1

Security Researcher Jobs (NOW HIRING)

Security Researcher We believe that software is the foundation of modern civilization - yet vulnerabilities threaten its integrity, security, and resilience. We are on a mission to solve security ...

Security Researcher We believe that software is the foundation of modern civilization - yet vulnerabilities threaten its integrity, security, and resilience. We are on a mission to solve security ...

The Security Researcher will build technology for vulnerability discovery, collaborate with AI researchers, and contribute to developing advanced detection capabilities. Responsibilities : • Build ...

About this role We're seeking an experienced Security Researcher to join our effort in building and training AI agents for vulnerability discovery and exploitation. We are building a technology ...

The Opportunity We are looking for a Security Researcher specializing in Windows and macOS threat detection to join our small, focused Threat Intelligence and Research team. In this role, you'll ...

You will work closely with security researchers and customers to identify emerging threats and improve detection capabilities across SaaS environments. Responsibilities * Threat Analysis and Research:

About the Software Security Researcher position We are looking for an experienced Security Engineer who will analyze our software designs and implementations from a security perspective, in order to ...

Are you excited about pioneering new research areas that will impact academia, industry, and national security? If so, we want you for our team, where you'll collaborate to deliver high-quality ...

As a Windows Security Researcher, you will be part of a team focused on conducting security research related to Windows technologies. You should be familiar with the latest techniques in ...

next page

Showing results 1-20

Security Researcher information

See salary details

$47

$51

$54

How much do security researcher jobs pay per hour?

As of Jul 19, 2026, the average hourly pay for security researcher in the United States is $51.44, according to ZipRecruiter salary data. Most workers in this role earn between $49.76 and $53.12 per hour, depending on experience, location, and employer.

What Is a Security Researcher?

A security researcher keeps up-to-date on all the latest developments in threats to computer software and networks. These threats include different types of malware, such as computer viruses, malicious software and scripts, and direct attacks on a network. The main duties of a security researcher are to investigate existing types of malware, analyze their capabilities, and attempt to predict new forms of malware to develop appropriate security responses. They may reverse engineer malware or test security systems.

What are Security Researchers?

Security Researchers are professionals who analyze computer systems, networks, and software to identify vulnerabilities and potential security threats. They often discover new types of cyberattacks, develop tools or methods to test for weaknesses, and recommend ways to improve security. Security Researchers may work for private companies, government agencies, or independently, and they play a crucial role in preventing cybercrime by staying ahead of hackers. Their work often involves reverse engineering, penetration testing, and publishing their findings to help strengthen cybersecurity across the industry.

Can I make $200,000 a year in cyber security?

Security Researchers can potentially earn $200,000 or more annually, especially with advanced skills, certifications, and experience in high-demand areas like penetration testing or threat analysis. Salaries vary based on industry, location, and level of expertise, with senior roles and specialized skills commanding higher pay.

What is the difference between Security Researcher vs Security Analyst?

AspectSecurity ResearcherSecurity Analyst
CredentialsCertifications like CISSP, CEH, OSCPCertifications like CompTIA Security+, CISSP, GIAC
Work EnvironmentResearch labs, cybersecurity firms, R&D teamsSecurity operations centers, corporate IT teams
Employer & IndustryTech companies, cybersecurity firms, government agenciesFinancial institutions, healthcare, enterprise companies
Primary FocusIdentifying vulnerabilities, developing exploits, analyzing threatsMonitoring security systems, incident response, implementing security measures

While both roles focus on cybersecurity, Security Researchers primarily analyze vulnerabilities and develop exploits to understand threats better. Security Analysts focus on monitoring, detecting, and responding to security incidents within organizations. Both roles often require similar certifications and work in related environments, but their core responsibilities differ in scope and daily tasks.

What does a security researcher do?

A security researcher analyzes computer systems, networks, and software to identify vulnerabilities and develop ways to protect against cyber threats. They often use tools like penetration testing and vulnerability scanners and may hold certifications such as CISSP or CEH. Their work helps improve cybersecurity defenses and prevent cyberattacks.

How to get a job as a security researcher?

To become a security researcher, develop strong knowledge of cybersecurity principles, programming, and network protocols. Obtain relevant certifications such as CISSP or CEH, gain experience through internships or labs, and stay updated on current security threats and tools like Wireshark or Metasploit.

How much do security researchers make in the US?

Security researchers in the US typically earn a median salary of around $100,000 per year, with entry-level positions starting at approximately $70,000 and experienced professionals earning over $130,000. Salaries vary based on experience, certifications, and the complexity of the security environment they work in.

What are the key skills and qualifications needed to thrive as a Security Researcher, and why are they important?

To thrive as a Security Researcher, you need deep expertise in computer science, networking, vulnerability assessment, and malware analysis, often supported by a degree in cybersecurity or related fields. Familiarity with tools like IDA Pro, Wireshark, Metasploit, and certifications such as OSCP or CEH is highly valued. Analytical thinking, curiosity, and strong written and verbal communication help distinguish top performers in this role. These skills are crucial for identifying emerging threats, effectively communicating risks, and developing solutions to protect organizations' digital assets.

What are some common challenges Security Researchers face when collaborating with development teams?

Security Researchers often encounter challenges when working with development teams, such as communicating complex vulnerabilities in a way that is actionable for developers and aligning on remediation priorities. Bridging the gap between security findings and practical implementation requires clear documentation and a collaborative mindset. Additionally, researchers must balance thorough testing with minimal disruption to production environments, ensuring security improvements integrate smoothly into development cycles.
What cities are hiring for Security Researcher jobs? Cities with the most Security Researcher job openings:
What are the most commonly searched types of Security Researcher jobs? The most popular types of Security Researcher jobs are:
Who are the top companies hiring for Security Researcher jobs? The top employers for Security Researcher jobs are:
What states have the most Security Researcher jobs? States with the most job openings for Security Researcher jobs include:
What job categories do people searching Security Researcher jobs look for? The top searched job categories for Security Researcher jobs are:
Infographic showing various Security Researcher job openings in the United States as of July 2026, with employment types broken down into 87% Full Time, 9% Part Time, 1% Temporary, and 3% Contract. Highlights an 86% Physical, 3% Hybrid, and 11% Remote job distribution, with an average salary of $107,000 per year, or $51.4 per hour.

Security Researcher

DepthFirst

San Francisco, CA • On-site

Other

Medical, Dental, Vision

Re-posted 21 days ago


Job description

Security Researcher

We believe that software is the foundation of modern civilization - yet vulnerabilities threaten its integrity, security, and resilience. We are on a mission to solve security.

depthfirst is building intelligence to detect and remediate critical software vulnerabilities. We are training and scaling security AI agents to discover zero-days vulnerabilities across large customer codebases and popular open source software.

Our founding team includes deep expertise in data, infrastructure, security and LLMs with technical leaders from DeepMind, Databricks, Square, and Faire. We are looking for strong technical people who are interested in working at the intersection of AI, Security, and Infrastructure.

We're seeking an experienced Security Researcher to join our effort in building and training AI agents for vulnerability discovery and exploitation.

We are building a technology capable of finding the next Log4J at scale, finding and remediating vulnerabilities in customer and open source codebases.

We are looking for strong security researchers with strong intuition to identify, analyze, and investigate application vulnerabilities. You'll collaborate with AI researchers and engineers to uncover novel attack vectors and contribute to the development of advanced detection and defense capabilities. Your work will play a crucial role in building a product that aims to redefine how companies do security.

You're excited about this role because you will…

  • Build a technology capable of finding novel vulnerabilities at scale both in open source and proprietary codebases
  • Develop techniques to reduce false positives leveraging automated exploitation, proof of concept generation and context inference
  • Work closely with engineers to understand limitations and design new methodologies to improve our system
  • Publish internal technical reports and contribute to security advisories as needed.
  • Work on a Product that Solves a Critical Problem - and we already have a handful of customers who have found it valuable in fixing some eye-opening vulnerabilities within the first few days of using our product.

Qualifications

  • 3+ years of full-time experience in security research, offensive security, or related fields.
  • Experience with finding vulnerabilities in source code
  • Experience creating PoC exploits for vulnerabilities
  • Programming experience in Python
  • A bachelor's degree in Computer Science/Software Engineering or equivalent industry experience
  • A love for technology, and an insatiable curiosity for new tools to tackle real problems
  • Capable of solving complex problems with simple solutions. Building reliable and scalable products, making right trade-offs along the way
  • A tendency to leave things in a better way than you found it

What We Offer

  • Competitive Salary with meaningful equity
  • Health, Vision, and Dental Insurance
  • Office lunch (when working from our San Francisco office)

depthfirst is an equal opportunity employer and does not discriminate on the basis of race, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition, or any other basis protected by law.

To all recruitment agencies: depthfirst does not accept agency resumes. Please do not forward resumes to depthfirst employees. depthfirst is not responsible for any fees related to unsolicited resumes and will not pay fees to any third-party agency or company that does not have a signed agreement with the Company.