R&D Engineer (Python/Go/ML) - API Abuse

Short facts about us:

• We are a global remote-first team of 100+ people on 4 continents and in 15+ countries.
• We have been protecting our clients since 2014.
• The company has raised over $10M in investments.
• More than 200 customers around the world, including Fortune 500, Nasdaq, and high-growth startups choose Wallarm to protect their API and web applications.
• The company passed Y Combinator, the most prestigious incubator in Silicon Valley, from which Dropbox, Stripe, Docker, etc. came out.

Our product:

Wallarm API security solutions provide proven performance to support innovative companies serving millions of users and billions of API requests per month. Hundreds of Security and DevOps teams globally use Wallarm daily to:

1. Discover. See every asset across your entire attack surface—from cloud environments to every API endpoint with auto-discovery capabilities.
2. Protect. A single suite that goes beyond OWASP Top 10 for full coverage for API-specific threats, account takeover, malicious bots, L7 DDoS, and more.
3. Respond. Streamline incident response with complete visibility, smart triggers, and active threat verification.
4. Test. Automate security testing of your APIs and web assets. Prioritize remediation for every asset, in every environment.

Our technology stack:

• The system management interface is written in React and is a Single Page Application. 
• We use Ruby and Golang for backend development.
• Some components and modules are written in Python (Data Science/ML). 
• Cloud deployed with Kubernetes/Helm and Terraform
• Main frameworks used: Ruby On Rails (API only)/Sinatra; gin for Golang
• Main databases used: PostgreSQL, Elasticsearch, Riak/S3, Tarantool, and Redis

About this opportunity:

We’re looking for an R&D engineer to improve our API Abuse prevention product, which provides comprehensive real-time protection against detrimental automated behaviors, including malicious bots, account takeover (ATO), credential stuffing, application layer (L7) DDoS attacks, and more.

You will:

• Develop new functionality and provide support for existing features in our software using Python (70%) and Go;
• Work on API abuse prevention algorithms using ML instruments;
• Participate in open-source software development of our products: for example, GoTestWAF;
• Collaborate with team members and cross-functional teams.

Technical stack for this position: Python, Go, Numpy, Pandas, FastAPI, Celery.

In this role you need:

• 4+ years of experience with Python 3 and microservice architecture;

• Familiarity with at least one of Python libraries for data science like NumPy / Pandas / Scikit-learn / Tensorflow / PyTorch / Matplotlib;

• Bachelor's degree in Computer Science, Mathematics, Statistics, etc.

• Understanding of parallel and concurrent programming principles;

• Hands-on experience with high-loaded systems;

• Good understanding of modern software architecture.

Nice to have:

• Experience with Go;

• Practical experience with ML;

• Proven technical background in the security domain;

• Experience in design and implementing anti-abuse solutions would be a huge plus.

What we offer:

• Ability to work on a product that makes the Internet safer

• Completely remote work and flexible working hours

• Competitive salary and bonuses

• Paid days off

• Medical insurance

• Working equipment

• Professional development and career growth