Kratos Lab is a Singapore-based AI-first cybersecurity startup building KratosWAF—the world's first AI-driven Web Application Firewall middleware that deploys in 5 minutes (not hours or days). We're on a mission to democratize enterprise-grade web security for developers who want to build, not babysit security rules.
* OUR MISSION (THIS IS WHAT MATTERS)
We believe web security shouldn't require a PhD.
Right now, 30,000 websites get hacked daily. Why? Because traditional WAFs are complex, expensive, and require specialized security knowledge most developers don't have.
We're Kratos Lab—and we're on a mission to change that.
KratosWAF is the world's first AI-powered WAF middleware that:
- Deploys in 5 minutes (not days of configuration hell)
- Costs 40-60% less than enterprise solutions like Cloudflare
- Protects with 99% accuracy using AI—no manual rule updates needed
- Lets ANYONE protect their app, even with little or no security knowledge
We're entering a $20B+ market, but more importantly—we're making the internet safer for everyone.
* WHY THIS ROLE EXISTS
You're not here to just "do marketing."
Your mission: Build awareness that web security can be simple, accessible, and AI-powered.
Right now, thousands of developers are:
- Building apps without proper security because WAFs are too complex
- Getting hacked because they don't know where to start
- Paying enterprise prices for features they'll never use
- Spending hours configuring rules they don't understand
Your job is to reach them and show them there's a better way.
You'll be the voice in security communities saying:
- "You don't need to be a security expert to protect your app"
- "AI can handle the complexity while you focus on building"
- "Enterprise-grade security shouldn't cost enterprise prices"
If this mission excites you more than the job title, keep reading.
* WHO WE'RE LOOKING FOR
This isn't for you if:
- You just want another line on your resume
- You see this as a stepping stone to "real marketing jobs"
- You don't actually care about web security or helping developers
- You think marketing is about tricking people to click buttons
This IS for you if:
- You're PASSIONATE about web security and want more people to care about it too
- You're active in developer/security communities because you genuinely love these spaces
- You share our vision: web security should be accessible to everyone, not just experts
- You believe AI can democratize cybersecurity and want to spread that message
- You want to build something meaningful, not just hit KPIs
- You see yourself as an educator and advocate, not just a marketer
* THE REAL TALK
We need someone who:
1. Lives in Web Security Communities
- You're already on Reddit (r/netsec, r/webdev), Discord servers, Twitter/X, Stack Overflow
- You follow security researchers, read vulnerability reports, understand the OWASP Top 10
- You don't need us to explain why SQL injection is dangerous—you've seen the damage
- When you talk about web security, people listen because you're one of them
2. Believes in Our Mission
- You're frustrated that good security is so hard to implement
- You've seen small businesses or solo developers get hacked and thought "this shouldn't happen"
- You believe AI can level the playing field between attackers and defenders
- You want to be part of making the internet safer for everyone, not just Fortune 500 companies
3. Can Build Awareness at Scale with AI
- You use ChatGPT/Claude/Gemini to create content that educates and engages
- You know (or want to learn) automation tools like n8n, Make.com to 10x your reach
- You can turn technical concepts into stories developers actually care about
- You're not just posting content—you're starting conversations
* WHAT YOU'LL ACTUALLY DO
Your Core Mission: Build Awareness
Make developers AWARE that:
- They need web security (many don't realize how vulnerable they are)
- Traditional WAFs are unnecessarily complex and expensive
- AI-powered security exists and changes everything
- KratosWAF lets them protect their apps in 5 minutes, even without security expertise
How You'll Do It (60% Content Creation)
Educational Content:
- Write blog posts that explain web security threats in plain language
- Create guides: "5 Signs Your App Needs a WAF (Even If You're Not a Security Expert)"
- Break down complex attacks (SQL injection, XSS, CSRF) so anyone can understand
- Show real examples: "This is what happened when X got hacked—here's how KratosWAF stops it"
Community Content:
- Share insights in Reddit threads where developers ask "Do I need a WAF?"
- Create Twitter/X threads explaining why AI-powered security matters
- Write comparison guides: "KratosWAF vs Cloudflare: What's Right for Solo Developers?"
- Produce video scripts, infographics making security concepts visual and simple
Use AI to scale: Turn 1 article into 20 social posts, 5 threads, 3 videos, 10 community comments
Community Engagement (25%)
Be Present Where Developers Are:
- Monitor security communities for people asking about WAFs, app security, getting hacked
- Provide genuine value first—answer questions, share knowledge, build trust
- When appropriate, introduce KratosWAF as the solution that makes security accessible
- Build relationships with security influencers who share our mission
Listen and Learn:
- Track what developers struggle with regarding security
- Identify common misconceptions: "I don't need security" or "WAFs are only for enterprises"
- Feed insights back to team to improve messaging and product
Waitlist Growth (10%)
- Drive developer signups who resonate with our mission
- A/B test messaging that emphasizes accessibility and simplicity
- Track what resonates: "5-minute setup" vs "No security knowledge needed" vs "40% cheaper"
Workflow Automation (5%)
- Build AI-powered systems to scale community monitoring and engagement
- Automate content distribution across platforms
- Create dashboards tracking awareness metrics
* YOU MUST HAVE
Non-Negotiables:
1. Passion + Community Presence
- Genuinely passionate about web security (we'll know if you're faking it)
- Active in security/developer communities (tell us which ones and show proof)
- You can discuss OWASP Top 10, common vulnerabilities, why WAFs matter
2. Belief in the Mission
- You share our vision: web security should be accessible to everyone
- You're excited about AI democratizing cybersecurity
- You want to help developers who don't have security expertise protect their apps
3. Content + AI Skills
- Heavy AI tool user (ChatGPT/Claude/Gemini) with web security knowledge.
- Portfolio showing you can create educational technical content
4. 10x Mindset
- You work smart using AI and automation to scale your impact
- Results-oriented: you measure awareness and engagement, not just "posts published"
* MASSIVE BONUS POINTS
- Experience with n8n, Make.com, Zapier (show us workflows you've built)
- Personal brand in security communities (blog, Twitter, YouTube)
- You've taught others about web security (tutorials, mentoring, talks)
- You've been hacked or seen someone get hacked—you understand the pain
- Prompt engineering skills to maximize AI content quality
- You've built something that helps developers learn security
* WHAT YOU GET
The Impact (This Is Why You'll Love It):
- Direct impact on internet safety: Your work helps developers protect millions of users
- Mission-driven work: You're not selling widgets—you're democratizing cybersecurity
- Voice of the company: You'll shape how we talk about AI-powered security
- Real change: Watch developers go from "security is too hard" to "I deployed in 5 minutes"
During Internship (3-6 months):
- Competitive stipend + premium AI tools subscriptions
- Direct access to CEO Karen New (straight-shooting, forward-thinking mentor)
- Creative freedom to experiment with content and community strategies
- Byline credit—build your personal brand as a security advocate
* Permanent Conversion = Life-Changing:
- Market-rate salary + SHARE OPTIONS (EQUITY)
- Own a piece of the mission: Your equity grows as we democratize web security
- Leadership path: Build and lead our community marketing function
- Early-stage equity in a $20B+ market = potential for significant upside
Career Value:
- Position yourself as "the person who made security accessible"
- Master AI-powered community marketing
- Build a portfolio showing measurable impact on developer awareness
- Network in AI, security, and startup ecosystems
* WHAT WE EXPECT
Mission Alignment:
- You wake up caring about web security and developer education
- You measure success by "developers protected" not just "content published"
- You represent our values in every community interaction
Results Over Activity:
- Weekly goals: X new community members engaged, Y signups, Z awareness metric improved
- Transparent reporting: what worked, what didn't, what you learned
- Fast iteration: try, measure, adjust, scale what works
10x Productivity:
- Use AI to create quality content at scale
- Build systems that multiply your impact
- Work smart—if something takes 10 hours manually, automate it to 1 hour
Independence + Accountability:
- We give you the mission and goals
- You figure out the AI-powered path to get there
- You own your results and continuously improve
Kindly note that only shortlisted candidates will be notified.
Only people with knowledge on Web security can apply.
Related Job Searches:
- Company:
Kratos Lab - Designation:
Web Security cum Marketing Intern - Profession:
IT / Information Technology - Industry:
Computer and IT