CrawlJobs Logo

Senior Security Researcher

India, Bangalore · Job Posted April 01, 2026
Apply Position
Job Link Share

Job Description

Join a team that’s pushing the frontier of modern security research by combining deep attacker‑centric analysis with AI‑augmented, agentic investigation systems. We’re evolving security research beyond purely manual, expert‑driven workflows—amplifying researcher intuition with automation that scales discovery, accelerates investigations, and raises consistency across the board. You’ll work on real‑world threats end‑to‑end: dissecting novel attacker techniques, developing detections grounded in adversary behavior, and shaping automated investigation pipelines that turn raw telemetry into actionable insights. A key focus area is Linux and macOS security, where you’ll help close long‑standing visibility gaps and surface emerging attack patterns that traditional approaches miss. Your research will directly power AI‑driven campaign discovery and proactive threat hunting, enabling continuous monitoring for new attack classes and faster recognition of evolving adversary tradecraft. You’ll collaborate closely with engineering, applied ML, and product partners to translate research findings into production‑grade protections—ensuring that cutting‑edge research rapidly becomes real customer impact. If you’re excited about doing deep technical research with outsized, at‑scale impact, and shaping how the next generation of security investigations are conducted, this team offers a rare opportunity to influence both the art and the system of modern security research.

Job Responsibility

  • Lead in‑depth investigations of real‑world attacker campaigns, malware, and post‑exploitation techniques across endpoint environments, with emphasis on Linux and macOS platforms
  • Decompose attack chains, map techniques to MITRE ATT&CK, and maintain high‑fidelity adversary and TTP dossiers that inform protection strategy
  • Identify emerging attack classes, tradecraft shifts, and detection gaps before they are widely exploited
  • Design and prototype behavior‑based detections, heuristics, and research‑grade signals that can be operationalized into production protections
  • Partner with engineering and applied ML teams to translate research findings into scalable, reliable detections with clear acceptance criteria and performance trade‑offs
  • Evaluate detection efficacy using offline and online telemetry and continuously refine based on real‑world attacker behavior
  • Contribute to the design of AI‑assisted and agentic investigation pipelines that automate repetitive analysis steps and amplify researcher productivity
  • Shape how attacker techniques, evidence, and hypotheses are represented in systems that enable campaign discovery and proactive hunting at scale
  • Ensure research outputs are structured, explainable, and safe for use in automated or semi‑automated workflows
  • Act as a senior escalation point for complex security incidents, providing expert guidance on attacker behavior, containment strategies, and long‑term mitigation
  • Lead post‑incident analysis and root‑cause investigations, converting learnings into durable detection and tooling improvements
  • Work closely with security engineering, product management, and data science partners to influence roadmap priorities using evidence‑backed research insights
  • Represent security research perspectives in design reviews, detection cutlines, and protection readiness discussions
  • Contribute to internal knowledge‑sharing through technical write‑ups, reviews, and mentoring of junior researchers

Requirements

  • 7+ years of hands‑on experience in security research, threat analysis, malware analysis, or detection engineering, with demonstrated depth in endpoint security
  • Strong understanding of attacker tradecraft, including persistence, privilege escalation, lateral movement, and defense evasion techniques
  • Proven experience conducting research on Linux and/or macOS internals, endpoint telemetry, or OS‑level attack surfaces
  • Proficiency in at least one scripting or systems language (e.g., Python, C/C++, Go, Rust) used for analysis, tooling, or prototyping
  • Demonstrated ability to independently drive ambiguous, open‑ended investigations from hypothesis to actionable outcome
  • Strong analytical skills for correlating noisy telemetry into attacker‑relevant signals
  • Experience translating deep technical findings into clear, decision‑ready insights for engineering and leadership audiences
  • Proven ability to collaborate effectively across research, engineering, and product teams
  • Experience mentoring or technically leading other researchers without formal people management responsibilities
  • High bar for research quality, operational security, and responsible handling of sensitive techniques and data

Nice to have

  • Experience operationalizing research into production detections or large‑scale protection systems
  • Familiarity with AI‑assisted analysis, automation, or agent‑based systems in security workflows
  • Prior contributions to security blogs, tools, open‑source projects, or industry research publications
  • Experience participating in or supporting external evaluations (e.g., MITRE ATT&CK, red team exercises)

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior Security Researcher

8 matching positions

New

Senior Security Researcher

Microsoft Security aspires to make the world a safer place for all. We empower e...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • B.Sc./M.Sc. degree in Computer Science or related technical discipline
  • 6+ years of experience in cyber security with a background in the modern attacker kill-chain and MITRE ATT&CK, preferably in identity-based threat scenarios
  • Windows internals knowledge, along with good working knowledge of the main identity protocols (e.g., Kerberos, NTLM, LDAP, OAuth 2.0, SAML)
  • Good knowledge in at least one programming language such as C# (preferred), Python, or C++
  • Good knowledge in at least one language such as KQL, SQL, or Cypher
  • Demonstrated fluency leveraging Generative AI tools (e.g., GitHub Copilot, Security Copilot, ChatGPT/Claude, or equivalent LLM-based workflows) to scale day-to-day research work
  • Excellent cross-group, leadership, and interpersonal skills
  • A drive to tackle hard problems with notable levels of ambiguity
  • Ability to meet Microsoft, customer, and/or government security screening requirements are required for this role, including Microsoft Cloud Background Check upon hire/transfer and every two years thereafter
Job Responsibility
Job Responsibility
  • Own end-to-end large research projects that deliver identity protection against the most prevalent threats in the landscape
  • Conduct in-depth investigation and research of data across multiple identity and additional sources to identify threats and sophisticated attack incidents
  • Keep up to date with the latest trends in cyber-attacks and create robust, sophisticated detection logics across the entire kill-chain
  • Collaborate with product management, security, and engineering teams across the company to design innovative solutions and new identity protection capabilities
  • Collaborate with data science teams to understand, identify, and implement detection gaps, capabilities, assumptions, and improvements
  • Leverage Generative AI tooling to scale research throughput
  • Demonstrate thought leadership and engage and enlighten others through compelling, meaningful content and informative sessions
  • Fulltime
Read More
Arrow Right

Senior Security Researcher

This role focuses on advancing state-of-the-art vulnerability research through a...
Location
Location
South Korea , Seoul
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven expertise in vulnerability research, including identifying, analyzing, and validating complex software vulnerabilities
  • Strong systems background (e.g., OS internals, compilers, networking, or distributed systems)
  • Experience with exploit development and proof-of-concept validation
  • Demonstrated experience building or applying AI/ML techniques to security problems (e.g., bug finding, program analysis, fuzzing)
  • Ability to design and implement scalable security analysis systems or pipelines
  • Strong programming skills (e.g., C/C++, Python, Rust, or similar)
  • Track record of impactful security contributions (e.g., CVEs, research publications, or production systems)
  • Ability to translate research ideas into practical tools or product-ready capabilities
  • Strong collaboration and leadership skills, including mentoring and cross-team influence
Job Responsibility
Job Responsibility
  • Leads advanced vulnerability research across diverse software systems
  • Designs and develops scalable security analysis methodologies
  • Drives systematic identification, validation, and root-cause understanding of vulnerabilities
  • Shapes research direction and technical strategy for the team
  • Mentors engineers and elevates overall technical rigor
  • Translates research findings into real-world security impact across Microsoft and open-source ecosystems
  • Develops AI-powered systems for automated bug discovery and validation
  • Improves precision, coverage, and reliability of vulnerability detection
  • Drives exploit generation and proof-of-concept (PoC) validation
  • Ensures findings are actionable, reproducible, and security-impacting
  • Fulltime
Read More
Arrow Right

Senior Security Researcher

1Password is growing. We’ve surpassed $400M in ARR and we’re continuing to accel...
Location
Location
United States; Canada
Salary
Salary:
153000.00 - 214000.00 USD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of progressive experience in security research, offensive security, or vulnerability research
  • Education: Bachelor’s degree in Computer Science, Computer Engineering, Information Security, or a related field
  • or equivalent practical experience
  • Security research experience: Proven track record of discovering and responsibly disclosing original vulnerabilities, ideally with published CVEs, advisories, or equivalent publicly-recognized findings
  • Offensive security experience: A track record of hands-on experience in vulnerability research, exploit development, or advanced adversarial simulation techniques
  • Sufficient domain experience in two or more of the following domains: application security, Linux system internals, Windows system internals, macOS system internals, AI/Agentic security, Web application security, or Mobile application security
  • AI security experience: Familiarity with prompt injection, data poisoning, AI design architecture, AI-based attacks, and related vectors
  • Software engineering proficiency: Proficiency in one or more programming languages such as Go, Rust, Python, Ruby, JavaScript/TypeScript, or equivalent modern languages, with the ability to read and audit code for vulnerabilities
  • Integrity and ethical rigor: Consistent history of handling vulnerabilities and disclosures responsibly while engaging constructively with vendors and the research community
  • Demonstrable written and verbal communication skills, with a track record of producing technical publications, blog posts, and/or conference talks that clearly convey complex security topics
Job Responsibility
Job Responsibility
  • Vulnerability Research: Conduct original, hands-on research into application-level, protocol-level, and ecosystem-level vulnerabilities in 1Password’s products and the broader identity security landscape
  • You will discover, validate, and document novel vulnerability classes and attack chains
  • Demonstrate Exploitability: Collaborate with peers to develop proof-of-concept exploits and attack demonstrations that validate research findings, illustrate real-world risk, and support engineering teams in understanding and prioritizing remediation efforts
  • AI & Agentic Security Research: Investigate security risks at the intersection of AI and identity, including prompt injection, data poisoning, and other AI-based attack vectors
  • Your work will address the emerging challenges of agentic security at the interaction between privileged access management (PAM) and AI systems
  • Technical Publications & Thought Leadership: Author high-quality research publications, white papers, blog posts, and technical advisories
  • You will have the opportunity to present findings on podcasts, webinars, and at major security conferences that contribute to 1Password’s reputation as a thought leader in identity security
  • Community Engagement: Engage actively with the global security research community through responsible disclosure, collaborative research, open-source contributions, and participation in industry forums/events
  • Cross-functional Collaboration: Partner with Product, Engineering, and Detection teams to translate research findings into actionable security improvements. Provide evidence-based technical guidance that informs product direction and security strategy
What we offer
What we offer
  • Maternity and parental leave top-up programs
  • Competitive health benefits
  • Generous PTO policy
  • RSU program for most employees
  • Retirement matching program
  • Free 1Password account
  • Paid volunteer days
  • Peer-to-peer recognition through Bonusly
  • Remote-first work environment
  • Fulltime
Read More
Arrow Right

Senior Security Researcher

Security is one of the most critical priorities for our customers in a world of ...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field
  • OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Must pass Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter
Job Responsibility
Job Responsibility
  • Design and execute adversary simulations that emulate real-world threat actors across endpoint, identity, cloud, and SaaS environments
  • Develop and modify offensive tooling, including custom payloads, loaders, and command-and-control (C2) frameworks
  • Conduct malware development and tradecraft research to replicate modern attacker techniques such as evasion, persistence, and lateral movement
  • Leverage threat intelligence to inform adversary emulation scenarios, including campaign design, TTP selection, and operational sequencing
  • Apply threat modeling frameworks such as MITRE ATT&CK to emulate realistic attack paths and identify defensive gaps
  • Utilize AI-enabled and agentic systems to generate attack variations, automate tradecraft execution, and scale simulation coverage
  • Partner with blue team and detection engineering teams to validate detections and improve defensive capabilities
  • Analyze telemetry generated from simulations to assess detection coverage and identify opportunities for improvement
  • Contribute to simulation reports, technical documentation, and internal knowledge sharing
  • Collaborate across teams to improve offensive tooling, methodologies, and research practices
  • Fulltime
Read More
Arrow Right

Senior Security Researcher

Security is one of the most critical priorities for our customers in a world of ...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field
  • OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Microsoft Cloud Background Check
Job Responsibility
Job Responsibility
  • Design and execute adversary simulations that emulate real-world threat actors across endpoint, identity, cloud, and SaaS environments
  • Develop and modify offensive tooling, including custom payloads, loaders, and command-and-control (C2) frameworks
  • Conduct malware development and tradecraft research to replicate modern attacker techniques such as evasion, persistence, and lateral movement
  • Leverage threat intelligence to inform adversary emulation scenarios, including campaign design, TTP selection, and operational sequencing
  • Apply threat modeling frameworks such as MITRE ATT&CK to emulate realistic attack paths and identify defensive gaps
  • Utilize AI-enabled and agentic systems to generate attack variations, automate tradecraft execution, and scale simulation coverage
  • Partner with blue team and detection engineering teams to validate detections and improve defensive capabilities
  • Analyze telemetry generated from simulations to assess detection coverage and identify opportunities for improvement
  • Contribute to simulation reports, technical documentation, and internal knowledge sharing
  • Collaborate across teams to improve offensive tooling, methodologies, and research practices
  • Fulltime
Read More
Arrow Right

Senior Security Researcher

Security remains a critical priority for our customers as they navigate growing ...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 258000.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter
  • This position requires verification of U.S. citizenship due to citizenship‑based legal restrictions
Job Responsibility
Job Responsibility
  • Explore and correlate large data sets to uncover novel and sophisticated attack techniques, monitor and catalog changes in activity group tradecraft, and generate custom alerts for enterprise customers
  • Work with customer support teams to support investigation and response during an enterprise's time of need
  • Collaborate with our data science and threat research teams to develop and maintain accurate and durable cloud-based detections
  • Build hunting tools and automations for use in the discovery of human adversaries
What we offer
What we offer
  • Benefits and other compensation
  • Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay
  • Fulltime
Read More
Arrow Right

Senior Security Researcher

We are Cloud Threat protection Research team within Microsoft Threat Protection,...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in cybersecurity, with strong hands-on understanding of the modern attacker kill chain, MITRE ATT&CK framework, and evolving cloud-based threats, including attacks targeting Enterprise Apps, and emerging AI-driven applications
  • Proven experience securing cloud and containerized environments, with hands‑on knowledge of Azure, AWS, and/or GCP, and technologies such as Kubernetes, container platforms, Storage, Key Vault, DNS and cloud services
  • Deep knowledge of adversary tooling, red team frameworks, and attacker techniques, with the ability to analyze, simulate, and interpret real-world attacker behaviors across cloud ecosystems
  • Proficiency in at least one programming language (e.g., Python, C, or C++) for building research prototypes, internal tools, automation, or detection logic
  • Strong proficiency in query languages such as KQL, SQL, or Cypher for large-scale telemetry analysis, threat hunting, behavioral investigations, and detection validation
  • Experience working with large-scale datasets to support detection development, proactive threat hunting, behavioral analytics, and signal quality improvement
  • Strong collaboration and communication skills, with the ability to clearly articulate research insights, influence product and engineering decisions, and work effectively with partner teams, including Engineering, Data Science, and incident response stakeholders
  • Bachelor’s or Master’s degree in Computer Science, Engineering, or a related technical discipline, or equivalent practical experience in security research or threat detection
Job Responsibility
Job Responsibility
  • Research real‑world hybrid threats across cloud services, end point, identity and AI systems
  • Analyze live attacker behavior and production incidents to build high‑signal detections
  • Design multi‑cloud and enterprise protections that ship in Microsoft Defender
  • Collaborate closely with product, engineering, and global research teams to turn ideas into impact
  • Partner with strong in‑house AI teams to advance AI security, detection quality, and explainability
  • Build innovative tools, automation, and research prototypes at global scale
  • Operate in a high‑trust, ownership‑driven team culture that values technical depth and innovation
  • Fulltime
Read More
Arrow Right

Senior Security Researcher

The Defender Experts (DEX) Research team is at the forefront of Microsoft’s thre...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in security research, detection engineering, threat lifecycle, cloud security in large-scale in complex cloud environments, as well as disciplines related to managed services for EDR and SIEM platforms
  • Proven ability to lead and execute advanced research on emerging cloud-based threats affecting both Microsoft and third-party security products across heterogeneous cloud environments
  • Demonstrated expertise in developing and refining detection and response strategies leveraging major EDR and SIEM platforms, with a strong emphasis on Microsoft Defender and Sentinel, to provide comprehensive threat coverage and response capabilities
  • Extensive hands-on experience with cloud platforms—including, but not limited to, Azure—as well as a deep understanding of multi-cloud security challenges and solutions
  • Strong practical experience identifying, analyzing, and mitigating real-world cyber threats in complex cloud environments
  • Proven ability to work independently and deliver complete solutions
  • Demonstrated capability to effectively articulate technical insights and influence multidisciplinary teams
Job Responsibility
Job Responsibility
  • Lead and execute advanced research on emerging endpoint, identity and cloud-based threats impacting Microsoft and third-party security products across heterogeneous cloud environments
  • Develop and refine detection and response strategies leveraging major EDR and SIEM platforms, with a strong emphasis on Microsoft Defender and Sentinel, to provide comprehensive threat coverage and response capabilities
  • Collaborate with internal and external security teams to design and implement scalable, innovative solutions for multi-cloud threat intelligence, detection, mitigation and response
  • Translate complex raw security data into actionable intelligence that enhances the effectiveness of cloud security operations for a global customer base
  • Mentor, guide, and drive best practices among researchers and detection engineers on advanced threat hunting and incident response across diverse SIEM ecosystems
  • Contribute to industry knowledge and Microsoft’s security posture by publishing research, developing threat models, and proactively identifying threats and attack trends in the cloud
  • Fulltime
Read More
Arrow Right