Software threat researcher

At ReversingLabs, our application security and threat intelligence solutions have become essential to advance cybersecurity around the globe. Funded by our recent Series B investment, we're now on a journey to expand adoption and accelerate growth, as well as to hire top talent across the security industry.

This is a game-changing opportunity. We know every application threatens businesses with new supply chain risks. ReversingLabs is the only company that can dissect any binary at the level of speed, scale, and explainability necessary to protect the enterprise end-to-end.

We are on a mission to help IT professionals concerned with securing their code from supply chain threats. Sounds interesting? If you wondered what that fuss about malware attacking developers in the news was all about, you can be part of our solution that secures the software release process for publishers and manages third-party risk for software buyers. We are seeking extraordinary talent to help forge this transformational journey at ReversingLabs. We believe that your future role as a software threat researcher is extremely important to the success of our solution - the secure.software platform for software assurance.

To be comfortable in this role, you must love researching and writing about cybersecurity and software development. Also, you should be able to navigate through various developer communities and find various (and possibly dangerous) stuff, such as software supply chain attacks in packages. It is okay if you’re not exactly a world-class NPM or PyPI guru, as long as you know how to use software package managers in real life and are willing to learn a few new things along the way.

The good news is that you’re going to have plenty of top experts to learn from. You will be working closely with our developer and DevOps community advocates and the rest of the product team, including other security researchers, developers, QA, product and program managers. Doing plenty of research in the developer communities and the software assurance field will be required for creating content, and also a great way for you to learn.

Near-native proficiency in spoken and written English is a must. You will be working with a lot of people from all around the world, including our team in the US and worldwide tech communities. You will create content for a general audience and for security experts alike, so you should know how to adapt it to clearly relay information. If you can explain complex concepts in easy-to-understand language - that’s great and it's a really important skill to truly excel in this role.

With time, we’ll expect you to come up with content ideas of your own. We highly value proactivity and creativity, and we know how to reward it properly while giving you all the support you need to be at the top of your game.

Responsibilities

• Keeping track of the latest cybersecurity threats
• Providing timely and accurate analyses of threat capabilities
• Write content such as blogs, product documentation, manuals and other product marketing materials
• Write content to support ReversingLabs participating in working groups, conferences, and meetups
• Support sales in customer engagement with written content

• Work closely with developer and DevOps advocates, developers, QA engineers, product, and program managers on preparing and publishing content for product releases

Requirements

• Strong interest in security
• Near-native or native proficiency in spoken and written English
• Hands-on experience in software development and with package managers (preferably NPM and PyPI)
• Ability to clearly relay information and transform it into understandable and useful internal or external content
• Attention to detail, self-reliance, and the ability to track work and report on the progress
• Experience creating blogs and other types of engineering content
• Strong communication skills and readiness to collaborate with different personality types
• Capable of explaining complex concepts in easy-to-understand language

Desirable

• Bachelor’s or Master’s degree in English, Information Sciences, Journalism, or a related field
• Experience in cybersecurity research
• Reverse engineering or malware analysis experience
• Basic knowledge of Python, JavaScript, C or C++
• Ability to use debuggers, disassemblers and sandboxes
• Understanding of the software development lifecycle and/or software assurance basic terms and principles
• Experience with containers and container orchestration systems (such as Docker, Kubernetes)
• Participation in open-source communities

Benefits

• Hybrid or fully remote work options (paid accommodation & transportation to Zagreb during onboarding for remote employees)
• Flexible working hours
• Generous compensation and a bonus system based on annual performance
• Hefty personal education budget and possibility to attend leading conferences and seminars in the field
• Access to the company library and possibility to order books of choice via Amazon
• Permanent contract in a fast-growing global company with Fortune 500 & governmental agencies as clients
• Challenging projects in a dynamic, collaborative team
• Opportunity to work on innovative solutions in malware analysis & software assurance, crafted in our very own Croatian R&D center
• Great career advancement opportunities - clear goals & internal promotions
• Employee referral bonus program: HRK 8,000 net for junior position, HRK 16,000 net for mid to senior positions, and HRK 20,000 net for principal/managerial positions
• Multisport card, newborn child allowance, rent-cost and “third pillar” (private insurance) pension contribution

Fully covered car garage in Radnička for all employees