Entry Level Security Researcher Jobs
New grad security researcher jobs are open to recent graduates and entry level candidates with zero to two years of experience, where a strong portfolio or hands-on internship work can matter more than a long resume. Most openings mix on-site, remote, and hybrid settings across Technology & Software, Electronics & Hardware, and Education, with employers like Distyl, Apple, and Kiddom hiring at this level now.
Find JobsOverview
Showing 5 of 73+ Entry Level Security Researcher jobs
About this role:
We are seeking a Lead Cyber Security Research Engineer to perform adversary emulation by simulating real‑world threat actor attacks. This role supports Wells Fargo Lines of Business by providing actionable insights into indicators of compromise and adversary tools, tactics, and procedures (TTPs), enabling improved detection and response capabilities across the enterprise.
The successful candidate will design, create, and execute end‑to‑end attack chains in collaboration with Threat Simulation team members and will debrief leadership and business owners to demonstrate how chained weaknesses can be combined to achieve higher‑impact outcomes. The role requires the ability to leverage advanced offensive security tools, develop proof‑of‑concept exploits, and clearly document attack paths so they can be reliably reproduced and used to inform defensive improvements.
This position is responsible for researching, analyzing, designing, testing, and implementing complex technologies, systems, and applications in support of adversarial operations. The role reports to Cyber Threat Management – Offensive Security Research Team (OSRT - Red Team).
In this role, you will:
- Lead initiatives including the research, analysis, design, testing and implementation of the most complex computer network security and protection technologies for company information and network systems and applications
- Act as professional red teamer utilizing hacking tools to modify or create proof of concept exploits that mimic techniques of the most sophisticated attackers
- Review and analyze complex advanced computer security incident response activities and technical investigations of information security related incidents
- Identify vulnerabilities and associate those to a severity rating by deriving impact and ease of exploit
- Conduct security risk assessments to ensure compliance with corporate information security policies and adherence to best practices
- Communicate to the line of business on the inherent risks, providing meaningful mitigation strategies
- Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
Required Qualifications:
- 5+ years of Cyber Security Research experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
- 4+ years of information security experience in converged testing (red teaming)
- 4+ years of performing white hat exploitation and post-exploitation experience
- 2+ year of experience in network, social, and physical domains
- Proven ability to translate complex technical concepts into clear, actionable insights for audiences ranging from deep technical practitioners to business partners and executive leadership.
Desired Qualifications:
- Knowledge of Python, PowerShell, and Shell Scripting
- Previous experience with common command-and-control (C2) frameworks such as Cobalt Strike and Mythic or other advanced red team tooling
- Knowledge and understanding of information security risk assessment procedures, risk mitigation or remediation
- Experience in one or a combination of the following: creating proofs of concept, creating exploits, or reverse engineering
- Experience performing security assessments against cloud service providers (Azure/ GCP) and/or AI technologies
- Ability to handle confidential material in a professional manner
- Knowledge and understanding of banking or financial services industry
- Experience working in a large enterprise environment
- Knowledge and understanding of system/application architecture and design concepts
Job Expectations:
- This position offers a hybrid work schedule
- This position is not eligible for Visa sponsorship
- Demonstrate proficiency in using AI‑assisted development and analysis tools (e.g., GitHub Copilot and approved code‑centric agents)
- Leverage AI to accelerate system design, coding, testing, analysis, and troubleshooting
- Apply strong technical judgment when validating and integrating AI‑assisted outputs into solutions
- Understand and account for model limitations, security risks, and operational considerations
- Apply AI responsibly in development and production environments
- Ensure AI usage aligns with security, compliance, privacy, and ethical standards
Posting End Date:
5 Jul 2026- Job posting may come down early due to volume of applicants.
We Value Equal Opportunity
Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.
Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.
Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.
Applicants with Disabilities
To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo.
Drug and Alcohol Policy
Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more.
Wells Fargo Recruitment and Hiring Requirements:
a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.
See All 73 Entry Level Security Researcher Jobs
Find roles that match your experience and apply in just a few clicks.
Find JobsEntry Level Security Researcher Job Market
Who's Hiring
- Distyl11

- Apple9
- Kiddom2

- Qualcomm2
- MSCI2

Top Industries Hiring
- Technology & Software30
- Electronics & Hardware12
- Education11
- Investment & Asset Management10
- Healthcare & Medical Services6
Entry Level Security Researcher Jobs: Frequently Asked Questions
How do I get an entry level security researcher job?
Entry level security researcher roles reward candidates who can demonstrate hands-on skills over credentials alone. Build a portfolio with capture-the-flag competition writeups, personal lab work, or open-source vulnerability research. Familiarity with tools like Burp Suite, Metasploit, or Wireshark signals readiness to hiring teams. Internships, bug bounty submissions, and relevant certifications such as CompTIA Security+ or CEH also give candidates a concrete edge when applying for first roles.
Which companies hire entry level security researchers?
Companies hiring entry level security researchers right now include Distyl, Apple, and Kiddom, based on current listings on Migrate Mate as of July 2026. At this level, hiring comes from a broad mix of employers including defense contractors, cybersecurity consultancies, technology firms, and large enterprises building out their internal security teams.
Are there remote entry level security researcher jobs?
Yes, though fully remote roles are more selective at the entry level than at senior levels. About 27% of entry level security researcher openings are remote or hybrid as of July 2026, so candidates willing to consider on-site or hybrid positions will have a wider pool of opportunities to apply to.
Are these new grad security researcher jobs?
Yes, these listings include new grad, recent graduate, and junior security researcher roles. A posting is new-grad friendly when it welcomes zero to two years of experience, accepts internships or academic project work in place of professional history, or explicitly invites candidates who bring a strong portfolio rather than a long resume. Searching for junior or new grad alongside security researcher surfaces the most accessible openings.
Which industries hire the most entry level security researchers?
Entry Level security researcher roles concentrate in Technology & Software, Electronics & Hardware, and Education, based on current listings on Migrate Mate as of July 2026. These sectors drive hiring at the entry level because they handle sensitive data, face regulatory compliance requirements, or operate critical infrastructure that demands dedicated security expertise.