We're a fully distributed team and as required by federal law this role is open only to any US citizen based in the US.
Nation states, criminal organizations, and lone wolves attempt to phish businesses, non-profits, and governments 24/7/365. When they succeed it can be extraordinarily destructive, disrupting coronavirus research, impacting a US presidential election, or damaging a country’s national defense. Email is the #1 attack vector, and last year phishing cost US businesses over $9B in direct financial losses.
Security professionals deserve superpowers that make them the heroes in this fight.
Sublime is making email security programmable.
Many companies have tried to solve phishing using black box ML. They've failed for the past 20 years. We're taking a different approach - we've created a DSL to enable security professionals, IT admins, and academic researchers to quickly develop new phishing detection rules. These new, community-built rules can be powered by arbitrary sets of ML models, 3rd party enrichment services, and custom functions. All backed by a GitHub-like system for version control that makes sharing and collaboration easy for the first time ever.
Here's an example of a moderately sophisticated phishing detection rule that is written in Sublime's Message Query Language (MQL):
// rules can detect inbound, internal, or outbound messages
type.inbound
// identify credential theft language in the body using NLU
and any(ml.nlu_classifier(body.current_thread.text).intents,
.name == "cred_theft" and .confidence == "high"
)
// suspicious sender signals
and (
beta.whois(sender.email.domain).days_old <= 30
or profile.by_sender().days_known < 10
or not profile.by_sender().solicited
)
To see more rule examples and for a deeper dive into Sublime, check out our docs or open-source rules feed.
Hiring manager: @Christine Huynh
As our Technical Writer, you will own the production and publishing of technical content by Sublime subject matter experts (SMEs). In partnership with our technical teams (Detection, Machine Learning, and Engineering), you will help craft narratives that connect our technical approach with Sublime’s mission to secure email. This role requires a strategic mindset to translate complex concepts into easy-to-understand use cases or stories that resonate with our security audience. Prior cybersecurity experience required.
At Sublime, you will have an opportunity to:
Experience with any of these is a plus but not a requirement.
Notion, Webflow, Figma
We have a lot of GTM challenges to solve. Here are just a few: