Security Researcher

IONIX is redefining how the world's largest enterprises manage their external attack surface. Our External Exposure Management platform empowers security teams to discover every internet-facing asset, map dependencies, validate exploitable risks, and prioritize what truly matters - at scale, in real time. Global leaders including BlackRock, Warnet Music Group, Infosys, Sompo, The Telegraph, and E.ON trust IONIX to proactively defend their complex and dynamic attack surfaces. We reduce alert fatigue, streamline remediation workflows, and ensure critical risks reach the right people - fast.

As a Security Researcher, you will play a crucial role in researching, building, and enhancing our cutting-edge technology to address the evolving cybersecurity challenges faced by the world's largest enterprises.

Responsibilities:

• Research, develop, and implement new offensive security capabilities that push the boundaries of the EASM category, including exploit development and PoC creation across web applications, AI/LLM assets, network infrastructure, cloud environments, and supply chain dependencies.
• Drive innovation by conceptualizing, implementing, and adopting AI-driven initiatives and offensive security expertise to enhance IONIX's detection, validation, and automation capabilities at scale.
• Conduct in-depth research to continuously expand platform coverage.
• Develop exploitability tests to uncover critical, real-world findings across enterprise attack surfaces - directly demonstrating the power of the IONIX platform.
• Collaborate with global enterprises as design partners to understand their security needs and design solutions accordingly.
• Take ownership of key research projects, addressing security and scalability challenges from concept through to delivery.
  
  

• 8+ years of hands-on experience in security research, offensive security, or software development.
• Practical experience conducting offensive security assessments, including web application exploitation, network-based attacks, and adversarial attack simulation.
• Strong development skills (Python - advantage): capable of writing production-quality, scalable code.
  
  

• Prior published CVEs, conference talks, or public security research is a strong plus.
• Bachelor's degree in Computer Science, Computer Engineering, or equivalent experience is preferred.
• Experience with leveraging emerging LLMs and AI capabilities.