CXM Direct

Network Engineer – Anti-Censorship

CXM Direct

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇭🇰 Hong Kong

Visit company website
AI Apply
Apply

Job Level

Mid-LevelSenior

Tech Stack

AnsibleDNSDockerGoKubernetesLinuxPythonRustTerraform

About the role

  • Design, deploy, and maintain proxy/obfuscation stacks (Shadowsocks, obfs4proxy, Cloudflare Tunnel, etc.)
  • Monitor and mitigate censorship-related disruptions (DPI, DNS poisoning, TCP reset injection, etc.)
  • Develop a strategy for traffic masking and IP hopping
  • Collaborate with the backend team to ensure seamless application connectivity under censorship pressure
  • Research and adopt new circumvention techniques (TLS camo, domain fronting, randomized transports)
  • Implement observability & logging for health checks, traffic anomalies, and tunnel stability

Requirements

  • Strong Linux system administration and networking fundamentals
  • Familiarity with proxy and tunneling technologies (Shadowsocks, V2Ray, obfs4proxy, WireGuard, etc.)
  • Practical knowledge of censorship mechanisms (deep packet inspection, IP/port blocking, DNS manipulation)
  • Solid scripting skills (Bash, Python, or similar)
  • Knowledge of TLS fingerprinting evasion (uTLS, camouflage transports)
  • Experience with Cloudflare Spectrum/Tunnel/Magic Transit or similar services
  • Awareness of BGP security, RPKI, and route hijack prevention
  • Security background in encrypted communications and adversarial networks
  • Some Go or Rust experience (to tweak or build transport proxies if needed)
  • Hands-on experience with containerization (Docker, ECS, or Kubernetes) and CI/CD automation (GitHub Actions, Terraform, Ansible, etc.)
Benefits
  • Work on cutting-edge infrastructure to fight censorship and ensure open access
  • Freedom to research, test, and implement creative networking solutions
  • Remote-friendly team with flexible working hours
  • Opportunity to make a real-world impact on internet freedom

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
Linux system administrationnetworking fundamentalsproxy technologiestunneling technologiesscripting (Bash, Python)TLS fingerprinting evasionBGP securitycontainerization (Docker, ECS, Kubernetes)CI/CD automation (GitHub Actions, Terraform, Ansible)censorship mechanisms
Soft skills
collaborationresearchstrategy development