Principal Engineer ( Malware Research Scientist ) Job in Druva

Job Title: Principal Engineer (Malware Research Scientist)

Company: Druva

Location: Pune, Maharashtra, India

About Druva:

Druva, the autonomous data security company, delivers a 100% SaaS, fully managed platform that secures and recovers data from all threats. The Druva Data Security Cloud guarantees data availability, confidentiality, and fidelity providing autonomous protection, rapid incident response, and assured data recovery. Trusted by over 6,000 customers including 65 of the Fortune 500, Druva protects business-critical data in today s evolving threat landscape. With a $10 million Data Resiliency Guarantee, Druva ensures robust defense against all cyber threats.

Role Overview:

As a Principal Engineer (Malware Research Scientist), you will lead the design and establishment of a cutting-edge malware analysis lab and manage a team of researchers focused on deep technical investigations. You will conduct hands-on research, especially on ransomware, to uncover threat behaviors and generate actionable intelligence. Your insights will directly influence product security features by providing malware artifacts and indicators of attacks (IOAs) to engineering and product teams, strengthening Druva s product security posture.

Key Skills & Expertise:

• Proven background as an Enterprise Security Architect or equivalent.
• Expertise in threat modeling and risk mitigation at organizational and technical levels.
• Comprehensive understanding of cloud security (AWS, Azure, OCI), Linux, M365 application/API security, firewalls, IDS/IPS, sandboxing, threat intelligence, vulnerability assessment, SIEM, auditing, encryption, and data loss prevention.
• Relevant certifications such as OSCP, SANS, or equivalent security certifications are highly desirable.
• Strong communication skills with the ability to present complex technical topics clearly.
• Deep technical knowledge of malware behavior, cyber kill chain, incident response, forensic data collection, disaster recovery, and ransomware impact. Hands-on experience in these areas is preferred.

Roles & Responsibilities:

• Technical Leadership & Research:
  • Design, implement, and maintain a secure and scalable malware analysis lab.
  • Perform in-depth analysis of malware samples with a focus on ransomware variants.
  • Utilize reverse engineering, static, and dynamic analysis techniques to dissect malware behavior and tactics.
  • Identify, document, and communicate Indicators of Compromise (IOCs), MITRE ATT&CK TTPs, and Indicators of Attack (IOAs).
  • Analyze ransomware impacts on data, cloud infrastructure (AWS, Azure, GCP), and SaaS platforms (M365, Google Workspace).
  • Develop innovative detection and mitigation strategies for advanced malware threats.
  • Stay abreast of emerging threat trends through continuous research and threat intelligence gathering.
• Collaboration & Communication:
  • Partner with Product Managers to align research with customer requirements and support development of security features.
  • Work with marketing to translate research insights into technical content like whitepapers, blogs, and presentations.
  • Translate technical findings into clear, actionable reports for technical and non-technical stakeholders.
  • Collaborate with engineering and security teams to integrate threat intelligence into incident response and security operations.
  • Present research outcomes and threat intelligence updates to internal teams and leadership.

Qualifications:

• Bachelor s or Master s degree in Cybersecurity, Computer Science, or a related discipline (or equivalent experience).
• 10+ years of experience in malware analysis and threat research.
• Proven track record of leading and mentoring security research teams, including training interns and junior researchers.
• Deep expertise in malware analysis techniques such as reverse engineering, static analysis, dynamic analysis, and sandbox environments.
• Strong knowledge of ransomware variants and their operational impact on various infrastructures.
• Excellent verbal and and written communication skills.
• Ability to manage multiple projects, work independently, and prioritize tasks effectively.
• A passionate and proactive approach to staying ahead in the cybersecurity threat landscape.

If you re ready to lead high-impact malware research and shape the future of cyber resilience, Druva offers a compelling opportunity to join a world-class team protecting data on a global scale.