The Research team at HUMAN takes on the immense challenge of identifying and stopping malicious activity across vast streams of traffic. By crafting innovative solutions, we empower our products to make trillions of decisions every day with unparalleled precision. Our work directly impacts the safety of the internet and ensures that HUMAN remains the best-in-class solution for our customers, standing strong against the ever-evolving tactics of attackers.

We’re looking for a Senior Web Security Researcher to be part of a team of highly skilled professionals that include security researchers, data researchers, data scientists and software engineers who continuously hunt for threats, evaluate and develop new detection techniques, and share intel and attribution for cybercrime activity with the goal of protecting our customers while keeping the internet human.

What you’ll do:

• Play a lot with the web-browsers, trying to find differences in behavior between them.
• Research and develop signal collection on both mobile and desktop, which enables detection and improve our protection
• Find ways to detect automation, for example, tools like Selenium, Playwright or Puppeteer.
• Understand customer specific requirements, deliver with impact and exceed customer expectations.
• Discover adversary tactics, techniques, and procedures leveraged by bots.
• Create and validate data insights to enhance detection excellence.
• Share security research topics through blogs, research talks, knowledge base and external engagements including conference presentations, detailing your discoveries for internal and external sharing.
• Find bad stuff on the internet, see if you can figure out how it is done, document it.
• Red team, experiment, and develop new tactics for various kinds of fraud and to bypass our detection, no need to wait for an attack to be discovered and used by adversaries first.
• Stay abreast of cyber security trends and events related to our mission.
• Contribute high impact work that substantially benefits team level metrics and OKRs.
• Develop techniques, tools and scripts to simplify yours and others work.

Who you are:

• http://B.sc in computer science or equivalent experience (technological unit alumni etc.)
• Expertise in web architecture and protocols (DOM, Javascript, HTTP/HTTPS, IPv4/v6 etc.)
• Understanding of the cybersecurity threat landscape.
• 3 years+ of proven Cyber Security Research experience.
• Good English (Reading and Writing).
• Proven experience in scripting languages (Python and JavaScript).
• Decent experience in data analysis and relevant languages (SQL, Python).
• Motivated, independent, and passionate about finding the bad guys.
• Ability to motivate and lead those around you by your own contribution, professionalism, and teamwork.
Nice to have:
• Hands-on experience with data analysis of large and complex data sets (data manipulation, statistical analysis, Conclusions, etc.) – Great advantage.
• Experience with threats created by bots / Creating automated web-related tools.
• Reversing capabilities.
• Experience with publishing technical blogs/speaking at conferences.