Security Researcher

We are looking for a Security Researcher specializing in Windows and macOS threat detection to join our small, focused Threat Intelligence and Research team. In this role, you'll research, analyze, and develop robust file-based and behavioral detections targeting malware, threat actors, and attack methodologies across both platforms. You'll be a direct contributor to both our EDR and Vulnerability products — bringing research depth that spans threat detection and the full vulnerability lifecycle. You'll also help raise the team's external profile through published research and conference talks. As part of a small team, you'll have significant ownership over your work and a direct impact on the direction of our research and products.

Perform in-depth analysis of malware and adversarial behavior across Windows and macOS to identify detection opportunities.

Develop and enhance detection rules and behavioral analytics for both platforms, integrated into our EDR product.

Collaborate with engineering teams to incorporate detection logic into our cross-platform security agent.

Actively contribute to both our EDR and vulnerability products — spanning threat detection and the full vulnerability lifecycle: discovery, product coordination,CVE publications/submissions, and public disclosure.

Research and develop new vulnerability detection methods.

Continuously monitor emerging threats and trends across Windows and macOS ecosystems.

Contribute to the product roadmap for both EDR and vulnerability products by surfacing research-driven insights and detection capability recommendations.

Author blog posts and present findings at industry conferences to contribute to the broader security community.

Document and communicate research findings clearly, both internally and externally.

3–5 years of experience in cybersecurity, with hands-on focus on malware analysis and threat research across Windows and/or macOS.

Proven experience developing file-based and behavioral detections for endpoints (YARA, Sigma).

Solid understanding of the vulnerability research lifecycle: discovery through coordinated disclosure and CVE ecosystem.

Experience with malware analysis tools and techniques (Binary Ninja, WinDbg, Sysinternals, or Mac Monitor).

Strong understanding of OS internals and endpoint security mechanisms on Windows and/or macOS (Endpoint Security APIs).

Demonstrated ability to communicate research externally — blog posts, conference talks, or published work.

Experience developing or contributing to EDR or next-gen antivirus products.

Experience leveraging AI tools to accelerate threat research, detection development, and analysis workflows.

Familiarity with both Windows and macOS threat landscapes and platform-specific attack techniques.

Proficiency with security-focused scripting and data analysis (Python, PowerShell, Bash, etc.).

Demonstrated ability to assess and prioritize vulnerabilities using industry-standard frameworks and data sources (including advisories, disclosures, severity scoring, and more) with a critical eye for data quality and completeness