Senior Security Researcher
United States
What you'll do:
Lead the development of product features and detection capabilities, such as payload signal collection and launch ad fraud detection techniques utilizing those signals in order to identify different forms of Invalid Traffic (IVT) in mobile and desktop environments.
Facilitate research into new and emerging threat models within the Ad Tech Ecosystem, as well as new environments and types of advertising that are potential vectors of abuse. For example, by finding new days to detect tools like Selenium, Playwright, or Puppeteer.
Answer the technical questions, such as: How is an actor obfuscating the redirect between one page to another? How is a data center pretending to be a desktop browser? Which page elements are being tampered with and why? What javascript evidence can we find that automation was occurring?
Keep up on industry standards, techniques, cybersecurity trends, and tools adversaries might use to circumvent detection or mitigation.
Red team, experiment, and develop new tactics for various kinds of fraud and to bypass our detection, no need to wait for an attack to be discovered and used by adversaries first.
Regularly up-level the broader team’s knowledge of signals and techniques useful for identification of invalid traffic, ad fraud, or automation, such as by leading signal sharing sessions with the rest of the team
Who you are:
You’re passionate about finding bad actors and disrupting their techniques :)
You are knowledgeable on the mechanics of fraud and abuse within Ad Tech and the programmatic ecosystem OR are knowledgeable on the cybersecurity threat landscape
You have extensive knowledge of how the internet operates, a clear understanding of DNS, TCP/HTTP/TLS network protocols, and the capabilities of javascript signal collection. You’re willing to dig into the details of source code
Proven experience in scripting languages (Python and JavaScript). Bonus Points for SQL
You are a curious, adaptable person who is always thinking out of the box that wants to apply your knowledge to always do the right thing
You are intrigued by the adversarial game, discovering new threats, and rapid experimentation
You have a strong sense of ownership which drives you to find ways to do things better, faster, and leaner; you hold yourself accountable for the quality and accuracy of your work
You are passionate about learning and growing your skillset and the skillset of those around you.
You have knowledge on how to use AI tools effectively or improve, automate, and “agent-ize” existing processes
You are comfortable juggling different projects as priorities change
About HUMAN Security
HUMAN was founded in a Brooklyn sci-fi bookstore with a hacker mindset and the lofty mission of making the internet safer by putting humans first. Today, our Human Defense Platform safeguards enterprises from sophisticated bots, fraud, and account abuse, verifying the humanity of more than 20 trillion interactions per week for the world’s biggest brands and internet platforms.
HUMAN is an equal opportunity workplace dedicated to protecting the internet's integrity for everyone. We believe in putting people first, embracing diversity of thought from our global teams, and welcoming all individuals to share their unique experiences as we fight cybercrime together. We support our Humans with a comprehensive total rewards package for personal and professional development, including well-being and learning stipends, flexible work options, and dedicated time off. While our HQ is in NYC, we have teams worldwide.
HUMAN is growing fast, and there’s never been a more meaningful time to join us. If you thrive on solving complex problems and want to help shape the future of cybersecurity, join us as we build a safer, more human internet.
If you are an individual with a disability or special need that requires accommodation, please contact us directly.