Security Researcher
Iru · Miami, FL
- On site
- Full-time
- $140,000 / year
- Miami, FL
Job highlights
- Research Windows/macOS threats for a leading AI security platform.
- Develop EDR and vulnerability detection rules.
- Collaborate with engineering on cross-platform security.
- Contribute to product roadmap and external profile.
- Direct impact on research and product direction.
About the role
About Iru
Iru is the AI-powered security & IT platform used by the world’s fastest-growing companies to secure their users, apps, and devices. Built for the AI era, Iru unifies identity & access, endpoint security & management, and compliance automation—collapsing the stack and giving IT & security time and control back.Iru is backed by some of the smartest investors in tech—General Catalyst, Tiger Global, Felicis, Greycroft, and First Round Capital. In July 2024, Iru raised $100 million from General Catalyst, valuing the company at $850 million. Customers include Notion, Cursor, Lovable, Replit, and Mercor, and Iru partners with industry leaders such as ServiceNow and AWS. Iru was named to Forbes’ America’s Best Startup Employers 2025 list for employee engagement and satisfaction.
The Opportunity
We are looking for a Security Researcher specializing in Windows and macOS threat detection to join our small, focused Threat Intelligence and Research team. In this role, you'll research, analyze, and develop robust file-based and behavioral detections targeting malware, threat actors, and attack methodologies across both platforms. You'll be a direct contributor to both our EDR and Vulnerability products — bringing research depth that spans threat detection and the full vulnerability lifecycle. You'll also help raise the team's external profile through published research and conference talks. As part of a small team, you'll have significant ownership over your work and a direct impact on the direction of our research and products.What You'll Do
- Perform in-depth analysis of malware and adversarial behavior across Windows and macOS to identify detection opportunities.
- Develop and enhance detection rules and behavioral analytics for both platforms, integrated into our EDR product.
- Collaborate with engineering teams to incorporate detection logic into our cross-platform security agent.
- Actively contribute to both our EDR and vulnerability products — spanning threat detection and the full vulnerability lifecycle: discovery, product coordination, CVE publications/submissions, and public disclosure.
- Research and develop new vulnerability detection methods.
- Continuously monitor emerging threats and trends across Windows and macOS ecosystems.
- Contribute to the product roadmap for both EDR and vulnerability products by surfacing research-driven insights and detection capability recommendations.
- Author blog posts and present findings at industry conferences to contribute to the broader security community.
- Document and communicate research findings clearly, both internally and externally.
What You'll Bring
- 3–5 years of experience in cybersecurity, with hands-on focus on malware analysis and threat research across Windows and/or macOS.
- Proven experience developing file-based and behavioral detections for endpoints (YARA, Sigma).
- Solid understanding of the vulnerability research lifecycle: discovery through coordinated disclosure and CVE ecosystem.
- Experience with malware analysis tools and techniques (Binary Ninja, WinDbg, Sysinternals, or Mac Monitor).
- Strong understanding of OS internals and endpoint security mechanisms on Windows and/or macOS (Endpoint Security APIs).
- Demonstrated ability to communicate research externally — blog posts, conference talks, or published work.
Preferred Qualifications
- Experience developing or contributing to EDR or next-gen antivirus products.
- Experience leveraging AI tools to accelerate threat research, detection development, and analysis workflows.
- Familiarity with both Windows and macOS threat landscapes and platform-specific attack techniques.
- Proficiency with security-focused scripting and data analysis (Python, PowerShell, Bash, etc.).
- Demonstrated ability to assess and prioritize vulnerabilities using industry-standard frameworks and data sources (including advisories, disclosures, severity scoring, and more) with a critical eye for data quality and completeness.
Benefits & Perks
- Competitive salary
- Hybrid work environment (3 days in office per week)
- 100% individual and dependent medical + dental + vision coverage
- 401(K) with a 4% company match
- 20 days PTO
- Iru Wellness Week the first week in July
- Equity for full-time employees
- In-office lunch stipend provided
- Up to 16 weeks of paid leave for new parents
- Paid Family and Medical Leave
- Modern Health mental health benefits for individuals and dependents
- Fertility benefits
- Working Advantage employee discounts
- Onsite fitness center
- Free parking
- Exciting opportunities for career growth
At Iru, we believe in fostering an inclusive environment in which employees feel encouraged to share their unique perspectives, leverage their strengths, and act authentically. We know that diverse teams are strong teams, and welcome those from all backgrounds and varying experiences.
Iru is proud to be an equal opportunity employer committed to diversity and inclusion in the workplace. Qualified applicants will be considered for employment without regard to race, color, religion, national origin, age, sex, sexual orientation, gender identity, physical or mental disability, protected veteran or military status or any other status protected by applicable law.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
Key skills/competency
- Security Researcher
- Malware Analysis
- Threat Intelligence
- Windows
- macOS
- Endpoint Security
- Vulnerability Research
- Detection Engineering
- Cybersecurity
- EDR
Skills & topics
- Security Researcher
- Malware Analysis
- Threat Intelligence
- Windows Security
- macOS Security
- EDR
- Vulnerability Research
- Cybersecurity
- Detection Engineering
- Endpoint Security
How to get hired
- Tailor your resume: Highlight your 3-5 years of cybersecurity experience, malware analysis, and threat research on Windows/macOS. Emphasize YARA, Sigma, and OS internals knowledge.
- Showcase your expertise: Prepare to discuss your experience with vulnerability research lifecycle, CVEs, and tools like Binary Ninja or WinDbg.
- Demonstrate communication skills: Be ready to share examples of your external research contributions, such as blog posts or conference talks.
- Understand Iru's mission: Research Iru's AI-powered security platform, its investors, and customer base to align your application with their goals.
- Prepare for technical and behavioral interviews: Expect questions on your technical approach to threat detection and how you collaborate in a team environment.
Technical preparation
Master YARA and Sigma for detection development.,Deep dive into Windows and macOS OS internals.,Practice with malware analysis tools.,Develop Python or PowerShell scripts for research.
Behavioral questions
Describe a complex malware analysis challenge.,How do you handle vulnerability disclosure timelines?,Share an example of external research contribution.,How do you collaborate with engineering teams?
Frequently asked questions
- What specific experience is required for the Security Researcher role at Iru?
- The Security Researcher role at Iru requires 3-5 years of cybersecurity experience with a focus on malware analysis and threat research on Windows and/or macOS. You should have proven experience developing file-based and behavioral detections using tools like YARA and Sigma, a solid understanding of the vulnerability research lifecycle, and experience with malware analysis tools and OS internals.
- How does Iru utilize AI in its hiring process for the Security Researcher position?
- Iru may use AI tools to assist in reviewing applications, analyzing resumes, and assessing responses for the Security Researcher role. These tools support the recruitment team but do not replace human judgment in the final hiring decisions.
- What is the work environment like for a Security Researcher at Iru?
- The Security Researcher position offers a hybrid work environment, requiring 3 days in the office per week. Iru aims to foster an inclusive, high-performing team where employees can leverage their strengths and contribute to exciting projects.
- What are the key responsibilities of a Security Researcher at Iru?
- Key responsibilities include performing in-depth analysis of malware and adversarial behavior on Windows and macOS, developing detection rules for EDR products, contributing to vulnerability research (discovery, disclosure, CVEs), and communicating research findings internally and externally through blogs and conferences.
- What kind of impact can a Security Researcher have at Iru?
- As a Security Researcher at Iru, you'll be a direct contributor to both EDR and Vulnerability products, bringing research depth across the full vulnerability lifecycle. You'll have significant ownership and a direct impact on the direction of research and products, as well as help raise the team's external profile.
- What are the preferred qualifications for the Security Researcher role?
- Preferred qualifications include experience developing EDR or next-gen antivirus products, leveraging AI tools for threat research, familiarity with both Windows and macOS threat landscapes, and proficiency in security-focused scripting and data analysis (Python, PowerShell, Bash).
- How does Iru support employee well-being and growth for Security Researchers?
- Iru offers comprehensive benefits including competitive salary, 100% medical coverage, 401(K) with match, generous PTO, wellness initiatives, equity, and opportunities for career growth. They also provide mental health and fertility benefits.