AI2CYBER

• Design, develop and maintain our container analysis and hardening infrastructure to ensure the security and reliability of our containerized applications. • Collaborate with cross-functional teams to identify system requirements and design efficient and scalable solutions. • Write clean, efficient and maintainable code in C/C++, Python, and other relevant languages. • Utilize static and dynamic code analysis tools, such as LLVM, eBPF and similar technologies, to identify vulnerabilities and optimize system performance. • Implement and maintain container technologies like Docker and Kubernetes to support our cloud computing environment. • Automate deployment and configuration processes to streamline operations. • Stay up-to-date with the latest advancements in system programming, containerization and open-source technologies. • Provide technical guidance and support to junior team members when required. • Collaborate effectively with stakeholders and communicate project status, risks and challenges.

• Tear apart APKs and native libs to find vulnerabilities, logic bombs, and covert payloads. • Use tools like Frida, Ghidra, IDA Pro, and JADX to expose hidden internals and bad practices. • Break obfuscation, fingerprint malware, and reverse custom protocols. • Analyze both Java/Kotlin and native (C/C++) code—static and runtime. • Design anti-tamper and anti-reversing layers that slow down the next you. • Guide dev teams like a ghost in the machine—building secure-by-default code. • Stay ahead of Android threat actors. If it’s zero-day, you already saw it coming. • Drop reports that read like threat actor confessionals—because you know how they think.

• Conduct penetration testing and vulnerability assessments to identify security risks and threats. • Develop and execute security testing plans and procedures. • Identify and exploit vulnerabilities in a wide range of technologies, including web applications, networks and operating systems. • Develop and maintain custom tools and scripts for penetration testing. • Conduct social engineering assessments to identify potential security weaknesses. • Collaborate with clients to understand their security needs and provide recommendations on how to improve their security posture. • Participate in incident response activities and support clients during security incidents. • Continuously research and keep up-to-date with emerging security threats, trends and best practices in penetration testing. • Provide mentorship and guidance to junior team members, when applicable.

• Develop novel reinforcement learning algorithms to solve complex, real-world problems. • Integrate Large Language Models (LLMs) to enhance agent reasoning, threat intelligence, or human-machine interactions. • Implement and extend Message Control Protocol (MCP) to enable coordinated behavior across modular AI components or multi-agent systems. • Prototype new methods and help transition successful prototypes into deployed solutions. • Collaborate with cross-functional teams (Data Science, Engineering, Product) to integrate and deploy RL models in production. • Conduct thorough evaluations of model performance using appropriate experimental design and statistical analysis. • Write clean, maintainable and well-documented code. • Participate in code reviews and ensure the code quality of your team. • Troubleshoot and debug complex software issues.

• Analyze threat actor activity, campaigns, malware families, and TTP evolution. • Produce actionable intelligence reports for SOC, IR, and leadership. • Conduct threat landscape assessments and sector-specific risk analysis. • Track and profile APT groups, financially motivated actors, and emerging threats. • Extract and correlate IOCs (domains, IPs, hashes, infrastructure patterns). • Map adversary techniques to MITRE ATT&CK. • Analyze malware behavior reports and sandbox outputs. • Review PCAPs, logs, and telemetry to identify patterns and anomalies. • Support detection rule development (Sigma, YARA, Splunk, EDR queries). • Work with STIX/TAXII feeds and threat intelligence platforms. • Assist in automation of ingestion, normalization, and correlation pipelines. • Contribute to intelligence scoring models (risk scoring, actor confidence, exploit maturity). • Validate intelligence through internal telemetry and honeypot data (if applicable). • Support SOC during active investigations. • Provide adversary insights during incident response. • Contribute to purple-team exercises and threat emulation scenarios. • Present findings to technical and executive stakeholders.

• Design, build, and maintain **secure, scalable Python backends** (APIs, data pipelines, integrations). • Develop **React/TypeScript frontends** for dashboards, CTI visualizations, and analyst workflows. • Architect and optimize databases (MySQL, MongoDB, PostgreSQL). • Contribute to data ingestion, parsing, and correlation pipelines. • Collaborate with cybersecurity analysts and red/blue teams to integrate detection and response logic. • Ensure coding excellence: clean, testable, efficient, and secure. • Take ownership of technical design, code reviews, and mentoring of junior engineers.

Role Description We are seeking a highly skilled Cyber Threat Intelligence (CTI) Analyst based in Greece to join our Threat Intelligence team. The ideal candidate is technically strong, analytically rigorous, and deeply familiar with adversary tradecraft. This role goes beyond monitoring feeds. You will analyze adversary behavior, correlate multi-source intelligence, map activity to MITRE ATT&CK, and produce actionable intelligence that drives detection engineering, incident response, and strategic security decisions. You will operate at the intersection of intelligence analysis, detection engineering, and adversary emulation. Responsibilities - Strategic & Tactical Intelligence - Analyze threat actor activity, campaigns, malware families, and TTP evolution. - Produce actionable intelligence reports for SOC, IR, and leadership. - Conduct threat landscape assessments and sector-specific risk analysis. - Track and profile APT groups, financially motivated actors, and emerging threats. - Technical Analysis - Extract and correlate IOCs (domains, IPs, hashes, infrastructure patterns). - Map adversary techniques to MITRE ATT&CK. - Analyze malware behavior reports and sandbox outputs. - Review PCAPs, logs, and telemetry to identify patterns and anomalies. - Support detection rule development (Sigma, YARA, Splunk, EDR queries). - Intelligence Engineering & Automation - Work with STIX/TAXII feeds and threat intelligence platforms. - Assist in automation of ingestion, normalization, and correlation pipelines. - Contribute to intelligence scoring models (risk scoring, actor confidence, exploit maturity). - Validate intelligence through internal telemetry and honeypot data (if applicable). - Cross-Team Collaboration - Support SOC during active investigations. - Provide adversary insights during incident response. - Contribute to purple-team exercises and threat emulation scenarios. - Present findings to technical and executive stakeholders. Qualifications - Strong understanding of: - Adversary TTPs - Kill Chain & MITRE ATT&CK framework - IOC lifecycle & enrichment techniques - Experience with: - Threat Intelligence Platforms (TIPs) - Malware analysis reports - Log analysis (Splunk, ELK, etc.) - OSINT collection techniques - Knowledge of: - STIX/TAXII - YARA / Sigma rule creation - Network protocols & traffic analysis - Windows & Linux security telemetry - Scripting capability (Python preferred) for data processing and automation. Preferred / Advanced Qualifications - Experience tracking specific threat actors (APT28, Lazarus, FIN7, etc.) - Familiarity with exploit development trends and CVE weaponization timelines - Experience with honeypots and telemetry-driven intelligence - Understanding of ransomware ecosystems & initial access brokers - Knowledge of ML-assisted threat detection (bonus) Analytical & Soft Skills - Strong hypothesis-driven analytical thinking - Ability to differentiate noise from signal - Clear technical writing skills - Ability to brief senior leadership concisely - Operational security awareness Nice to Have Certifications - GIAC (GCTI, GCIA, GCED) - OSCP / OSCE - CISSP - SANS CTI-related certifications Benefits - Highly competitive salary reviewed upwards on a regular basis. - Working from home: Hit your goals from the comfort of your home because we value performance, not the place. - Participation in state-of-the-art project and tech challenges and participation in large-scale projects. - Personal and professional development, amongst industry experts and talented people. - Continuous learning, having access to board resources. - Onboarding plan and training so that you have a smooth induction and feel confident and ready to take over your new role. - Equipment support so you have all the tools to do effectively and efficiently your work. - No dress code as we want you to be as comfortable as possible. Company Description At AI2CYBER, we are a cybersecurity firm dedicated to providing cutting-edge solutions to protect businesses and individuals from evolving cyber threats. Our mission is to empower organisations to navigate the complex cybersecurity landscape with confidence. We believe that by combining robust security solutions, continuous improvement, and a proactive mindset, we can help our clients stay one step ahead of cyber attackers. We are committed to building a safer digital world and are passionate about making a positive impact in the industry. This is a full-time position with competitive salary and benefits. If you have a passion for cyber threat intelligence and are looking for an exciting opportunity to work with cutting-edge technology, we would love to hear from you! Note: All applications will be treated with strict confidentiality. To apply, please send us your CV at careers@ai2cyber.com This position is available only for Greek residents.

Role Description We are hunting for a world-class Android Reverse Engineer based in Greece, who speaks bytecode fluently, thinks in opcodes, and lives to dismantle and harden Android applications. You’ll be deep in APK guts, weaponizing Frida, Ghidra, and friends, turning shady behaviors into actionable intel - and turning your knowledge into hardened, unbreakable apps. What You'll Do: - Tear apart APKs and native libs to find vulnerabilities, logic bombs, and covert payloads. - Use tools like Frida, Ghidra, IDA Pro, and JADX to expose hidden internals and bad practices. - Break obfuscation, fingerprint malware, and reverse custom protocols. - Analyze both Java/Kotlin and native (C/C++) code—static and runtime. - Design anti-tamper and anti-reversing layers that slow down the next you. - Guide dev teams like a ghost in the machine—building secure-by-default code. - Stay ahead of Android threat actors. If it’s zero-day, you already saw it coming. - Drop reports that read like threat actor confessionals—because you know how they think. Qualifications - 5+ years doing deep Android RE, mobile app hacking, or security research (or a Master’s with serious project chops). - Mastery of Android internals—ART/Dalvik, Zygote, Binder, the works. - Fluency with Frida, Ghidra, APKTool, Dex2Jar, Magisk modules, Xposed—whatever works. - Solid coding skills in Java/Kotlin and native C/C++ (ARM assembly a big plus). - Familiarity with obfuscation frameworks (DexGuard, ProGuard) and how to beat them. - Strong instinct for threat modeling, exploit chains, and mobile malware ops. - Understanding of OWASP Mobile Top 10—but you’ve probably written a better list. Bonus Points If You - Have dropped 0-days or built open-source tools. - Know how malware hides, mutates, persists. - Hold OSCP, OSCE, or any badge earned the hard way. - Have presented at DEF CON, Black Hat, or dropped blogs that made people sweat. Benefits - Remote-first culture. Hacker hours. We don’t care where you work—as long as you deliver. - Competitive compensation + performance-based bonuses. - Training budget—go break new tools or build them. - A chance to build the tools you wish existed. - A team that gets it. Ready to Join? Send your resume, war stories (or GitHub), and anything that proves you're the real deal to careers@ai2cyber.com . Note: All applications will be treated with strict confidentiality. This position is available only for Greek residents.

Role Description We are looking for an experienced Systems Developer based in Greece to join our dynamic team, comprised of some of the industry’s most skilled and technically proficient managers. Our leaders are renowned experts, having spoken at prestigious conferences like DEFCON and Black Hat. In this role, you will be pivotal in shaping the security framework of our container environment. You will be hands-on in designing, developing, and maintaining our container analysis and hardening infrastructure. This position offers ample opportunities for continuous learning and growth as you work closely with our managers on critical projects. You will work with a variety of programming languages and tools, including: - C/C++ - Python - Linux - eBPF - LLVM - Kubernetes - Docker - Other open-source technologies Your expertise will be crucial in ensuring the security and reliability of our container environment, safeguarding our systems and data. Responsibilities - Design, develop and maintain our container analysis and hardening infrastructure to ensure the security and reliability of our containerized applications. - Collaborate with cross-functional teams to identify system requirements and design efficient and scalable solutions. - Write clean, efficient and maintainable code in C/C++, Python, and other relevant languages. - Utilize static and dynamic code analysis tools, such as LLVM, eBPF and similar technologies, to identify vulnerabilities and optimize system performance. - Implement and maintain container technologies like Docker and Kubernetes to support our cloud computing environment. - Automate deployment and configuration processes to streamline operations. - Stay up-to-date with the latest advancements in system programming, containerization and open-source technologies. - Provide technical guidance and support to junior team members when required. - Collaborate effectively with stakeholders and communicate project status, risks and challenges. Qualifications - Bachelor’s or Master’s degree in Computer Science, Software Engineering, or a related field. - A minimum of 5 years of experience in system-level programming. - Strong proficiency in C/C++, Python and Linux. - Familiarity with other open-source technologies, frameworks and scripting languages. - In-depth knowledge of LLVM, eBPF and similar static and dynamic code analysis tools. - Experience working with cloud computing platforms and container technologies, including Docker and Kubernetes. - Familiarity with Cilium and Pixie is a plus. - Excellent problem-solving skills and a passion for writing clean, efficient code. - Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams. - Ability to thrive in a fast-paced, agile environment and handle multiple tasks simultaneously. - Strong attention to detail and a commitment to delivering high-quality work. Benefits - Earn a highly competitive salary that is regularly reviewed and can even be adjusted upwards based on your outstanding performance. - Enjoy the freedom and flexibility of working from the comfort of your own home. We prioritize results over the location, so you can achieve your goals from anywhere. - Be part of state-of-the-art projects and immerse yourself in exciting tech challenges. Contribute to large-scale projects that push the boundaries of innovation and make a real impact. - Experience unparalleled personal and professional development as you collaborate with industry experts and top talented individuals. Learn from the best and continuously expand your skills. Company Description At AI2CYBER, we are a cybersecurity firm dedicated to providing cutting-edge solutions to protect businesses and individuals from evolving cyber threats. Our mission is to empower organisations to navigate the complex cybersecurity landscape with confidence. We believe that by combining robust security solutions, continuous improvement, and a proactive mindset, we can help our clients stay one step ahead of cyber attackers. We are committed to building a safer digital world and are passionate about making a positive impact in the industry. Note: All applications will be treated with strict confidentiality. This position is available only for Greek residents.

Role Description We are seeking an experienced Tender Specialist to manage the tendering process for European and Greek public sector projects, with a particular focus on Cybersecurity, AI, and IT. The successful candidate will be responsible for researching tenders, preparing proposals, and overseeing procurement activities across the EU and public sector. The ideal candidate will have a solid understanding of public procurement regulations and a proven ability to prepare and submit high-quality, compliant tender proposals. Tender Management - Identify, analyse, and manage tender opportunities across the EU and Greek public sector, particularly in the fields of Cybersecurity, AI, and IT. - Research and monitor tender portals and publications for relevant opportunities. - Review tender documents and develop strategic bid approaches. - Coordinate and prepare all necessary documentation for tender submissions, ensuring compliance with EU and public sector procurement regulations. Proposal Writing - Lead the writing and preparation of high-quality tender proposals tailored to the specific requirements of each opportunity. - Collaborate with internal teams to gather input, ensuring technical and financial accuracy. Procurement - Oversee and manage procurement processes within the EU and public sector. - Ensure full adherence to applicable local and international procurement regulations. Stakeholder Management - Serve as the main contact point for tender-related communications across the EU and public sector. - Maintain relationships with key stakeholders and provide progress updates to management. Post-Tender Activities - Manage clarifications, negotiations, and contract finalisation. - Conduct post-bid analysis and maintain complete tender records. Qualifications - Bachelor’s degree in Business, Procurement, Law, or a related field (certifications preferred). - 3–5 years of experience in tender management, with a focus on the European and Greek public sector. - Strong knowledge of EU and public sector procurement processes, particularly in Cybersecurity, AI, and IT. - Proven track record in researching tenders, writing proposals, and winning bids. - Excellent organizational and communication skills. - Proficiency in Microsoft Office and e-tendering platforms. - Fluency in English (additional European languages are an advantage). Benefits - Highly competitive salary, reviewed regularly. - Remote work flexibility — performance-focused environment. - Personal and professional development among experienced industry experts. - Continuous learning opportunities and access to company resources. - Equipment and software support to perform your work effectively. - No dress code — we value comfort and authenticity at work.