research
Posted Dec 23, 2025Threat Researcher
at Socket
United StatesRemote
Responsibilities
- - Design and build automated scripts and tools to streamline malware analysis, enhancing our data collection, threat analysis, and threat hunting workflows.
- - Track APT (Advanced Persistent Threat) adversaries, characterizing various TTPs (Tactics, Techniques, and Procedures), capabilities, infrastructure, and campaigns.
Requirements
- In this role, you’ll tackle cutting-edge threats in the software supply chain, leveraging our proprietary AI-based scanner and building tools to enhance malware analysis.
- - Leverage expertise in open source software ecosystems to enhance security across package registries, browser extensions (Chrome/VS Code), and proactively monitor GitHub/GitLab for emerging malicious campaigns.
- experience and a master’s degree in computer science, engineering, or a related field (or equivalent experience). - Technical
- experience across several areas of security operations, including investigations, incident response and management, digital forensics, malware analysis, reverse engineering, threat intelligence, threat hunting, and detection engineering. - Excellent communication skills and the ability to assess the relevance and impact of threats. -
- Preferred: - Familiarity with TypeScript/JavaScript and/or other programming languages and ecosystems protected by Socket. -
- Experience leveraging LLMs or AI-based tools for threat detection.
- Feel a strong sense of ownership: We wear many hats and feel a strong sense of overall ownership of the company and we're non-territorial regarding our nominal domains. 6.
Experience
- What You'll Bring Required: - 3+ years of work
Benefits
- We offer: - Market competitive salary bands - Meaningful equity program - Comprehensive health
- benefits for you and your family (99% coverage) - Flexible time-off, holidays, and winter shutdown to rest & recharge - Paid parental leave - Remote-first, with quarterly team off-sites At Socket, we 1.