Logo for OX Security

Security Research

Role overview

Qualifications

  • 5+ years of experience as a Cybersecurity Researcher
  • Proven ability to ship software in a production environment
  • Strong understanding of the SDLC and modern CI/CD pipelines
  • Comfortable leveraging AI tools to optimize research and development processes

Responsibilities

  • Build innovative open-source tools to detect and analyze software supply chain attacks
  • Research supply chain attacks and investigate APT groups' tactics, techniques, and procedures
  • Reverse engineer, dissect, and decompile malware and vulnerabilities
  • Drive research and development cycles end-to-end independently

Key facts

  • Remote from: EMEA
  • Full time
  • Senior (5-10 years)
  • 0
  • English

Other skills

  • Public Speaking
  • Problem Solving
  • Collaboration

About the company

OX Security logo

OX Security

Computer Hardware & Networking

OX Security is unifying AppSec practices with its pioneering Active ASPM platform, enabling users to prevent risks by providing visibility and traceability, contextualized prioritization, and automated response throughout the software development lifecycle. The platform goes beyond traditional AppSec solutions, empowering organizations to eliminate manual practices and embrace scalable, secure development.

Company details

Company typeScaleup
IndustryComputer Hardware & Networking
Company size51 - 200

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

Description

Ox Security secures the AI-driven SDLC from prompt to production. We eliminate critical, real-time risks from AI code generation through cloud runtime by doing what conventional tools can’t: unifying development and cloud context to stop vulnerabilities right at the source. At OX, we’re building the future of cyber security for the AI era. If you’re looking to work on disruptive technology with an amazing team, you belong here.

We're looking for a highly skilled and driven Security Researcher to join our research group to analyze supply chain attacks, dissect malware, and build open-source tools. This is a high-impact role where you'll work with cross-functional teams to help scan and protect users and organizations around the world from the hottest cyber threats, playing a key part in shaping the future of OX.


Responsibilities

What You'll Be Doing

  • Build innovative open-source tools to detect and analyze software supply chain attacks, including compromised packages, malicious packages, and package vulnerability exploitation.
  • Research supply chain attacks and investigate APT groups' tactics, techniques, and procedures (TTPs).
  • Reverse engineer, dissect, and decompile malware and vulnerabilities, translating findings into comprehensive whitepapers.
  • Drive research and development cycles end-to-end independently, ensuring high-quality execution from concept to delivery.
  • Collaborate with internal teams and stakeholders to continuously improve our security posture and methodologies


Requirements

What We're Looking For

  • 5+ years of experience as a Cybersecurity Researcher.
  • Proven ability to ship software in a production environment.
  • Strong understanding of the SDLC and modern CI/CD pipelines.
  • Comfortable leveraging AI tools to optimize research and development processes.
  • Familiarity with open-source registry ecosystems ( npm, PyPI, Maven) and their respective attack surfaces.
  • Proactive and independent mindset, with the ability to take full ownership of projects.


Bonus Points For

  • Active contributions to open-source security tools or research projects.
  • Hands-on experience with decompilers, debuggers, and network traffic analysis.
  • Advanced malware analysis experience (including obfuscation, encryption, anti-analysis, and sandbox-evasion techniques).
  • Web application penetration testing experience.
  • Published CVEs, coordinated disclosures, writeups, blogs, or research papers.
  • Experience public speaking at major industry conferences (e.g., Black Hat, DEFCON, RSAC).
  • A genuine passion for cybersecurity, open-source communities, and solving complex ecosystem threats


Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
Β·

Related jobs

Other jobs at OX Security

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.