所有职位

Security Researcher (Junior)

RemoteFull TimeFluent in English

Reports to: Director of Security & Compliance

You're the person who, when an antivirus flags a file, doesn't just accept it. You want to know which signature fired, why, and whether it's right. You've poked at how networks get classified, maybe run a home lab, and you're more interested in how detection actually works than in collecting certs.

We're looking for someone early in their career who wants to go deep, fast. You'll wear several hats reporting to the Director of Security & Compliance: keeping our software in good standing with the AV ecosystem, researching how our network is detected (both sides of that game), and helping harden our own house. We'll teach you the rest.

职责

  • AV / AMTSO liaison. Monitor how security vendors classify our software, file and track false-positive disputes, pursue allowlisting, and engage AMTSO processes. Keep code-signing reputation healthy.
  • Proxy detection research, offensive and defensive. Study how detection vendors classify residential proxy traffic, reproduce their methods, and recommend hardening. Understand both how detection works and how to stay legitimate.
  • Internal security hardening. Assist with vulnerability management, configuration hardening, and secure-by-default practices across our infrastructure.
  • Abuse / threat triage. Help investigate abuse signals and turn them into detections or policy.
  • Document findings clearly and build small scripts and tools to make the above repeatable.

要求

  • 0-2 years of experience. Internships, home labs, CTFs, and personal projects count.
  • Solid networking fundamentals: TCP/IP, DNS, HTTP/TLS, and a basic grasp of IP reputation and ASNs.
  • Scripting ability, Python preferred. You can automate a repetitive task without hand-holding.
  • An adversarial, curious mindset. You ask "how would I detect this?" and "how would I get around it?" in the same breath.
  • Professional enough to represent us to AV vendors and standards bodies in writing.
  • Bonus: Familiarity with AV / EDR detection, false positives, or code signing.
  • Bonus: Knowledge of the proxy / VPN ecosystem or IP fingerprinting.
  • Bonus: OSINT experience or a home lab you can talk about.

为什么加入 Massive?

完全远程

在你想工作的地方工作效率最高。我们支持完全远程团队,让你可以在最适合自己的地方生活和工作。

居家办公补贴

作为一个完全远程的团队,我们希望确保你的居家办公环境舒适。我们提供 500 美元的居家办公补贴来升级你的工作空间!

无限假期

休息你需要的时间:放松、休息和恢复!我们希望团队以最佳状态工作,所以请休你需要的假。

医疗保险

我们的团队是最宝贵的资源,因此我们尽力为所有团队成员提供医疗保险。我们根据您在美国还是国际地区提供不同的福利。

健康与保健福利

我们关心你的身心健康。每位团队成员每月可获得 50 美元的健康和保健补贴,无论是健身、冥想还是自我护理。

持续学习

我们相信不断成长。因此我们每月提供 50 美元的教育补贴——在线课程、书籍或研讨会,让你的技能保持敏锐。

使用前沿工具

作为我们使命的一部分,你将可以使用最新的 AI 和技术工具,帮助你保持领先并做出最好的工作。

准备好加入团队了吗?

立即申请