Rockefeller Philanthropy Advisors is hiring a Principal Security Researcher for a fully remote, mission-driven role based in the United States. You will lead investigations into attacker behaviors within Google environments and develop weaponized proofs-of-concept to shape the security capabilities protecting thousands of businesses.
What You'll Do
- Lead the development of layered defense strategies combining diverse data sources to enhance security products.
- Investigate identity compromises like account takeover and credential theft to inform threat detection and identity protection features.
- Hunt threat actors in Google environments, analyzing attacker methods for initial access and persistence.
- Test attack paths and develop exploit proofs-of-concept to improve product defenses.
- Identify and validate telemetry signals confirming malicious activity with high confidence.
- Reverse engineer technology to find security weaknesses and undocumented features.
- Document research findings through technical reports, advisories, and blogs.
- Collaborate closely with product, engineering, and security teams to prioritize impactful features and product launches.
- Promote security awareness through media, public speaking, and educational initiatives.
What We're Looking For
- Expert knowledge of Google logs, APIs, and the ability to access and test Google data beyond native tools.
- Proven experience bypassing Google security controls, including MFA, and executing account takeovers.
- Skilled at building reliable weaponized exploit proofs-of-concept for identified vulnerabilities.
- Strong understanding of Google vulnerabilities and threats with hands-on testing in custom labs.
- Ability to shift between red team, system admin, and defender roles with a builder mindset.
- Experience working in multi-tenant environments such as MSPs and Google Workspace business plans.
- Excellent organizational and communication skills with a passion for translating complex security concepts into accessible insights.
Nice to Have
- Knowledge of IT automation tools like PSAs and RMMs.
- Experience with Elastic, Kibana, and security conference presentations or community education.
Technical Stack
- Google logs
- Google APIs
- Elastic
- Kibana
Team & Environment
Collaborate closely with product, engineering, and security teams.
Benefits & Compensation
- Fully remote work environment since inception.
- Generous paid time off including vacation, sick leave, and paid holidays.
- 12 weeks paid parental leave.
- Comprehensive medical, dental, and vision insurance plans.
- 401(k) plan with 5% employer contribution regardless of employee input.
- Life and disability insurance coverage.
- Stock options for all full-time employees.
- $500 one-time reimbursement for home office setup or upgrades.
- Annual education and professional development allowance.
- $75 monthly digital reimbursement.
- Access to coaching and growth platform BetterUp.
Compensation: $210,000 to $240,000 base salary + equity in the form of stock options for all full-time employees.
Work Mode
This is a fully remote position located in the United States.
Rockefeller Philanthropy Advisors fosters an inclusive culture valuing diversity, equity, and belonging.
