Security Researcher

About Iru

Iru is the AI-powered security & IT platform used by the world’s fastest-growing companies to secure their users, apps, and devices. Built for the AI era, Iru unifies identity & access, endpoint security & management, and compliance automation—collapsing the stack and giving IT & security time and control back.

Iru is backed by some of the smartest investors in tech—General Catalyst, Tiger Global, Felicis, Greycroft, and First Round Capital. In July 2024, Iru raised $100 million from General Catalyst, valuing the company at $850 million. Customers include Notion, Cursor, Lovable, Replit, and Mercor, and Iru partners with industry leaders such as Service Now and AWS. Iru was named to Forbes’ America’s Best Startup Employers 2025 list for employee engagement and satisfaction.

We are looking for a Security Researcher specializing in Windows and macOS threat detection to join our small, focused Threat Intelligence and Research team. In this role, you'll research, analyze, and develop robust file-based and behavioral detections targeting malware, threat actors, and attack methodologies across both platforms. You'll be a direct contributor to both our EDR and Vulnerability products — bringing research depth that spans threat detection and the full vulnerability lifecycle.

You'll also help raise the team's external profile through published research and conference talks. As part of a small team, you'll have significant ownership over your work and a direct impact on the direction of our research and products.

• Perform in-depth analysis of malware and adversarial behavior across Windows and macOS to identify detection opportunities.
• Develop and enhance detection rules and behavioral analytics for both platforms, integrated into our EDR product.
• Collaborate with engineering teams to incorporate detection logic into our cross-platform security agent.
• Actively contribute to both our EDR and vulnerability products—spanning threat detection and the full vulnerability lifecycle: discovery, product coordination, CVE publications/submissions, and public disclosure.
• Research and develop new vulnerability detection methods.
• Continuously monitor emerging threats and trends across Windows and macOS ecosystems.
• Contribute to the product roadmap for both EDR and vulnerability products by surfacing research-driven insights and detection capability recommendations.
• Author blog posts and present findings at industry conferences to contribute to the broader security community.
• Document and communicate research findings clearly, both internally and externally.

• 3–5 years of experience in cybersecurity, with hands‑on focus on malware analysis and threat research across Windows and/or macOS.
• Proven experience developing file-based and behavioral detections for endpoints (YARA, Sigma).
• Solid understanding of the vulnerability research lifecycle: discovery through coordinated disclosure and CVE ecosystem.
• Experience with malware analysis tools and techniques (Binary Ninja, Win Dbg, Sysinternals, or Mac Monitor).
• Strong understanding of OS internals and endpoint security mechanisms on Windows and/or macOS (Endpoint Security APIs).
• Demonstrated ability to communicate research externally — blog posts, conference talks, or published work.

• Experience developing or contributing to EDR or next‑gen antivirus products.
• Experience leveraging AI tools to accelerate threat research, detection development, and analysis workflows.
• Familiarity with both Windows and macOS threat landscapes and platform‑specific attack techniques.
• Proficiency with security‑focused scripting and data analysis (Python, Power Shell, Bash, etc.).
• Demonstrated ability to assess and prioritize vulnerabilities using industry‑standard frameworks and data sources (including advisories, disclosures, severity scoring, and more) with a critical eye for data quality and completeness.

• Competitive salary
• Hybrid work environment (3 days in office per week)
• 100% individual and dependent medical + dental + vision coverage
• 401(K) with a 4% company match
• 20 days PTO
• Iru Wellness Week the first week in July
• Equity for full‑time employees
• In‑office lunch stipend provided
• Up to 16 weeks of paid leave for new parents
• Paid Family and Medical Leave
• Modern Health mental health benefits for individuals and dependents
• Fertility benefits
• Working Advantage employee discounts
• Onsite fitness center
• Free parking
• Exciting opportunities for career growth

Iru is proud to be an equal opportunity employer committed to diversity and inclusion in the workplace. Qualified applicants will be considered for employment without regard to race, color, religion, national origin, age, sex, sexual orientation, gender identity, physical or mental disability, protected veteran or military status or any other status protected by applicable law.