Security Researcher (Junior)

RemoteFull TimeFluent in English

Reports to: Director of Security & Compliance

You're the person who, when an antivirus flags a file, doesn't just accept it. You want to know which signature fired, why, and whether it's right. You've poked at how networks get classified, maybe run a home lab, and you're more interested in how detection actually works than in collecting certs.

We're looking for someone early in their career who wants to go deep, fast. You'll wear several hats reporting to the Director of Security & Compliance: keeping our software in good standing with the AV ecosystem, researching how our network is detected (both sides of that game), and helping harden our own house. We'll teach you the rest.

Responsabilidades

AV / AMTSO liaison. Monitor how security vendors classify our software, file and track false-positive disputes, pursue allowlisting, and engage AMTSO processes. Keep code-signing reputation healthy.
Proxy detection research, offensive and defensive. Study how detection vendors classify residential proxy traffic, reproduce their methods, and recommend hardening. Understand both how detection works and how to stay legitimate.
Internal security hardening. Assist with vulnerability management, configuration hardening, and secure-by-default practices across our infrastructure.
Abuse / threat triage. Help investigate abuse signals and turn them into detections or policy.
Document findings clearly and build small scripts and tools to make the above repeatable.

Requisitos

0-2 years of experience. Internships, home labs, CTFs, and personal projects count.
Solid networking fundamentals: TCP/IP, DNS, HTTP/TLS, and a basic grasp of IP reputation and ASNs.
Scripting ability, Python preferred. You can automate a repetitive task without hand-holding.
An adversarial, curious mindset. You ask "how would I detect this?" and "how would I get around it?" in the same breath.
Professional enough to represent us to AV vendors and standards bodies in writing.
Bonus: Familiarity with AV / EDR detection, false positives, or code signing.
Bonus: Knowledge of the proxy / VPN ecosystem or IP fingerprinting.
Bonus: OSINT experience or a home lab you can talk about.

¿Por qué unirse a Massive?

Totalmente Remoto

Trabajas mejor cuando trabajas donde quieres. Apoyamos un equipo totalmente remoto para que puedas vivir y trabajar donde mejor te convenga.

Subsidio para Oficina en Casa

Al ser un equipo totalmente remoto, queremos asegurar que tu oficina en casa sea cómoda. Proporcionamos un subsidio de $500 para mejorar tu espacio.

Vacaciones Ilimitadas

Tómate el tiempo que necesites: relájate, descansa y recupérate. Queremos que nuestro equipo trabaje al máximo, así que toma los días que necesites.

Seguro Médico

Nuestro equipo es nuestro recurso más valioso, por lo que contribuimos a cubrir el seguro médico de todos los miembros. Ofrecemos diferentes beneficios según si estás en EE.UU. o en el extranjero.

Beneficio de Salud y Bienestar

Nos importa tu bienestar. Cada miembro del equipo recibe $50 al mes para salud y bienestar, ya sea para fitness, mindfulness o autocuidado.

Aprendizaje Continuo

Creemos en crecer siempre. Por eso proporcionamos $50 al mes para educación: cursos en línea, libros o talleres para mantener tus habilidades al día.

Acceso a Herramientas de Vanguardia

Como parte de nuestra misión, tendrás acceso a las últimas herramientas de IA y tecnología, ayudándote a estar a la vanguardia y hacer tu mejor trabajo.