Cyber Investigator

10a Labs' Investigations Team is looking for a Cyber Investigator to support high-volume exchange labeling and investigations across a range of cyber abuse areas. This role requires a solid foundation in cybersecurity and a keen ability to assess whether technical content poses real-world harm. 

Investigations may involve exposure to harmful or disturbing content, including malicious code, exploit development, and content designed to facilitate cyberattacks.

• Review and label AI-generated exchanges to assess whether content provides meaningful offensive cyber uplift, distinguishing it from legitimate security research
• Investigate potentially policy-violating activity by querying internal data sources using SQL and Python and cross-referencing open-source information (OSINT)
• Document and share investigative findings with internal stakeholders
• Respond to reactive escalations and on-call leads, including those not caught by existing safety systems

• At least 1–3 years of experience in cybersecurity, Trust & Safety, national security, defense, intelligence, or law enforcement domains 
• Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience 
• Foundational knowledge of cyber threat concepts, including one or more of the following: scaled data extraction, ransomware, local and remote exploits, or offensive security operations
• Familiarity with LLM systems and how AI technology can be misused for cyber operations
• Ability to assess the real-world harm potential of technical content, distinguishing offensive uplift from benign or educational security research
• Strong SQL and Python proficiency for querying data and supporting investigations
• Ability to rapidly context-switch across domains, modalities, and abuse areas in a fast-paced, ambiguous environment
• Ability to clear an insider-threat background check

• Experience with threat intelligence frameworks such as MITRE ATT&CK
• Background in dark web monitoring, OSINT, or cross-platform threat analysis
• Full professional proficiency in Arabic, Chinese, Farsi, Portuguese, Russian, or Spanish
• Relevant certifications such as CompTIA Security+, CEH, or OSCP