Skip to content
SocketSocketUnited States

Threat Analyst

Analyzes software supply chain threats using AI scanners, conducts malware analysis and threat hunting, builds automation tools, and integrates research into products to protect open source ecosystems. Requires 3+ years in security operations and master's degree.

126k – 170k
Remote3+ YOESecurity Engineering

About the role

What You'll Do

  • Analyze numerous unique threats daily, maintaining a standard of quality that sets the industry benchmark for supply chain security.
  • Author high-impact technical blog posts on malicious open source code packages and extensions, and publish deep-dive research pieces on malicious campaigns, threat actor profiles, novel attack vectors, and ecosystem-wide trends.
  • Design and build automated scripts and tools to streamline malware analysis, enhancing our data collection, threat analysis, and threat hunting workflows.
  • Partner with our engineering team to integrate your research into our core product, turning manual insights into scalable, real-time protection.
  • Leverage expertise in open source software ecosystems to enhance security across package registries, browser extensions (Chrome/VS Code), and proactively monitor GitHub/GitLab for emerging malicious campaigns.
  • Track APT (Advanced Persistent Threat) adversaries, characterizing various TTPs (Tactics, Techniques, and Procedures), capabilities, infrastructure, and campaigns.

What You'll Bring

Required:

  • 3+ years of work experience and a master’s degree in computer science, engineering, or a related field (or equivalent experience).
  • Technical experience across several areas of security operations, including investigations, incident response and management, digital forensics, malware analysis, reverse engineering, threat intelligence, threat hunting, and detection engineering.
  • Excellent communication skills and the ability to assess the relevance and impact of threats.
  • Experience building tools for automation, data collection, and threat hunting.
  • Passion for open source and code.

Preferred:

  • Familiarity with TypeScript/JavaScript and/or other programming languages and ecosystems protected by Socket.
  • Experience leveraging LLMs or AI-based tools for threat detection.

Benefits

  • Market competitive salary bands
  • Meaningful equity program
  • Comprehensive health benefits for you and your family
  • Flexible time-off, holidays, and winter shutdown to rest & recharge
  • Paid parental leave
  • Remote-first, with quarterly team off-sites

Skills

Malware AnalysisReverse EngineeringThreat IntelligenceThreat HuntingDigital ForensicsIncident ResponseDetection EngineeringTypeScriptJavaScriptLLMsAi-Based ToolsAutomation ScriptingGitHubGitLab
Applied Intuition

Cloud Security Engineer

Applied IntuitionSunnyvale, CA

Secures multi-cloud infrastructure (AWS, Azure, GCP, OCI) with emphasis on Kubernetes hardening, IAM enforcement, CSPM using Wiz, and IaC security. Requires 5+ years experience, deep AWS and Kubernetes security expertise.

125k – 160k
On-site5+ YOESecurity Engineering
Applied Intuition

Product Security Engineer

Applied IntuitionSunnyvale, CA

Embeds security into product design and development lifecycle by analyzing architectures, conducting threat modeling and assessments, maturing vulnerability management, and guiding developers on secure practices. Requires 5+ years in product/application security with expertise in cloud, containers, and automation tools.

125k – 160k
On-site5+ YOESecurity Engineering
Trail of Bits

Security Engineer, Research & Engineering

Trail of BitsUnited States

Designs and builds security tools and frameworks in Rust, C++, Python for AI/ML, compilers, and low-level systems. Contributes to open-source, performs code reviews, and communicates findings via blogs and presentations.

125k – 185k
RemoteSecurity Engineering
Pinterest

Security Software Engineer II, Detection and Response

PinterestSan Francisco, CA

Build and improve detection alerts, automation, logging pipelines, and internal tooling to identify and respond to security threats at Pinterest. Requires strong incident response, SIEM, threat hunting, and scripting skills in cloud environments, plus demonstrated responsible use of AI.

124k – 255k
Remote5+ YOESecurity Engineering
NinjaTrader

GRC Engineer

NinjaTraderChicago, IL

Mid-level GRC Engineer building automation and tooling to scale compliance for SOC 2, ISO 27001, and SOX. Hands-on role combining scripting, audit coordination, risk management, and cross-functional partnership with engineering teams.

130k – 145k
Hybrid3+ YOESecurity Engineering