Cybersecurity Researcher

🕒 December 12, 2025

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Safety Cybersecurity

WebsiteLinkedInAll Job Openings

11 - 50 employees

Founded 2017

🔒 Cybersecurity

☁️ SaaS

Cybersecurity • Software • SaaS

Safety CLI Cybersecurity is a leading provider of software supply chain security solutions designed specifically for Python development. They offer a comprehensive suite of products including vulnerability scanning, a threat analysis platform, and security management tools that enable organizations to secure their software ecosystems against malicious and vulnerable packages. By leveraging an extensive database of vulnerabilities, Safety CLI provides actionable recommendations to enhance the security of software development processes, ensuring that developers can leverage open-source software securely from development through deployment.

📋 Description

• Hunt Malicious Packages: Analyze suspicious packages across PyPI, npm, and Maven in real-time, developing detection rules that protect customers before threats reach production • Enrich Vulnerability Data: Review and validate vulnerabilities, adding reachability analysis and context that makes Safety's database more accurate than baseline sources like OSV • Reduce False Positives: Refine our own tooling and the detection logic by analyzing flagged packages, documenting patterns, and optimizing rules to improve customer trust • Build AI-Driven Detection Systems: Collaborate with data engineers to develop LLM-assisted analysis tools and automated detection processes that scale to 70,000+ daily package releases • Drive Research Innovation: Experiment with AI-powered techniques for vulnerability detection, changelog analysis, and threat identification to stay ahead of emerging attacks • Ship with Velocity: Embrace fast-paced iteration, deliver detection improvements quickly, refine based on customer feedback, and see your work protect thousands of developers and environments within days • Establish Thought Leadership: Contribute original research through blog posts and conference presentations that position Safety as an industry leader in supply chain security

🎯 Requirements

• multi-year experience in cybersecurity research with hands-on experience investigating both accidental vulnerabilities and intentionally malicious components in software supply chains • Deep understanding of package ecosystems (PyPI, npm, Maven) including how they work, common attack vectors, and vulnerability patterns, with programming ability in Python, Java, or JavaScript • Experience using LLMs (GPT, Claude, Copilot) for security research, code analysis, or threat detection. Comfortable experimenting with prompts and integrating AI into research workflows • Track record of building or improving automated security detection systems, including writing rules, reducing false positives, and scaling analysis to large datasets • Comfortable working in fast-paced environments where research ships to production quickly, with strong communication skills for remote team collaboration • Passionate about protecting the open-source ecosystem and staying ahead of emerging threats in supply chain security • Experience building or contributing to security tools, malware analysis frameworks, or threat intelligence platforms (Bonus) • Background in static analysis, dynamic analysis, or software composition analysis (Bonus) • Published security research, CVE discoveries, or conference presentations (Bonus) • Contributions to open-source security projects or vulnerability databases (Bonus) • Experience with data engineering pipelines or working closely with ML/data teams (Bonus)

🏖️ Benefits

• Competitive salary: 120,000 CAD - 150,000 CAD (depending on experience) • 20 days paid vacation per year • Private Healthcare Plan • Generous equity stock options to share in our success • Ability to work remotely and thrive in an adaptable, inclusive environment • Flexible working hours, providing responsibilities are effectively managed