Senior Security Researcher
Reclaim Security
Description
As a Senior Security Researcher at Reclaim Security, you will turn deep technical insight into real-world exposure remediation. You will explore OS internals, security controls across multiple domains, and live telemetry to discover novel ways to disrupt attackers while keeping businesses running smoothly. Your work will span hands-on research, customer-facing guidance on safe remediation, and close collaboration with engineering to shape the algorithms and AI models that power our platform. This role is ideal for a researcher who loves digging into complex security problems, explaining them clearly to both experts and executives, and seeing their ideas ship in a product used by leading enterprises.
Responsibilities
- Leverage existing security controls in novel ways to disrupt attackers and minimize threats
- Research OS internals, security controls, and deployment platforms to uncover how they work and can be leveraged
- Harness assets’ (users, devices, applications, etc.) behavioral data and telemetry to anticipate productivity risks and fine-tune defenses
Customer Engagement & Thought Leadership
- Lead customer discussions on exposure remediation and guide deployments end-to-
end, communicating both the risk reduction benefits and the safe, low-impact nature of
implementatio - Present findings to both technical and executive stakeholders, with opportunities for conference presentations and industry publications Product Development
Product Development
- Collaborate with engineering to build and refine algorithms that optimizesecurity posture while ensuring safe, business-aware implementation
- Contribute to our threat intelligence pipeline and help refine our AI models for impact prediction
- Research and integrate new security tools and concepts into the Reclaim platform to expand remediation capabilities
Requirements
- Experience: 5+ years in cybersecurity research, threat analysis, or advanced security engineering roles
Technical Skills:
-
- Proficiency in Python
- Experience with query languages (SQL, KQL, or similar security data platforms)
- Security Controls Knowledge: Solid understanding of enterprise security controls and how they are configured, deployed, and bypassed across various domains
- Research Capabilities: Ability to identify novel security problems, dive deep into unfamiliar and complex domains, and quickly turn findings into actionable outcomes
- Ownership & Independence: Strong sense of personal accountability; able to take full ownership of research initiatives and drive them end-to-end—from scoping and investigation through to delivery
- Communication: Excellent written and verbal communication skills, with experience presenting technical findings to diverse audiences
- Collaboration: Proven track record working effectively in cross-functional teams and fast-paced environments
- Deep expertise in one or more of the following security control domains:
- Identity Controls — Entra ID, Okta; MFA, Conditional Access
- Cloud Controls — AWS, Azure, or GCP security; cloud IAM
- Network Controls — firewalls, IDS/IPS; network segmentation and traffic analysi
- Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related technical field
- Hands-on experience with data analysis and machine learning techniques for behavioral prediction
- Familiarity with threat intelligence frameworks (MITRE ATT&CK, Cyber Kill Chain, Diamond Model)
- Previous publications, conference presentations, or open source contributions in cybersecurity