SecurityResearcher

Glow is on a mission to transform how enterprises proactively protect the modern endpoint with an agentic-first approach. Our platform gives security teams the visibility, context, and autonomous remediation they've never had before — across every endpoint, application, and AI tool in the environment. We move fast, we build things that matter, and we believe security should be a force multiplier for the business, not a bottleneck. Let's Glow. SUMMARY We're looking for a multi-disciplinary security researcher to play a vital role in researching, planning, implementing, and maintaining security solutions for organizational adoption and usage of software in general, and AI-native software in particular, in collaboration with all product development departments.   WHAT YOU’LL DO - Investigating how software in general, and AI-powered tools (coding assistants, agents, LLM-integrated IDEs, etc.) are used inside organizations, and where they introduce risk: data leakage, prompt injection, supply chain exposure, malicious extensions, and so on. - Building a data-driven picture of real-world usage and adoption to prioritize what we protect against, using telemetry, surveys, and external research. - Designing detection and prevention approaches for these risks, and working with engineering, product, and data teams to ship them in our product. - Auditing implementations against the threat models you develop and iterate. WHAT YOU’LL BRING - Experience in security research, threat research, or a closely related field. - Comfortable conducting data analysis in SQL and scripting languages (Python, etc.); much of this role is finding signal in messy real-world data. - Strong written and verbal communication; you'll be explaining threat models to PMs and engineers regularly. - A track record of taking research from “interesting finding” to “shipped capability.” Advantages - Prior work on LLM/AI application security, such as prompt injection, agent security, model supply chain, secur