We are redirecting you to the source. If you are not redirected in 3 seconds, please click here.

Network Engineer (Anti-Censorship)-Remote at CXM Direct LLC. Position Title:. Network Resilience Engineer – Anti-Censorship Infrastructure. . Reporting Line:. Reports directly to the Head of Infrastructure / CTO. . Location:. Remote – Open globally (preference for time zones overlapping Asia and Europe). General Purpose. Design, deploy, and maintain resilient network infrastructure to ensure uninterrupted access to our services in regions facing heavy internet censorship (e.g., China, India, Middle East). This role focuses on building robust proxy and obfuscation layers, traffic masking strategies, and automated failover mechanisms to maintain service reliability under adversarial network conditions.. As a Network Resilience Engineer, you’ll serve as the technical owner of our anti-censorship stack — blending deep networking knowledge, scripting, and creative problem-solving to deliver an open and accessible internet experience.. Specific Objectives (first ~12 months). Design, implement, and maintain proxy and obfuscation stacks (e.g., Shadowsocks, obfs4proxy, Cloudflare Tunnel) . Develop a robust monitoring framework for censorship-related disruptions such as DPI, DNS poisoning, and TCP resets . Establish automated strategies for IP rotation, traffic masking, and intelligent failover . Integrate obfuscation layers with backend services to ensure seamless connectivity . Research and adopt emerging circumvention techniques (e.g., TLS camouflage, domain fronting, randomized transports) and Chocolate Protocols. Implement observability, logging, and analytics for tunnel health and anomaly detection . Collaborate with security, backend, and DevOps teams to strengthen resilience and redundancy . Key Activities. Architect and maintain multi-layered proxy infrastructure across distributed environments . Deploy and manage tunneling technologies (e.g., V2Ray, WireGuard, Cloudflare Spectrum/Tunnel) . Monitor network traffic to identify and mitigate censorship tactics in real time . Automate configuration, deployment, and scaling using tools like Terraform, Ansible, or GitHub Actions . Conduct research into censorship techniques and propose adaptive countermeasures . Collaborate cross-functionally to ensure application reliability under censorship stress . Develop internal documentation and runbooks for incident response and recovery . Evaluate and implement TLS fingerprinting and evasion strategies using libraries like uTLS . Key Competences. Strong Linux system administration and networking fundamentals . Deep familiarity with proxy/tunneling technologies (Shadowsocks, V2Ray, obfs4proxy, WireGuard, etc.) . Hands-on understanding of censorship mechanisms (deep packet inspection, IP blocking, DNS tampering) . Proficient in scripting languages such as Bash and Python . Experience with containerization (Docker, Kubernetes, ECS) and automation pipelines (CI/CD) . Knowledge of TLS camouflage and randomized transport protocols . Understanding of Cloudflare services (Spectrum, Tunnel, Magic Transit) and similar platforms . Optional but valuable: familiarity with BGP security, RPKI, and route-hijack prevention . Experience with Go or Rust to customize or build lightweight proxy transports. Likely Current Job. Network / Systems Engineer managing proxy or tunneling infrastructure . DevOps / SRE professional with strong network automation experience . Security Engineer specializing in encrypted communications and anti-censorship systems . Backend or Infrastructure Engineer with a focus on networking and traffic optimization . Company Location: Pakistan.