualization or sandboxing technologies for threat analysis is a plus.
- Strong analytical and problem-solving skills, with excellent attention to detail.
- Ability to work independently and collaboratively in a remote, global team.
- Minimum of 5 years of technical experience in cybersecurity, malware analysis, detection engineering, or a related field.
What We Bring:
Join our Threat Protection team to accelerate your career journey, working with cutting-edge technologies and contributing to projects that have real customer impact. You will be immersed in a dynamic environment that recognizes and celebrates your achievements.
Mimecast offers formal and on the job learning opportunities, maintains a comprehensive benefits package that helps our employees and their family members to sustain a healthy lifestyle, and importantly – working in cross functional teams to build your knowledge!
Our Hybrid Model: We provide you with the flexibility to live balanced, healthy lives through our hybrid working model that champions both collaborative teamwork and individual flexibility. Employees are expected to come to the office at least two days per week, because working together in person:
- Fosters a culture of collaboration, communication, performance and learning
- Drives innovation and creativity within and between teams
- Introduces employees to priorities outside of their immediate realm
- Ensures important interpersonal relationships and connections with one another and our community!
The UK base salary range for this position is £76,000-£114,000 base + benefits. This reflects the minimum and maximum target for new hire salaries for this position. This position may also be eligible for bonus, incentive plans, and other related benefits. Our salary ranges are determined by role, level, and location. These factors and individual capabilities will also determine the individual pay offered.
#LI-CS1
Belonging at Mimecast
Cybersecurity is a community effort. That’s why we’re committed to building an inclusive, diverse community that celebrates and welcomes everyone – unless they’re a cybercriminal, of course.
We’re proud to be an Equal Opportunity and Affirmative Action Employer, and we’d encourage you to join us whatever your background. We particularly welcome applicants from traditionally underrepresented groups.
We consider everyone equally: your race, age, religion, sexual orientation, gender identity, ability, marital status, nationality, or any other protected characteristic won’t affect your application.
Due to certain obligations to our customers, an offer of employment will be subject to your successful completion of applicable background checks, conducted in accordance with local law.
Senior Security Research Engineer employer: Mimecast
Contact Detail:
Mimecast Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Security Research Engineer
✨Tip Number 1
Familiarise yourself with the latest trends in malware and phishing threats. Follow industry blogs, attend webinars, and participate in online forums to stay updated on emerging attack techniques and detection methods.
✨Tip Number 2
Showcase your hands-on experience with tools like Yara and ClamAV. If you have personal projects or contributions to open-source tools, be ready to discuss these during your interview to demonstrate your practical skills.
✨Tip Number 3
Prepare to discuss your experience with automation and scripting, particularly in Python. Be ready to provide examples of how you've used automation to improve threat analysis processes in previous roles.
✨Tip Number 4
Network with current or former employees of Mimecast on platforms like LinkedIn. Engaging with them can provide insights into the company culture and expectations, which can be invaluable during your application process.
We think you need these skills to ace Senior Security Research Engineer
Some tips for your application 🫡
Understand the Role: Before applying, make sure to thoroughly read the job description for the Senior Security Research Engineer position at Mimecast. Understand the key responsibilities and required skills, such as malware analysis and detection signature writing.
Tailor Your CV: Customise your CV to highlight relevant experience in cybersecurity, malware analysis, and detection engineering. Emphasise your hands-on experience with tools like Yara and ClamAV, as well as any scripting skills you possess, particularly in Python.
Craft a Compelling Cover Letter: Write a cover letter that showcases your passion for cybersecurity and your understanding of current threats. Mention specific projects or experiences that demonstrate your ability to analyse and develop detections for malware and phishing threats.
Proofread Your Application: Before submitting your application, carefully proofread your CV and cover letter. Check for any spelling or grammatical errors, and ensure that all information is clear and concise. A polished application reflects your attention to detail, which is crucial in this field.
How to prepare for a job interview at Mimecast
✨Showcase Your Technical Expertise
Be prepared to discuss your hands-on experience with malware and phishing analysis. Highlight specific projects where you've developed detection signatures using tools like Yara and ClamAV, as this will demonstrate your technical proficiency.
✨Demonstrate Problem-Solving Skills
During the interview, be ready to tackle hypothetical scenarios related to threat detection. Explain your thought process and how you would approach analysing and classifying threats, showcasing your analytical skills and attention to detail.
✨Familiarise Yourself with Mimecast's Technologies
Research Mimecast's advanced detection technologies and be prepared to discuss how your experience aligns with their systems. Understanding their proprietary solutions will show your genuine interest in the role and the company.
✨Prepare for Collaboration Questions
Since the role involves working in a remote, global team, expect questions about collaboration. Share examples of how you've successfully worked with others in a team setting, especially in a cybersecurity context, to highlight your ability to work independently and collaboratively.
