Remote Senior Security Engineer - Node.js Proactive Defense (remote-only)

Description:

• Own the Node.js Proactive Defense initiative for Imunify360, creating a runtime security layer for Node.js.
• Design and implement a Node.js runtime agent to trace and block malicious behavior patterns.
• Integrate the agent with the existing Imunify security stack for comprehensive telemetry and management.
• Ensure production safety on shared hosting environments with low overhead and tenant isolation.
• Develop a pipeline for automated detection rule generation from CVEs and threat intelligence.
• Manage feedback loops for continuous improvement of detection rules.

Requirements:

• Security engineer mindset with a focus on attack surfaces and exploit primitives.
• Knowledge of runtime exploitation techniques across multiple programming languages.
• Experience in systems-level development, including Linux daemons and IPC.
• Familiarity with low-level instrumentation techniques such as eBPF or ptrace.
• (Nice to have) Experience in shared-hosting environments and working with CVEs.

Benefits:

• Focus on professional development and challenging projects.
• Fully remote work with flexible hours and the ability to work from anywhere.
• 24 days of paid vacation, 10 national holidays, and unlimited sick leave.
• Compensation for private medical insurance and reimbursement for co-working and gym expenses.
• Budget for education and potential rewards for innovative ideas.