Principal Security Researcher

🕒 March 24

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

watchTowr

WebsiteLinkedInAll Job Openings

51 - 200 employees

Founded 2021

🔒 Cybersecurity

🤝 B2B

💰 $19M Series A - watchTowr on 2024-10

Cybersecurity • B2B

watchTowr is a high-growth cybersecurity company that builds solutions and services to help protect large enterprises. The company presents itself as enterprise-focused and hires globally (Singapore, UK, US), offering employee benefits like private health insurance and an ESOP. Its careers and privacy/cookie notices indicate an emphasis on security, compliance, and enterprise-grade protection for customers.

📋 Description

• You will spend your days hacking - or professionally put, “looking for innovative, high-impact vulnerabilities in numerous organisations to fuel our engine”. • No scope, no time restrictions, no limitations. • You will be focused on looking for the vulnerabilities that matter — high-impact weaknesses that would have a material impact on our clients. • Collaborate with other seasoned offensive experts to brainstorm new TTPs and expand our capability to compromise modern infrastructure. • Conduct cutting-edge offensive research into new attack vectors across cloud, SaaS, modern web stacks, and Internet-exposed infrastructure. • Work alongside Red Team Engineers to operationalise your discoveries at scale — no need to repeat work when we can build and automate. • If your dream is to speak at conferences and present your research to the world - we will support you to make it happen!

🎯 Requirements

• 5 or more equivalent real-world years of experience • Strong hands-on red teaming or offensive security experience targeting real-world, modern infrastructure • A clear understanding of how to compromise organisations without known CVEs • Ability to look at entire organisation for weaknesses - unclear scopes, thinking outside of the box is your game. • Basic scripting proficiency (e.g., Python, Go) to automate testing, discovery, or exploit development. • Hold industry-recognised certifications like CCSAS, CCT, CRT, or OSCP or equivalent real-world skills. • Driven by your own passion and initiative - you understand the mission, and don’t need someone to guide you.

🏖️ Benefits

• Competitive compensation • Meaningful role in a company • The best tools and powerful kit • Endless opportunities • Work with cyber security experts