Software threat researcher
Zagreb, City of Zagreb, Croatia
Full Time Mid-level / Intermediate
At ReversingLabs, our application security and threat intelligence solutions have become essential to advance cybersecurity around the globe. Funded by our recent Series B investment, we're now on a journey to expand adoption and accelerate growth, as well as to hire top talent across the security industry.
This is a game-changing opportunity. We know every application threatens businesses with new supply chain risks. ReversingLabs is the only company that can dissect any binary at the level of speed, scale, and explainability necessary to protect the enterprise end-to-end.
We are on a mission to help IT professionals concerned with securing their code from supply chain threats. Sounds interesting? If you wondered what that fuss about malware attacking developers in the news was all about, you can be part of our solution that secures the software release process for publishers and manages third-party risk for software buyers. We are seeking extraordinary talent to help forge this transformational journey at ReversingLabs. We believe that your future role as a software threat researcher is extremely important to the success of our solution - the secure.software platform for software assurance.
To be comfortable in this role, you must love researching and writing about cybersecurity and software development. Also, you should be able to navigate through various developer communities and find various (and possibly dangerous) stuff, such as software supply chain attacks in packages. It is okay if you’re not exactly a world-class NPM or PyPI guru, as long as you know how to use software package managers in real life and are willing to learn a few new things along the way.
The good news is that you’re going to have plenty of top experts to learn from. You will be working closely with our developer and DevOps community advocates and the rest of the product team, including other security researchers, developers, QA, product and program managers. Doing plenty of research in the developer communities and the software assurance field will be required for creating content, and also a great way for you to learn.
Near-native proficiency in spoken and written English is a must. You will be working with a lot of people from all around the world, including our team in the US and worldwide tech communities. You will create content for a general audience and for security experts alike, so you should know how to adapt it to clearly relay information. If you can explain complex concepts in easy-to-understand language - that’s great and it's a really important skill to truly excel in this role.
With time, we’ll expect you to come up with content ideas of your own. We highly value proactivity and creativity, and we know how to reward it properly while giving you all the support you need to be at the top of your game.
Responsibilities
- Keeping track of the latest cybersecurity threats
- Providing timely and accurate analyses of threat capabilities
- Write content such as blogs, product documentation, manuals and other product marketing materials
- Write content to support ReversingLabs participating in working groups, conferences, and meetups
- Support sales in customer engagement with written content
- Work closely with developer and DevOps advocates, developers, QA engineers, product, and program managers on preparing and publishing content for product releases
Requirements
- Strong interest in security
- Near-native or native proficiency in spoken and written English
- Hands-on experience in software development and with package managers (preferably NPM and PyPI)
- Ability to clearly relay information and transform it into understandable and useful internal or external content
- Attention to detail, self-reliance, and the ability to track work and report on the progress
- Experience creating blogs and other types of engineering content
- Strong communication skills and readiness to collaborate with different personality types
- Capable of explaining complex concepts in easy-to-understand language
Desirable
- Bachelor’s or Master’s degree in English, Information Sciences, Journalism, or a related field
- Experience in cybersecurity research
- Reverse engineering or malware analysis experience
- Basic knowledge of Python, JavaScript, C or C++
- Ability to use debuggers, disassemblers and sandboxes
- Understanding of the software development lifecycle and/or software assurance basic terms and principles
- Experience with containers and container orchestration systems (such as Docker, Kubernetes)
- Participation in open-source communities
Benefits
- Hybrid or fully remote work options (paid accommodation & transportation to Zagreb during onboarding for remote employees)
- Flexible working hours
- Generous compensation and a bonus system based on annual performance
- Hefty personal education budget and possibility to attend leading conferences and seminars in the field
- Access to the company library and possibility to order books of choice via Amazon
- Permanent contract in a fast-growing global company with Fortune 500 & governmental agencies as clients
- Challenging projects in a dynamic, collaborative team
- Opportunity to work on innovative solutions in malware analysis & software assurance, crafted in our very own Croatian R&D center
- Great career advancement opportunities - clear goals & internal promotions
- Employee referral bonus program: HRK 8,000 net for junior position, HRK 16,000 net for mid to senior positions, and HRK 20,000 net for principal/managerial positions
- Multisport card, newborn child allowance, rent-cost and “third pillar” (private insurance) pension contribution
Tags: Application security C DevOps Docker JavaScript Kubernetes Malware Python R&D Threat intelligence
Perks/benefits: Career development Conferences Flex hours Salary bonus
Other jobs like this
Explore more Cyber Security career opportunities
Find open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Analysis, Cryptography, Digital Forensics and Cybersecurity in general, filtered by job title or popular skill, toolset and products used.
- Open Senior DevSecOps Engineer jobs
- Open Senior Security Operations Engineer jobs
- Open Senior Security Analyst jobs
- Open Application Security Engineer/Architect jobs
- Open Senior Infrastructure Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Head of Information Security jobs
- Open Sr. Security Engineer jobs
- Open SOC Analyst jobs
- Open Staff Security Engineer jobs
- Open Lead Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Offensive Security Engineer jobs
- Open Information System Security Officer (ISSO) jobs
- Open Senior Information Security Engineer jobs
- Open Staff Application Security Engineer jobs
- Open Security Researcher jobs
- Open Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Security Consultant jobs
- Open Cloud Security Operations Lead jobs
- Open Cloud Security Automation Specialist jobs
- Open Senior Threat Intelligence Analyst jobs
- Open Security Engineer II jobs
- Open Security Engineering Manager jobs
- Open GCP-related jobs
- Open Kubernetes-related jobs
- Open Analytics-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Clearance-related jobs
- Open Audits-related jobs
- Open Agile-related jobs
- Open Threat intelligence-related jobs
- Open PCI-related jobs
- Open OWASP-related jobs
- Open Forensics-related jobs
- Open IDS-related jobs
- Open CISM-related jobs
- Open Governance-related jobs
- Open CISA-related jobs
- Open Ruby-related jobs
- Open DevSecOps-related jobs
- Open JavaScript-related jobs
- Open ISO 27001-related jobs
- Open Open Source-related jobs
- Open Encryption-related jobs
- Open Security assessments-related jobs
- Open GDPR-related jobs