Senior Security Researcher (Phishing)

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Senior Security Researcher (Phishing) based in the United States.

This role sits at the forefront of cyber threat intelligence, focused on identifying, analyzing, and disrupting phishing-as-a-service ecosystems and broader criminal infrastructure. You will play a critical role in recapturing threat data and transforming it into actionable intelligence that strengthens defenses against large-scale cyberattacks. The position blends hands-on technical investigation with analytical research and strategic insight generation. You will collaborate across security, data, and intelligence teams to scale data collection pipelines and improve threat detection capabilities. A strong emphasis is placed on understanding adversary behavior, including social engineering and underground ecosystem dynamics. This is a high-impact opportunity to directly contribute to dismantling cybercriminal operations and protecting millions of users worldwide.

• Conduct advanced data collection efforts to locate, target, and recapture data from phishing-as-a-service (PhaaS) kits using intelligence-driven and platform-based sourcing techniques.
• Analyze and assess large-scale datasets to evaluate data quality, improve sourcing accuracy, and optimize threat intelligence pipelines.
• Perform human intelligence activities, including persona management, controlled engagements, and adversary interaction to support data recapture efforts.
• Investigate phishing infrastructure, threat actor behavior, and underground ecosystems to support ongoing security research initiatives.
• Contribute to the creation of research reports, blogs, and analytical outputs that translate findings into actionable security intelligence.
• Collaborate with engineering and data teams to build and improve scalable systems for automated and manual data collection.
• Apply structured analytical methods to identify patterns, trends, and emerging threats within phishing operations.
• Support continuous improvement of research methodologies, tooling, and intelligence workflows across the organization.
• Share insights with internal and external stakeholders to support customer protection and broader cybersecurity initiatives.

Requirements

• 5+ years of experience in cybersecurity research, threat intelligence, or a related security-focused role.
• Strong understanding of phishing-as-a-service ecosystems, including modern techniques such as AiTM (adversary-in-the-middle) and device code phishing.
• Familiarity with cybercriminal ecosystems, including deep and dark web environments and illicit data marketplaces.
• Experience with human intelligence techniques such as persona development, elicitation, and controlled adversary engagement.
• Strong analytical mindset with the ability to interpret complex datasets and derive actionable insights.
• Excellent written and verbal communication skills, including experience producing technical research or intelligence reports.
• High curiosity, adaptability, and self-direction in fast-evolving threat environments.
• Ability to work effectively in distributed, remote-first teams across multiple time zones.
• Strong collaboration skills and comfort working alongside engineers, analysts, and product teams.
• Passion for cybersecurity and disrupting malicious actors in the digital ecosystem.
• Nice to have: experience with Python, Go, or Rust; database systems; automation of data collection; data science applied to threat detection; or AI/LLM-assisted analysis workflows.

Benefits

• Competitive base salary: $119,000 – $155,000
• 401(k) with employer contribution
• Comprehensive health, dental, and vision insurance
• Health Savings Account (HSA) with employer contribution (where applicable)
• Employer-paid life, short-term, and long-term disability insurance
• Generous paid time off and paid holiday schedule (16 days in the U.S.)
• Flexible and remote-friendly work environment
• Opportunities to work on high-impact cybersecurity research with global reach
• Professional growth within a mission-driven security organization