RemoteLeaf Logo
Log in Sign up

Senior Security Researcher

4 hours, 1 minute ago
India
Full-time
Senior
Penetration Tester
Cybersecurity
Cybersecurity GitHub Actions Go Java JavaScript LLM Maven PHP Python Ruby Rust TypeScript
Apply Now
Point Wild

Point Wild

Point Wild specializes in providing comprehensive online security solutions, including consumer VPN and antivirus services, while also supporting businesses with tools to enhance customer retention and address data breaches.

Internet Software & Services
View All Jobs 15

Description

  • Design detection systems that scan open-source packages and container images at scale for malicious behavior.
  • Hunt novel malicious packages, typosquats, dependency confusion attempts, compromised maintainers, and CI/CD abuse patterns.
  • Coordinate vulnerability disclosures with maintainers, foundations, registries, GitHub Security Advisories, and OSV.
  • Build internal tooling with static analysis and AI models to triage findings, summarize package diffs, and cluster related campaigns.
  • Publish technically rigorous blog posts about significant findings to establish thought leadership and community engagement.
  • Tune detection signals, reduce false positives, and develop countermeasures against sandbox evasion techniques.
  • Turn detection findings into actionable intelligence for customers and internal stakeholders.

Requirements

  • 4+ years of security research experience with published CVEs, GHSAs, or equivalent advisories.
  • Deep expertise in multiple vulnerability classes, including malicious packages, RCE, prototype pollution, deserialization, SSRF, auth bypasses, and CI/CD attack paths.
  • Experience designing and operating detection, scanning, or analysis pipelines at scale that run continuously and produce actionable signal.
  • Strong programming skills in TypeScript, Python, Go, or Rust.
  • Ability to read code across multiple languages, including JavaScript, Ruby, Java, and PHP.
  • Proven track record of writing high-quality technical blog posts quickly.
  • Hands-on experience using LLMs as research tools.
  • Contributions to OpenSSF, OSV, Sigstore, SLSA, or adjacent open source security projects are a plus.
  • Reverse engineering experience with obfuscated JavaScript droppers, packed binaries, or malicious post-install scripts is a plus.
  • Conference speaking experience at DEF CON, Black Hat, BSides, OffensiveCon, or Kaspersky SAS is a plus.

Benefits

  • Opportunity to solve real customer problems in a cybersecurity-focused company.
  • High impact role where individual contributions are visible and valued.
  • Fast-paced, growth-oriented environment with opportunities to learn new technologies, products, and markets.
  • Work with talented teammates in an inclusive culture where people matter.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Path Robotics

Manager, Governance, Risk and Compliance

Path Robotics 51-250 Automotive

Path Robotics is hiring a Cybersecurity GRC Manager to build and lead its enterprise governance, risk, and compliance program as the company scales into regulated markets.

United States Full-time Senior Penetration Tester Program Manager
AWS Azure Cybersecurity GCP
2 hours, 42 minutes ago
Anduril Industries

Security Business Partner, Frontier Systems

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is seeking a Security Business Partner to embed strategic security support within its Frontier Systems Division, enabling classified defense programs and business growth across Department of War and Intelligence Community customers.

United States Full-time Lead Penetration Tester
$191k-$253k
SAP
3 hours, 1 minute ago
AHEAD

Senior Technical Consultant - Network Security

AHEAD 1K-5K IT Services

AHEAD is hiring a Senior Technical Consultant to lead client-facing network security engagements spanning firewall, network access control, and SASE/Zero Trust design, implementation, and delivery for enterprise environments.

United States Full-time Senior Network Engineer Penetration Tester
$170k-$200k
Ansible AWS Azure Fortinet HIPAA Juniper Kubernetes SIEM Splunk Terraform
20 hours, 24 minutes ago
BreachLock

Director - Pentesting Solutions

BreachLock 51-250 Professional Services

Director – Pentesting Solutions at a growing cybersecurity company, leading offensive security and penetration testing delivery, team development, client advisory, and service expansion.

India Full-time Executive Penetration Tester
Cybersecurity Network Security OWASP Penetration Testing
21 hours, 45 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers