About the role
About Iru
Iru is the AI-powered security & IT platform used by the world’s fastest-growing companies to secure their users, apps, and devices. Built for the AI era, Iru unifies identity & access, endpoint security & management, and compliance automation—collapsing the stack and giving IT & security time and control back.
Iru is backed by some of the smartest investors in tech—General Catalyst, Tiger Global, Felicis, Greycroft, and First Round Capital. In July 2024, Iru raised $100 million from General Catalyst, valuing the company at $850 million. Customers include Notion, Cursor, Lovable, Replit, and Mercor, and Iru partners with industry leaders such as ServiceNow and AWS. Iru was named to Forbes’ America’s Best Startup Employers 2025 list for employee engagement and satisfaction.
Iru is the AI-powered security & IT platform used by the world’s fastest-growing companies to secure their users, apps, and devices. Built for the AI era, Iru unifies identity & access, endpoint security & management, and compliance automation—collapsing the stack and giving IT & security time and control back.
Iru is backed by some of the smartest investors in tech—General Catalyst, Tiger Global, Felicis, Greycroft, and First Round Capital. In July 2024, Iru raised $100 million from General Catalyst, valuing the company at $850 million. Customers include Notion, Cursor, Lovable, Replit, and Mercor, and Iru partners with industry leaders such as ServiceNow and AWS. Iru was named to Forbes’ America’s Best Startup Employers 2025 list for employee engagement and satisfaction.
The Opportunity
We are looking for a Security Researcher specializing in Windows and macOS threat detection to join our small, focused Threat Intelligence and Research team. In this role, you'll research, analyze, and develop robust file-based and behavioral detections targeting malware, threat actors, and attack methodologies across both platforms. You'll be a direct contributor to both our EDR and Vulnerability products — bringing research depth that spans threat detection and the full vulnerability lifecycle. You'll also help raise the team's external profile through published research and conference talks. As part of a small team, you'll have significant ownership over your work and a direct impact on the direction of our research and products.Responsibilities
- Perform in-depth analysis of malware and adversarial behavior across Windows and macOS to identify detection opportunities.
- Develop and enhance detection rules and behavioral analytics for both platforms, integrated into our EDR product.
- Collaborate with engineering teams to incorporate detection logic into our cross-platform security agent.
- Actively contribute to both our EDR and vulnerability products — spanning threat detection and the full vulnerability lifecycle: discovery, product coordination,CVE publications/submissions, and public disclosure.
- Research and develop new vulnerability detection methods.
- Continuously monitor emerging threats and trends across Windows and macOS ecosystems.
- Contribute to the product roadmap for both EDR and vulnerability products by surfacing research-driven insights and detection capability recommendations.
- Author blog posts and present findings at industry conferences to contribute to the broader security community.
- Document and communicate research findings clearly, both internally and externally.
Requirements
- Experience developing or contributing to EDR or next-gen antivirus products.
- Experience leveraging AI tools to accelerate threat research, detection development, and analysis workflows.
- Familiarity with both Windows and macOS threat landscapes and platform-specific attack techniques.
- Proficiency with security-focused scripting and data analysis (Python, PowerShell, Bash, etc.).
- Demonstrated ability to assess and prioritize vulnerabilities using industry-standard frameworks and data sources (including advisories, disclosures, severity scoring, and more) with a critical eye for data quality and completeness
Apply for this role
This listing is hosted elsewhere. Applications are handled on the company's site — we don't see them on hire.ee.