Key skills
Cyber SecurityJavaScriptPHPWordPressPerformance OptimizationCollaborationRemote Work
About this role
Role Overview
Role Overview
A global leader in server-side security is looking forMalware Intelligence Analysts to join a high-priority Malware Processing Team. This role is designed for cybersecurity experts who specialize in investigating web-based threats, reverse engineering malicious code, and developing automated detection methods to protect web hosting infrastructure on a massive scale.
This is a 100% remote position.
Shift & Schedule
The team operates on an on-call/shift rotation to ensure global coverage. Candidates must be comfortable with the following:
- Working 5 days a week during local daytime hours without night shifts.
- A rotating schedule where the two days off will not always fall on Saturday and Sunday.
- Availability for a daily team sync at 3:00 PM CET.
Core Responsibilities
- Analyze various types of malware targeting web hosting servers, including PHP backdoors, JavaScript injections, SEO spam, and redirectors.
- Perform reverse engineering on heavily obfuscated code to uncover its logic and origin.
- Create and refine high-performance detection signatures using complex PCRE (Regex) to ensure proactive protection with minimal false positives.
- Research emerging attack techniques targeting CMS platforms (e.g., WordPress), plugins, and themes.
- Evaluate the impact of threats to prevent breaking files or websites during the mitigation process.
- Publish research on new security threats to contribute to the global cybersecurity community.
Requirements
- 3+ years of professional experience with PHP and JavaScript, with a focus on interpreting and deconstructing complex code logic.
- 2+ years of experience with WordPress (CMS), including a deep understanding of its architecture and vulnerabilities.
- Expertise in Regular Expressions (PCRE), including performance optimization, anchors (e.g., \A vs ^), and modifiers.
- Proven Web Reverse Engineering skills, specifically in JS/PHP deobfuscation and unpacking malicious payloads.
- Experience cleaning up websites from malware (big plus).
- Experience with web attacks (web application and browser security) and their mitigation methods;
- Solid understanding of web server software and hosting systems architectures.
- English proficiency at an Upper-Intermediate (B2) level or higher for effective international collaboration.
- Openness to engaging via a B2B contract.
Tech Stack
- Cyber Security
- JavaScript
- PHP
- WordPress
Benefits
- Competitive monthly gross salary for B2B engagement.
- Fully remote work environment focused on local daytime shifts.
- Comprehensive professional development through mentorship and knowledge-exchange programs.
- 24 days of paid vacation per year, 10 national holidays, and unlimited sick leaves.
- Compensation for private medical insurance.
- Reimbursement for co-working spaces and gym/sports memberships.
- Recognition programs for innovative ideas and patented contributions.