Cybersecurity Researcher

Company name : SquareX

Job location : India (Remote)

Job description

About SquareX:

SquareX is a leading cybersecurity company that focuses on providing robust protection to users while ensuring their productivity remains unhampered. Our mission is to secure the internet for everyone, making our services invaluable to clients worldwide.

We are seeking a Cybersecurity Researcher to join our team to lead investigations into browser security threats and client-side attack vectors. The successful candidate will focus on identifying emerging threats, creating proof-of-concept exploits, and contributing research insights that strengthen our browser security posture.

Responsibilities:

• Conduct research in browser-focused security threats, including vulnerabilities, bugs, and advanced attack vectors targeting enterprise users.
• Build, test, and deploy POCs to simulate real-world threats and highlight impact of discovered issues.
• Create technical video demonstrations of attacks and solutions.
• Draft high-quality technical write-ups, whitepapers, or research submissions for security conferences and publications.
• Track and monitor the evolving threat landscape relevant to browser security and propose mitigation strategies.
• Collaborate with internal teams (including engineering, product, and marketing) to align research outcomes with company goals and public outreach.

Qualifications:

• Must have 5+ years of experience in cybersecurity research, with a strong focus on browser, extensions or client-side browser/user security.
• Must have 3+ years of experience of working on a Cybersecurity product company.
• Must demonstrate expertise in identifying and analyzing web-based vulnerabilities and real-world exploit scenarios.
• Must have proficiency in Python for automation, scripting, and tooling.
• Must have good understanding of JavaScript and modern web technologies; adaptability to new frameworks and browser environments.
• Should have familiarity with Linux VM/Container environments and cloud platforms (e.g., AWS, GCP).
• Should have a good understanding of internet security protocols and attack surface mapping.
• Experience publishing or contributing to technical research papers, CVEs, or security community knowledge bases is a plus.

Cost to Company: 15 Lakhs to 45 Lakhs

We thank all applicants for their interest, but only those selected for an interview will be contacted.