Staff Threat Research Engineer

Weekday (YC W21)

full-time

Posted on: 1/5/2026

Location Type: Remote

Location: India

✨ AI Apply

About the role

Lead threat research and detection engineering across cloud, SaaS, and application security domains (CSPM, DSPM, ASPM, or related areas).
Analyze emerging threats, attack techniques, and misconfigurations impacting cloud-native and SaaS platforms.
Design and develop security detections, analytics, and research-driven content to improve threat visibility and response.
Harden SaaS deployments by identifying security gaps and recommending best-practice controls.
Build automation and tooling using scripting languages to scale threat detection and security analysis.
Work with API-driven systems to enable security automation and advanced product capabilities.
Analyze large datasets using SQL and big data platforms to uncover security signals and anomalous behavior.
Collaborate with product, engineering, and security teams to translate research insights into scalable security solutions.
Contribute to thought leadership, technical documentation, and security research initiatives.

9+ years of experience in security research, threat detection, or cloud security engineering.
Strong foundation in information security, with a preference for SaaS and cloud-first environments.
Hands-on experience with CSPM, DSPM, ASPM, or similar security domains.
Proficiency in Python, Shell scripting, or similar languages for automation and rapid prototyping.
Strong knowledge of public cloud security architectures and services.
Experience working with databases (SQL) and large-scale data platforms such as Spark or BigQuery.
Exposure to API-based automation and modern product-driven security solutions.

Tip: use these terms in your resume and cover letter to boost ATS matches.

threat researchdetection engineeringcloud securitySaaS securityCSPMDSPMASPMPythonShell scriptingSQL

collaborationcommunicationthought leadershiptechnical documentation