UnderDefense Careers

UnderDefense is the Security Consulting and Managed Detection & Response (MDR) SaaS provider.

In this unique niche demand on Cybersecurity is growing dramatically.
So we are growing too.

Don’t take our words for granted.
See customer’s testimonial:

Positions you can Apply to:


Technical Positions

Security Researcher R&D

Responsibilities

  • Research latest CERT and industry reports, Threat intel analytics and TTP. Drive product vision
  • Analyze trends/threats and run new EVIL samples in our awesome LAB
  • Analyze attacks patterns, fingerprints, anomalies and new ransomware techniques
  • Research & Develop new threat algorithms to detect it on scale during Lateral Movement in stream analytics platform
  • Maintain a isolated test / lab environment to run latest malicious activities and generate artifacts (telemetry, reports, docs, manuals, pcap)
  • Consult development team on implementing new features and functionality for product
  • Run and automate attacks and simulations to assure detections works as expected
  • Analyze and convert from SIGMA to new detection format
  • Cooperate with our Red team to run some of complex attacks

Experience

  • If you was in Malware analysis team for few years or with Red team – it is awesome. You are our candidate
  • Experience with MITRE and how SOC team works and react – will help a lot
  • Hands on with CobalStrike, PowerShell Empire, Powersploit, metasploit, AutoSploit, venom, Pivotsuite, Responder
  • Seen on practice DGA & Command and Control (C2) console
  • In-depth knowledge of network protocols WinRM, WMI, HTTP/S, SMB, DNS, ICMP, TCP/UDP
  • Fundamental understanding of security tools such as SIEM, IDS/IPS, Web Proxies, DLP, CASB, SIEM, DNS security, DDoS protection, and firewalls
  • Knowledge of Microsoft Windows systems including active directory and Unix systems.
  • Knowledge of attack vectors, threat tactics and attacker techniques. Experience applying Mitre ATT&CK matrix.
  • Experience analyzing and inspection log files, network packets, and any other security tool information output from multiple system types
  • Familiar with basic reverse engineering principles and understand of malware, rootkits, TCP/UDP packets, network protocols

Nice To Have

  • FlareON badges or OSCP
  • Strong python skill
  • English and good idea communication skill
  • Demonstrable attention to detail, creative problem-solving, and persistence in your work product
  • Work comfortably at a fast-paced, multi-tasking environment

    Tier 2 SOC Analyst

    UnderDefense is a fast-growing company that safeguards businesses around the globe from cybersecurity threats. We are looking for a Tier 2 analyst who will join our Global SOC Team. It’s more than 45k+ systems we have under our umbrella in 24×7 mode at the moment. UnderDefense SOC team leverages the possibility to prevent cyber threats using our proprietary solution and apply lessons learned for improving alert quality and automating responses. Upon joining our team you will get a chance to solve some of today’s toughest cybersecurity challenges. Primarily you will work within analysis direction, but we also give a chance to take part in other projects in offense & defense areas as well as develop skills in the incident response domain. 

    If you are with a curious mindset and have an interest in making the world a safer place – join our UnderDefense SOC team.

    Requirements:

    • 2+ years hands-on experience in Security Operations Center
    • Experience working as a user/admin with EDR, SIEM, SOAR solutions. SentinelOne/Crowdstrike, Splunk will be preferable.
    • MITRE, CyberKillChain frameworks – strong understanding
    • Basic Python OR Bash OR PowerShell
    • Good understanding of network protocols such as TCP/IP, DNS, HTTP/HTTPS, ARP, etc.
    • Solid understanding of Linux-based systems including services, processes, users and the filesystem
    • Windows: the syntax of PowerShell/Bat/VBS scripts, AD, Kerberos, SMB, LDAP protocols, Credential Guards, etc.
    • Experience in monitoring Windows, Linux, Cloud(AWS/GCP), WebServers (Apache/Ngnix/IIS), AV, Firewall, IPS/IDS
    • Strong communication skills
    • Effective self-learning and multitasking skills.
    • Fluent in English (B2-C1)

    What we offer:

    • Training and career development programs 
    • Knowledge sharing sessions
    • Branded souvenirs
    • Internal training and workshop
    • Comfortable workplace & office equipment
    • Opportunities for self-realization and career growth
    • 18 days of paid vacations & 5 days of paid sick leaves
    • Quarterly Team building & corporate events (2 grand events per year)
    • Guaranteed regular compensation review
    • On-demand Knowledge Evaluation and promotion
    • English language courses
    • Medical insurance with pretty much good coverage for you to feel safe

    Please send your CVs to [email protected]

      Penetration Tester (Mid or Senior)

      Qualifications:

      • Technical skills: Web/Mobile security, Network Security, Windows domain, UNIX/Linux, and basic experience in  Reverse Engineering is a plus.
        • Knowledge of system and/or web application vulnerabilities and risk assessment methodologies such as OWASP Risk Rating Methodology.

        Preferred Experience:

        • eWPT or OSCP or other related security certifications
        • Love to code on Python, .NET, or similar languages

      Responsibilities:

      Do penetration tests of applications and networks against a wide array of technologies and platforms

      • Create detailed penetration testing reports which explain identified technical and logical security findings, describe potential business risks, and present prioritized recommendations
      • Understand, review, interpret vulnerability assessment
      • help design Secure SDLC in a mixed waterfall/agile environment (OWASP SAMM)
      • hands-on perform specialist appsec processes in SDLC (design review, Java code review, testing, etc)
      • help properly set up automation in CI/CD (so HP Fortify / HP WebInspect suck less)
      • basic performance testing to ensure system’s Availability (optional)
      • Contribute to the ongoing enhancement of the company’s penetration testing assessment capabilities
      • Collaborate and share knowledge internally
      • Ability to think outside the box and simulate adversarial approaches

      What we offer:

      • Growth, really fast growth
      • Good salary + really challengeable projects
      • Brilliant Team
      • Paid vacation and sick-leaves
      • Paid certifications and courses
      • Internal training and workshop (conferences, workshops, training, etc.)
      • English courses  
      • Work-rest balance support ( foosball, workout station) 

      Please send your CVs to [email protected]

      Senior/Middle Go Developer

      About the project

      We are building a Cybersecurity solution for our Client that enables security analysts to perform network monitoring, detecting, preventing, and investigating security incidents. Our awesome team is responsible for backend development, adapting the user interface to the specific needs of the threat intelligence workflow, impacting product design directions and most important – constant improvements of our state-of-the-art security detections to withstand modern and everlasting cyber security threats.

      Stack
      Backend: Go, Scala, Apache Spark, Apache Kafka, Elastic Search, CouchDb, Neo4j, Clickhouse.
      Frontend: Ember.js

      Requirements:

      • 2+ years of Back-End development experience with Go
      • Knowledge of Google Cloud Platform, Google Container Registry 
      • Work experience with Docker 
      • Work experience with CouchDB, Elasticsearch
      • Intermediate+  level of English
      • Proactiveness and willingness to contribute beyond the given tasks, generating new ideas and drive the product development

      Would be a plus

      • Experience Grafana, Kibana, Swagger/OpenAPI, Postman
        Hands-on experience with Neo4j database or other Graph DBs
      • Interest in Cybersecurity domain

      Responsibilities:

      • Designing and implementation of services that aggregate incoming security events, alerts and other entities and allow further analyses and interactions
        Developing and expanding API, working closely with Front-End
      • Participating in design sessions and actively contributing to the development of the product
      • Enhancing the performance of the solution
      • Conducting code reviews and participating in traditional Scrum rituals (daily stand-up, planning, retrospective)
        Bring the right attitude to the team: ownership, accountability, attention to detail, and customer focus.

      What we offer:

      • Growth, really fast growth
      • Good salary + really challengeable projects
      • Brilliant Team
      • Paid vacation and sick-leaves
      • Paid certifications and courses
      • Internal training and workshop (conferences, workshops, training, etc.)
      • English courses  
      • Work-rest balance support ( foosball, workout station) 

      Please send your CVs to [email protected]

      Middle Python Engineer

      You are

      • 3+ years of enterprise software development experience
      • Upper-Intermediate and a higher level of English
      • Hands-on experience with Python
      • Practical experience using Docker and/or Kubernetes
      • Expertise with the following: backend APIs, databases, services integration, cybersecurity, core infrastructure, and tooling
      • In-depth understanding of GIT
      • Write clean and well-crafted code
      • Solid understanding of development lifecycle (design, test, implement, document) and release management using modern collaboration tools
      • Able to learn quickly to understand different business domains
      • BS in computer science or a related field

      What will make you stand out

      • Experience with cloud computing platforms like AWS, GCP, or Azure
      • Adept of testing, following of TDD/BDD is your advantage
      • Willingness to learn new domains and technologies
      • Team leadership skills and experience

      You want to work with

      • Such technologies as Python, REST APIs, web development, GIT, Kubernetes, Docker, Conda, Postgres (or comparable databases)
      • Data science, ML, and AI domains
      • Product for the enterprise-level users
      • Estimation and scope breakdown
      • Requirements elicitation and releases planning
      • Direct communication with the client

        Please send your CVs to [email protected]

      QA Engineer

      About the project

      We are building a Cybersecurity solution for our client that enables security engineers to perform network monitoring, detect, prevent and investigate evolving cyber threats. Our awesome Team is responsible for backend development, adapting the user interface to the specific needs of the threat intelligence workflow, impacting product design directions, and most important – constantly improving and refining our state-of-the-art security detections to withstand modern and everlasting cybersecurity threats.

      You are

      • 3+ years of experience as a QA Engineer testing web applications (front-end/back-end)
      • Upper-Intermediate+ level of English
      • Great communication skills and ability to build rapport with parties
      • Confident knowledge of software testing methodologies
      • Ability to create test strategy, test plans, test cases from scratch, based on product requirements
      • Basic understanding of how network protocols works
      • Ability to work without supervision
      • Motivation to learn cybersecurity knowledge domain

        Would be a plus

        • Technical Background
        • Willingness to develop as an Automation QA engineer

        Responsibilities

        • Implement Web Application testing process
        • Analyze functional specification/user stories and other requirements
        • Create test cases/checklists to cover these requirements
        • Work closely with the development team to clarify feature requirements and provide feedback on design solutions.
        • Execute and evaluate manual test cases to identify and track defects.
        • Communicate test status and needs accurately and effectively both within and across teams.

        What we offer

        • Becoming a part of Startup Success Story
        • 18 days vacation, paid sick leave
        • Competitive salary
        • Flexible work schedule
        • Free English lessons
        • Comfortable office
        • Exciting work in a dynamic Team
        • Work with a Senior QA Lead on client-side

        Please send your CVs to [email protected]


        Non-Technical Positions

        Communications/Brand Manager

        UnderDefense is a unique Cybersecurity as a Service product company with Ukrainian roots, we are globally top-ranked by Gartner, Clutch, TheManifest.

        We are looking for a passionate and well-rounded PR/Communications/Brand Manager to strengthen the company’s brand position on both global and local scale. 

        You will collaborate with internal teams of cybersecurity experts and partners and implement communications strategy, support media relations, and manage communications activities to boost UnderDefense brand on the US market.

        Key Responsibilities:

        • Develop a marketing communications plan including strategy, goals, budget, and tactics
        • Develop media relations strategy, seeking high-level placements in online media
        • Coordinate all public relations activities
        • Direct social media to engage audiences across traditional and new media
        • Leverage existing media relationships and cultivate new contacts within business and industry media
        • Manage media inquiries and interview requests
        • Create content for press releases, byline articles, and keynote presentations
        • Monitor, analyze, and communicate PR results on a quarterly basis
        • Evaluate opportunities for partnerships, sponsorships, and advertising on an ongoing basis.
        • Build relationships with thought leaders to grow industry awareness
        • Maintain a keen understanding of industry trends affecting clients and make appropriate recommendations regarding communication strategy surrounding them
        • Manage participation at industry events, as well as lead main communications activities to promote own webinars. 
        • Ensure full corporate storyline and brand alignment across all the channels of communications.

        The ideal candidate will have:

        • English level – advanced level or fluent. 
        • 3+years’ experience in digital marketing or communications department, preferably in IT company.
        • Experience working directly with journalists, influencers, and international media.
        • Strong eye for developing meaningful content that tells a differentiated story.
        • Passion and commitment to work in a fast-paced environment.
        • Able to achieve alignment and collaboration among individuals and groups.
        • Ability to multi-task across numerous projects with exceptional attention to detail.
        • Strong networking, relationship building, and pitching skills.
        • Curious, data-driven, and results-oriented mindset.

        We offer:

        • Work in a great Cybersecurity product company. Ukrainian Startup Success story
        • Competitive salary with opportunity for professional development and personal growth;
        • Team of strong IT professionals working in a vibrant product environment (we also love sport)
        • Remote work & Flexible working schedule
        • Corporate social events and regular team building
        • Free English classes with certified English teachers
        • Paid vacation and sick-leaves
        • No  bureaucracy
        • Medical and COVID insurances
        • The ability to attend conferences, webinars, and other events that will enhance your professional skills;
        • Paid maternity leaves
        • Convenient office location or Work From Home (In Lviv -> Heroiv UPA 77, Kineskop IT Hub)
        • Regular education and self-development on internal courses and seminars, office library, direct access to CEO

        Professional growth:

        • Challenging and non-standard tasks and projects.
        • Individual Development Plan.

        Fun:

        • Team buildings.
        • Corporate events and outstanding parties.
        • Anniversary presents.
          Please send your CVs to [email protected]

        Head of Marketing

        UnderDefense is a fast-growing company that protects businesses around the globe from cybersecurity threats. We are determined to keep on growing. So,UnderDefense is looking for a Head of Marketing who will be responsible for the strategic direction and development of the company’s digital marketing capabilities. If you are a creative thinker with an executive presence and comfort working in a fast-paced environment, we are looking for you.

        Key Responsibilities:

        • Design and execute marketing strategies that are in alignment with global companies goals.
        • Partner with the CEO and other company’s departments  to shape our strategy and ensure the company is growing rapidly and responsibly.
        • Lead, inspire and manage the in-house marketing team, establishing and tracking KPI’s.
        • Plan, implement and analyze multi-channel campaigns for both SaaS product and B2B services. Develop and validate the value propositions for all relevant stakeholder groups.
        • Drive Go-To-Market strategy and delivery, and partner with Sales team to be a united front focused on delivering pipeline across the globe. Support Sales team with marketing materials for roadshows and campaigns on current customer base.
        • Be the architect for the marketing funnel, ensuring the deep understanding of Customer Decision Journey and related metrics

        Requirements:

        Hard Skills:

        • Has solid theoretical background and profound economical education.
        • Experience in a B2B environment is preferred. 
        • Operates modern marketing concepts, both by Cotler and Sharp.
        • Has a profound understanding and expertise in implementing theory to the practice.
        • Understands how to use Income statements and Cash flow reports for marketing.
        • Has a profound experience in people management and process establishment.
        • Operates stakeholder’s matrix in practice.
        • Capable of configuring the funnel for both services and products.
        • Understands the difference between marketing for product and marketing for services.
        • Strong quantitative, analytical, and problem-solving skills.

        Soft Skills

        • Passionate about making hard things easy to understand and easy to fall in love with.
        • Capable of turning chaos into well-organized and clear processes.
        • Ready to rely on teammates, delegate and ensure growth for people.
        • Passionate about talking to real clients with the deep empathy to their pains, goals and needs.
        • Strong negotiator with enough stamina to deal with much pressure and highly turbulent environment.

        We offer:

        • 18 business days of payable annual free-time.
        • 10 days of paid sick leave.
        • Competitive compensation package (base + bonus for KPI).

        Professional growth:

        • Challenging and non-standard tasks and projects.
        • Individual Development Plan.

        Fun:

        • Team buildings.
        • Corporate events and outstanding parties.
        • Anniversary presents.

          Does this sound like an interesting match? Please apply with a copy of your updated CV as soon as possible and we will be in contact to arrange the next steps!

          Please send your CVs to [email protected]

        Senior Recruiter

        The most important part of every business is the people and this Senior Recruiter will directly impact the UnderDefense growth by identifying great talent. Our Senior Recruiter will be responsible for all hiring activities (both operational and strategic) for the Ukrainian UnderDefense office.

        Your Responsibilities:

        • Lead the full-cycle hiring process in the Lviv office: from kick-off calls conducting to the pre-onboarding communication and background check ordering
        • Lead a team and be a coach of junior recruiter
        • Plan strategically: work on the yearly/quarterly hiring plan with the VP of Engineering, the Director of Engineering, and the Director of Talent Acquisition
        • Run the data-driven hiring process: collect and analyzing metrics, provide changes based on recruitment analytics
        • Promote a personalized approach in hiring

        Must-have skills:

        • Upper-intermediate English
        • At least 3 years of experience
        • Expert level skills in sourcing passive candidates
        • A personalized approach in hiring
        • Ability to work without direct supervision
        • Deep knowledge of the IT market and technical literacy
        • Developed analytical skills and strategic thinking
        • Great communication, negotiation, collaborative and interviewing skills

        Nice to have:

        • Experience in collaborating with distributed People Operations and Talent Acquisition teams
        • Employer brand developing success
        • Examples of hiring process optimization, changing, aligning with business goals

        Bonuses:

        You’ll be responsible for the Recruitment function in the UA location, so you’ll be able not only to hire people but also to tune our hiring process, approach, way of interviewing, and offering.

        We Offer:

        • Great conditions for education and development within the company
        • Paid vacation and sick-leaves
        • Paid certifications and courses
        • Internal training and workshops
        • English courses
        • Work-rest balance support (Foosball, workout station)
        • Funny celebrations, team outings, and unforgettable corporate events
        • Comfortable office

          Please send your CVs to [email protected]

        Sales Manager / Business Development Manager

        Must:

        • Sales background in IT (2+ years)
        • Advanced English, both written and verbal
        • Proven successful sales track record (B2B)
        • Excellent networking, communication, and negotiation skills
        • Proactive Team player, flexible, self-motivated, result-oriented
        • Consistently and Persistence

        Big plus:

        • Participation in international programs like Flex, Work and Travel USA  or other abroad living experience  
        • Experience in Public speaking/presentations, pitching
        • Familiarity with trending sales techniques/tools and best practices

        We Offer

        • Outstanding Sales team
        • Decent base Compensation fixed in USD
        • Sales commissions monthly (5% for 1 year for each closed deal)
        • Opportunity to travel onsite to the US, Canada, EU
        • Attending sales conferences, training, R&D, networking events, etc.
        • Funny celebrations, team outings, and unforgettable corporate events
        • Compensation for sick leaves and regular vacations
        • Marketing team support your activities
        • Comfortable office or possibility to work remotely

        Responsible for

        • Achieve quarterly and annual quota and pipeline development objectives
        • Dealing with multiple warm leads from US/Western Europe/Middle East
        • Preparing business offers and commercial proposals
        • Holding negotiations with clients
        • Deals closure and successful transition to delivery
        • CRM activity and rules adherence for accurate sales planning, reporting, and forecasting
        • Attending conferences, events, and meetups (once the borders are open)

          Please send your CVs to [email protected]

          Project Manager/Coordinator

          Key Responsibilities:

          • Create and maintain project plans
          • Translate customer requests and requirements into project deliverables
          • Work with the sales team to gather and document customer expectations to ensure successful deployments
          • Devote attention to ensuring that quality standards and metrics are being applied in the implementation of projects
          • Facilitating the creation of project schedules

          Requirements:

          • At least one year of experience
          • Have a desire to understand the technical part of the cybersecurity process
          • Collaborate with both business and technology teams to ensure project goals are being met
          • Demonstrate confidence driving multiple medium/large scale initiatives simultaneously and lead work optimally based on business needs and priority
          • Promote productive teamwork and help team members with their needs

          We offer:

          • Great conditions for education and development within the company
          • Paid vacation and sick-leaves
          • Paid certifications and courses
          • Internal training and workshops
          • English courses
          • Work-rest balance support
          • Funny celebrations, team outings, and unforgettable corporate events
          • Comfortable office

          Please send your CVs to [email protected]

          More about why you should choose UnderDefense

          UnderDefense Philosophy

          Vision

          • To become the Best Global MDR/IR provider. Better than Mandiant.
          • To cultivate continuous development of expertise in attack & defense.
          • To promote young talents from Ukraine by providing our Leadership Program and Partnership with Lviv Polytechnic, KPI, and UCU.

          Values

          • Honesty – We practice what we preach.
          • Growing and Promoting Talents – Experts. Finalists. Winners.
          • Making Impact – Pay it forward.
          • Being Agile – Responding to change over following a plan.
          • Excellence – Excellence is attitude.
          • Risk Intolerance – Risk comes from not knowing what you do.

          Mission

          Our mission is to make Cyberspace a Safe Place for You, Your Family, and Your Business.

          We are an Elite Team because:

          Our Benefits

          Medical Insurance

          We cover from 30% to 90% of the cost spent on medical services for each employee (depending on the length of employment in UD).

          Vacation and Sick leaves

          Planned Leave – 18 days +; Official holidays in Ukraine; Sick leaves – 5 days; Compensatory days off for each year in UD – 2 days per year; Birth of a child – 3 days.

          Bonuses & Benefits For 4 levels

          You have 4 different benefit packages depending on how long you are with UD: Newbee, Spartan, Rambo I, Rambo IІ.

          Internship for Students

          80+ students are enrolled into our internship program every year. Best are employed.

          Ready to join Rockstar Team?

          Found something that is perfect for you? Send us your CV to [email protected]

          Our Insights

          Incident Response Life Cycle| UnderDefense

          by UnderDefense | Nov 3, 2020

          With COVID-19 forcing businesses around the globe to shift to remote work, the cybersecurity landscape has changed significantly. Consequently, the complexity of protecting corporate infrastructure grew tenfold. It is complicated enough to instate impenetrable…

          Read more

          Risk-based cyber resiliency

          by Michael Rezek | Jan 4, 2021

          What we have witnessed over the last couple of decades as the traditional approach to corporate Cyber Resiliency has been a focus on attaining certain levels of maturity by building certain capabilities into the cybersecurity program. To achieve “maturity”, an organization might build a SOC to improve…

          Read more

          Data Breach Prevention: How to Improve Cybersecurity

          by Serge Mihalap | Oct 27, 2020

          No system is immune to cyber-attacks and unauthorized access. But do you know how common it is for companies to remain oblivious to a data breachMoreover, employees responsible for these incidents often don’t know why they are at fault. Read…

          Read more