Senior Security Researcher (Cybersecurity)

TL;DR

Senior Security Researcher (Cybersecurity/AI): Analyze malware campaigns and attacker tooling to extract intelligence and inform detection strategies with an accent on threat landscapes and evasion techniques. Focus on developing YARA rules, AI-powered capabilities, and pipelines using LLMs to scale analysis and enhance detection quality.

Location: Hybrid in Zagreb, Croatia; on-site, hybrid, and remote work options (paid accommodation and transportation to Zagreb during onboarding for remote employees)

Company

Global provider of software supply chain security and threat intelligence solutions with a Croatian R&D center serving Fortune 500 and government clients.

What you will do

• Analyze malware and attacker tools to extract actionable intelligence and shape detection strategies.
• Track emerging threats, vulnerabilities, and techniques; translate into detection improvements and threat reports.
• Research and develop new detection methods including YARA rules and AI-assisted tools.
• Investigate evasion techniques and contribute to anti-evasion controls in the analysis pipeline.
• Evaluate open-source and third-party tools for platform integration.
• Build AI capabilities to automate workflows, scale expertise, and augment detection with LLMs and models.

Requirements

• 6–8 years in cybersecurity with strong malware analysis and threat research foundation.
• Hands-on static/dynamic analysis using IDA Pro, OllyDbg, Wireshark, YARA.
• Understanding of network protocols, OS internals, attacker tradecraft.
• Programming proficiency in Python; C/C++ or Assembly a plus.
• Experience with virtualization, sandboxing, automated analysis.
• Self-directed research, clear communication, analytical problem-solving.
• Bachelor's in Computer Science/Cybersecurity or equivalent; certifications like OSCP, GREM, CISSP desirable.

Nice to have

• Familiarity with LLMs in security (text analysis, code understanding, automation).
• Experience with automation frameworks, LLM workflows, prompt engineering, RAG, fine-tuning.
• AI-assisted detection or ML classifiers in security products.

Culture & Benefits

• Flexible working hours and work options (on-site, hybrid, remote).
• Generous compensation, performance bonuses, permanent contract.
• Career growth with clear goals and internal promotions.
• Multisport card, annual health checkup, newborn allowance, rent support, pension benefits.
• Wellness Weekends (quarterly company-wide three-day weekends).
• Fully covered car garage, company library, employee referral bonuses.