Senior Security Researcher (AI)

TL;DR

Senior Security Researcher (AI): Conducting deep, original vulnerability research across hirify.global’s product suite and the wider identity ecosystem with an accent on investigating emerging attack vectors and developing proof-of-concept exploits. Focus on addressing emerging challenges of agentic security at the interaction between privileged access management (PAM) and AI systems.

Location: Remote within the United States or Canada. Must work from your home country.

Salary: USA-based roles: $153,000–$214,000 USD annually. Canada-based roles: $144,000–$202,000 CAD annually.

Company

hirify.global is a market-leading product company building foundations for a safe and productive digital future through enterprise password management and Extended Access Management solutions.

What you will do

• Conduct original, hands-on vulnerability research across hirify.global’s products and the broader identity security landscape.
• Develop proof-of-concept exploits and attack demonstrations to validate research findings and support remediation efforts.
• Investigate security risks at the intersection of AI and identity, including prompt injection, data poisoning, and other AI-based attack vectors.
• Author high-quality research publications, white papers, blog posts, and technical advisories.
• Engage actively with the global security research community through responsible disclosure and collaborative research.
• Partner with Product, Engineering, and Detection teams to translate research findings into actionable security improvements.

Requirements

• 4+ years of progressive experience in security research, offensive security, or vulnerability research.
• Proven track record of discovering and responsibly disclosing original vulnerabilities (e.g., published CVEs or advisories).
• Hands-on experience in vulnerability research, exploit development, or advanced adversarial simulation techniques.
• Sufficient domain experience in two or more of: application security, Linux/Windows/macOS system internals, AI/Agentic security, Web/Mobile application security.
• Familiarity with prompt injection, data poisoning, AI design architecture, and AI-based attacks.
• Proficiency in one or more programming languages such as Go, Rust, Python, Ruby, JavaScript/TypeScript for code auditing.

Culture & Benefits

• Remote-first work environment with required travel for in-person engagement.
• Competitive health benefits, generous PTO, and maternity/parental leave top-up programs.
• RSU program, retirement matching program, and a free hirify.global account.
• Emphasis on collaboration, transparent communication, and core values: keep it simple, lead with honesty, and put people first.
• Paid volunteer days and peer-to-peer recognition through Bonusly.