Technical Marketing Manager AppSec Research and AI Security

Founded in 2012 by 3 expert hackers with no investment capital Trail of Bits is the premier place for security experts to boldly advance security and address technology’s newest and most challenging risks. It has helped secure some of the world's most targeted organizations and devices. Our combination of novel research with practical solutions reduces the security risks that our clients face from emerging technologies. Our work helps drive the security industry and the public understanding of the technology underlying our world.

Cybersecurity preparedness is a moving target. Companies like ours are the tip of the spear in the fight against attackers. Our research-based and custom-engineering approach ensures that our client’s capabilities are at the forefront of what’s available. For companies and technologies that live and die by their security a proactive tailored approach is required to keep one step ahead of attackers.

Democratizing security information is essential. As part of our business we provide ongoing informational support through blogs whitepapers newsletters meetups and open-source tools. The more the community understands security the more they’ll understand why a company like ours is so unique and valuable.

Trail of Bits is looking for a Technical Marketing Manager to run marketing day-to-day for our AppSec AI/ML Security and Research & Engineering practices. This role sits alongside an existing TMM peer who currently covers our Blockchain & Cryptography practice. Together you’ll form the core of Trail of Bits’ marketing execution. You’ll work directly with engineering directors and the broader go-to-market team (including Marketing Technical Editing Project Management and Sales Engineering) to turn security research into effective marketing: blog posts social campaigns event presence case studies and co-marketing with clients.

You’ll coordinate closely with your TMM peer on shared channels joint campaigns and cross-practice coverage so the two of you operate as a cohesive marketing team not two separate functions.

What makes this role distinct is the audience. The security research community reads our blogs uses our open-source tools and attends our talks. They notice when content misses the mark technically. You need to understand the AppSec and/or AI/ML Security ecosystems know where these communities spend their time and bring enough technical fluency that your work holds up to scrutiny.

This is a hands-on role. You’ll own social media events demand generation and content production. You’ll coordinate with our Technical Editing team on content workflows and be ready to pitch in on writing and production when the team needs it. You’ll brief speakers before conferences manage co-marketing efforts with clients and make sure nothing ships without a plan to get it in front of the right people. The right person has good instincts about what matters and what’s urgent but their default mode is doing the work not planning it from a distance.

You’ll have a regular reporting cadence with the Head of GTM and be expected to bring data priorities and blockers not just status updates. Our tech/tool stack will help enable your success providing a range of resources from a recent Macbook to Claude Code access and deep repositories of skills to automate work.

Content & Coverage

• Track engineering output tool releases research papers conference talks milestones — and make sure each gets coverage. Blog post social thread newsletter mention whatever fits.
• Work through the existing backlog of shipped tools and research that never got written up publicly.
• Create case studies briefs blog drafts and marketing assets that work for both technical and business audiences. You’ll be writing not just managing the pipeline.
• Partner with Technical Editing on content pipelines especially around report publications and blog production and provide additional writing capacity when the team needs it.
• Own the content calendar across practices. Coordinate publishing schedules so coverage is steady and nothing falls through the cracks.

Social Media & Events

• Own social media across X LinkedIn and Bluesky. Maintain a consistent publishing cadence engage with the community and grow our audience. This is not a side task — it’s a core part of the job.
• Manage Trail of Bits’ presence at industry events and relevant conferences. This includes pre-event promotion on-site coordination with speakers and partners and post-event follow-up that captures leads and extends the content’s reach.
• Brief and prep engineers and leadership before external appearances so they show up ready.

Demand Generation

• Plan and run multi-channel campaigns (social email webinars conference activations) that drive pipeline.
• Collect and package customer proof points: testimonials client logos and case studies that support sales and credibility.
• Provide sales enablement support: collateral competitive intel and prospect research.

Analytics & Reporting

• Improve upon existing baselines track performance and create a reporting rhythm so the team knows what’s working and where we should continue investing.
• Build dashboards and regular reporting cadences that connect marketing activity to pipeline and revenue outcomes.
• Own marketing attribution. Connect campaign spend and activity to sourced and influenced pipeline so we can see what’s actually driving results.

Market Awareness

• Gather market intelligence through customer conversations competitor monitoring and community engagement that informs how we position our services.
• Keep tabs on shifts in AppSec AI/ML Security and R&E and flag opportunities to the broader team.

• Marketing experience in AppSec AI/ML Security or Research & Engineering. Direct experience marketing or working in AppSec AI/ML Security or Research & Engineering. You know the landscape the key players and the technical conversations well enough to tell signal from noise. Required not nice-to-have.
• Active public presence in security communities. Demonstrated experience engaging on X LinkedIn or Bluesky in AppSec AI/ML security or systems security conversations. You know where the conversations happen and what the community currently cares about.
• Technical writing for security audiences. Experience writing security-focused content for technical audiences including security blogs vulnerability research writeups and tool documentation. The security research community will notice if your work doesn't hold up.
• Demand generation at a security or developer tools company. Experience running demand generation campaigns that produced measurable pipeline outcomes at a security blockchain or developer tools company.
• Social media in security communities. Experience running social media as a primary channel in AppSec AI/ML security or developer security communities with ownership of cadence engagement and audience growth.
• Developer-adjacent technical fluency. Technical fluency with GitHub markdown and tools like Claude Code. You don't need a marketer-friendly UI to get your work done.
• Marketing reporting for security pipeline. Experience setting up dashboards and reporting cadences that connect security marketing activity to pipeline outcomes.
• HubSpot in a B2B security or devtools context. Hands-on experience with HubSpot or similar marketing automation ideally at a security or developer tools company.
• AI tools for security content production. Experience using AI tools to accelerate security content production research and campaign execution.

These aren't requirements for day one but they represent areas this role will increasingly own as the marketing team scales and our strategy evolves.

• Experience with analyst relations (Gartner Forrester) or industry awards programs
• Experience in PR and crisis communications
• Experience in a professional services or consultancy environment
• Experience with customer journey mapping client segmentation S-curve analysis or practice-level market positioning
• Experience structuring web content and proof points for AI discoverability and agent-ready evaluation
• Experience with NPS programs or customer feedback loops that inform marketing strategy

A few things we’ve learned don’t work well in this role:

• Waiting to be told what to cover. Engineering ships tools publishes research and gives talks constantly. We expect marketing to already be tracking that and building coverage around it — not finding out after the fact.
• Treating social as an afterthought. X LinkedIn and Bluesky are where this community lives. If you see social as something you get to when there’s time this isn’t the right fit.
• Going on instinct without data. One of the core mandates here is to make marketing measurable. You need to be comfortable tracking what works and adjusting based on what the numbers say.
• Working in a silo. Engineering teams leadership Technical Editing and GTM are all collaborators and sources of content intelligence. This role works best when it operates visibly across the org.

Trail of Bits produces some of the most respected security research in the industry. We ship open-source tools the community relies on publish work that changes how organizations think about risk and take on engagements other firms can’t. The gap isn’t in the work — it’s in how much of that work reaches the people who should see it.

When shipped tools don’t get blog posts the community doesn’t know they exist. When a researcher gives a great talk and marketing isn’t already moving on it the moment passes. This role exists to close that gap — to make sure the work gets the attention it deserves and to build the habits so it doesn’t depend on any one person.

The base salary range for this full-time position is $130000–$160000. Compensation is informed by geographic location relevant experience and internal equity. The presented figures represent starting compensation for U.S.-based candidates. For specifics please discuss with your recruiter during the hiring process.

Trail of Bits is our people not a place. With over 100+ employees working from every time zone across the globe our remote-first culture is built on autonomy and trust (and backed by smile-worthy benefits) for full-time employees:

Empowered Living:

• Competitive salary complemented by performance-based bonuses.
• Fully company-paid insurance packages including health dental vision disability and life.
• A solid 401(k) plan with a 5% match of your base salary.
• 20 days of paid vacation with flexibility for more adhering to jurisdictional regulations.

Nurturing New Beginnings:

• 4 months of parental leave to cherish the arrival of new family members.
• Our team is global and remote-first. However if you are interested in moving to NYC we offer $10000 in relocation assistance to support your transition.

Work & Life Enrichment:

• $1000 Working-from-Home stipend to create a comfortable and productive home office.
• Annual $750 Learning & Development stipend for continuous personal and professional growth.
• Company-sponsored all-team celebrations including travel and accommodation to foster community and recognize achievements.

Community Impact:

• Philanthropic contribution matching up to $2000 annually.

What We Do

Deepening the Science of Security Founded in 2012 by 3 expert hackers with no investment capital Trail of Bits is the premier place for security experts to boldly advance security and address technology’s newest and most challenging risks. It has helped secure some of the world's most targeted organizations and devices. Our combination of novel research with practical solutions reduces the security risks that our clients face from emerging technologies. Our work helps drive the security industry and the public understanding of the technology underlying our world. Cybersecurity preparedness is a moving target. Companies like ours are the tip of the spear in the fight against attackers. Our research-based and custom-engineering approach ensures that our client’s capabilities are at the forefront of what’s available. For companies and technologies that live and die by their security a proactive tailored approach is required to keep one step ahead of attackers. Democratizing security information is essential. As part of our business we provide ongoing informational support through blogs whitepapers newsletters meetups and open-source tools. The more the community understands security the more they’ll understand why a company like ours is so unique and valuable.

Why Work With Us

At Trail of Bits our 100+ global team members are the core of a remote-first people-centric culture. Emphasizing autonomy and trust we offer flexible work and meaningful benefits supporting diverse talents in pursuing innovation and well-being.

Gallery