Senior Security Research Engineer

WP Cloud powers WordPress at scale, and security is a critical part of that foundation. We’re expanding our security team to support WP Cloud, while also contributing to the protection and intelligence provided by WPScan and Jetpack Protect . As a Security Researcher, you will analyze vulnerable and malicious code, track emerging threats, and help build the tools and processes that detect, prevent, and remediate malware and other security issues across the WordPress ecosystem. If you have a knack for solving puzzles and a passion for documenting and operationalizing solutions, this is a great opportunity to make a broad impact. The Senior Security Engineer position might be a good fit if you: Enjoy securing and protecting websites and applications. Have at least 3 years of experience as a security researcher, or equivalent experience investigating vulnerabilities, malware, or other threats. Understand threat models, security threats, vulnerabilities, and common attack vectors such as XSS, injection, hijacking, social engineering, and so on, along with how to mitigate them. Have experience with PHP and some exposure to software engineering. Are highly collaborative, and love participating in code reviews and discussions about architecture or design. Have a strong ability to use AI tools effectively to accelerate your work, improve analysis, and enhance the quality of your soluti