Malware Intelligence Analyst at CloudLinux

About CloudLinux and Imunify360

Imunify360 is a security suite from CloudLinux Inc, designed to provide automated, multi-layer protection for shared, VPS, and dedicated servers. CloudLinux is a remote-first company building high-performance security and infrastructure products for hosting providers and enterprises. Learn more at imunify360.com and cloudlinux.com.

Role summary

We are seeking a Malware Intelligence Analyst to join the Imunify team. In this fully remote role you will analyse malware that targets web hosting servers, develop detection and remediation logic, and contribute to product improvements that prevent infections for our clients. You will work closely with security engineers, developers, and support teams to improve protection and automation.

Key responsibilities

• Analyse various types of web-based malware and create reproducible samples and tests.
• Develop rules and signatures to detect and block malicious payloads in PHP and JavaScript.
• Refine and improve Web Application Firewall rules and detection heuristics.
• Automate routine processes such as CVE monitoring, patch application, and test validation.
• Collaborate with product, engineering, and support teams to integrate protections and ensure reliable deployments.
• Document analysis results, maintain knowledge base articles, and contribute to technical runbooks.

Requirements

• Excellent knowledge of regular expressions, including PCRE semantics and best practices.
• 3+ years of professional experience working with PHP and JavaScript.
• Experience cleaning up websites infected with malware is a strong advantage.
• Practical experience with web attacks, web application security, and mitigation techniques.
• Solid understanding of web server software, hosting system architectures, and Linux systems.
• Web-based malware reverse engineering skills, such as JavaScript deobfuscation and PHP analysis.
• English proficiency at intermediate level or higher for effective team communication.

Nice to have

• Familiarity with SPF, DKIM, DMARC and mail security concepts.
• Experience with hosting control panels such as cPanel or DirectAdmin and content management systems like WordPress.
• Experience with debugging tools and automation scripting in Bash or Python.

Personal qualities

• Fast learner with a proactive and investigative mindset.
• Strong prioritisation skills and ability to work independently with ambiguous requirements.
• Team player who is open to feedback and collaborates across functions.

Benefits

• Fully remote work with flexible working hours - work from any location worldwide.
• Paid 24 days of vacation per year, plus 10 national holidays and unlimited sick leave.
• Compensation or reimbursement for private medical insurance.
• Co-working and gym or sports reimbursement.
• Budget for education and professional development.

How to apply

Apply via the Workable job link for this posting. By applying you consent to the processing of your personal data as described in CloudLinux's Candidate Privacy Notice at https://cloudlinux.com/candidate-privacy-notice.