דרושים » אבטחת מידע וסייבר » Senior Application Security Researcher

We're looking for an Application Security Researcher to join us. In this critical role, you will assist us in validating our services and environments according to the highest security standards. Also, You will work closely with our R&D and Product teams, and solve complex security problems.
Responsibilities:
Continuously checking and improving security measures to protect our systems.
Reviewing system architecture, design, and code to find and fix security weaknesses before they become a problem.
Helping developers follow secure coding practices and learn how to prevent security risks.
Staying updated on new security threats and best practices to keep our security standards high.
Contributing to our security research blog.

We are seeking an experienced Senior Security Researcher to join our Research department, focusing on low-code/no-code platforms, AI copilots, and generative AI technologies. This role offers a unique opportunity to lead cutting-edge security research and help shape the future of application security in these rapidly evolving fields.

Responsibilities

Conduct thorough research to identify security weaknesses and vulnerabilities within low-code/no-code platforms, AI copilots, and Gen AI technologies.
Perform in-depth analysis of web and API security, identifying potential threats and developing mitigation strategies.
Work closely with cross-functional teams to address security concerns throughout the development lifecycle, particularly in AI and low-code/no-code environments.
Stay up-to-date with the latest industry trends, security threats, and advancements in low-code/no-code and AI technologies.
Develop proof-of-concept exploits, provide recommendations for remediation to affected vendors, and contribute to security detections in the platform.
Contribute to the development of security guidelines, best practices, and standards tailored for low-code/no-code platforms and AI security.
Collaborate with external security researchers and organizations to enhance the security posture of the low-code/no-code and AI landscape.
Conduct publishable research, sharing insights through blog posts, conference talks, and meet-ups to advance the broader security community.

This is a unique opportunity to join an exciting early-stage startup experiencing hyper-growth, with the company more than doubling in size and revenue year over year. on a mission to help organizations deliver safe code faster to accelerate their businesses. Trusted by security teams worldwide, we have a proven track record of success and a culture that values world-class talent.

Application Security as a category is also being redefined, and is at the forefront of this transformation. As the only complete approach to Application Security Posture Management (ASPM), is resetting the standards for AppSec and trailblazing this hot new category in the market.

Were looking for a driven, entrepreneurial senior Security Researcher to join CTO team.
As a researcher and an engineer in the CTO team, you will identify and evaluate ideas for new offerings, conduct product and technical research, run experiments and validate market fit while working closely with the product, engineering and strategy teams, as well as our customers.
You will join a dynamic and fast-paced team and be a central player in the companys product design, development, marketing, and sales efforts.

You will be part of:
Evaluating Product Ideas:
Evaluating and developing ideas for new products and capabilities, sourced from across the company and customers.
Working with users, partners, colleagues and experts to consider needs, technology, trends, competition and company strategy. Articulating the product hypothesis and constructing business cases.
Conducting Technological Research:
Analysing, researching and deep diving into technologies, tools and products, existing and emerging, in order to learn how they work and how they can be utilized to build novel solutions to user problems.
Building product prototypes and technology demonstrators in order to test hypotheses, demonstrate feasibility, gather feedback and find market fit.
Collaborating with R&D:
Partnering with product owners, engineers and function leaders from ideation to realization to ensure success and adoption of initiatives. Leading multi-disciplinary teams and joint task forces.
Articulating visions, opportunities and risks; evangelizing peers and management; Communicating progress to stakeholders and leadership.

Ask a member of our team and theyll answer, Our people! We work together to build and innovate best-in-class cybersecurity solutions for our customers; all while creating a culture of belonging, respect, and excellence where we can be our best selves. When youre part of our team, you can expect to partner with some of the most talented and passionate people in the industry, and have the support and resources you need to do work that truly matters. We deliver results that exceed expectations and we win together!
Cloud Security was established through the acquisition of Ermetic, an innovative cloud-native application protection platform (CNAPP) company, and a leading provider of CIEM. This acquisition is a significant step in mission to shift organizations towards proactive security, offering market-leading contextual risk visibility, prioritization, and remediation across both on-premises and cloud infrastructures.
Your Opportunity:
Cloud Security is seeking a Senior Vulnerability Researcher. In this role, you will research various cloud assets, roles, relations, and configurations to uncover 0-day vulnerabilities in major cloud providers and technologies. You will lead innovation, solve complex problems, and develop strategies for both attacking and defending cloud environments.
Furthermore, you will be in charge of fostering and spreading Cloud Securitys technical expertise. You will present your novel work at conferences and author papers and blogs. You will also build open-source cloud security tools and solutions.
If youre a curious, creative, technical person with an attackers mindset, strong systemic thinking, and a passion for taking things apart and understanding how they work, we encourage you to apply.
Your Role:
Investigate and analyze the multi-cloud stack to find 0-day vulnerabilities, security holes, weaknesses, and design flaws
Follow emerging security threats, author blogs about novel research, publish content, and speak at conferences
Conduct technical research on cloud platforms to yield new insights, theories, analyses, TTPs
Serve as a technical leader and contributor for a research team exploring emerging cloud technologies and services

As a Security Researcher, you will be responsible for conduct in-depth research and analysis of new threats and vulnerabilities in the blockchain space and develop tools and systems to detect and mitigate security risks in real-time. Youll work closely with our engineering and product teams to develop security strategies, detect and mitigate exploits, and enhance our on-chain security platform. While prior Web3 experience is an advantage, we welcome applicants with a solid security research background looking to break into blockchain security.

Key Responsibilities:
Conduct in-depth security research on blockchain protocols, smart contracts, and decentralized applications.
Identify and analyze security vulnerabilities, exploits, and attack vectors in Web3 protocols.
Collaborate with the engineering team to integrate detection capabilities into our on-chain exploit detection system.
Create proof-of-concept (PoC) exploits and simulations to help test and validate threat scenarios.
Stay current with emerging threats, new technologies, and industry best practices in information security.

We are seeking a highly skilled and motivated Senior Security Researcher to join our dynamic team.
As a Senior Security Researcher, you will play a pivotal role in simulating real-world attack scenarios, identifying vulnerabilities, and contributing to the development of innovative security solutions. You will work alongside some of the best security experts in the industry, driving research initiatives and enhancing your knowledge of emerging threats and attack techniques.
Key Responsibilities:
Conduct in-depth research and analysis of n-day vulnerabilities to assess risk and potential impact.
Investigate attack vectors across various operating systems and cloud environments (IaaS/SaaS).
Define and document mitigation strategies for discovered attack techniques, collaborating with development teams for implementation.
Drive the integration of research findings into product features, ensuring enhanced security capabilities.
Stay abreast of the latest security trends, technologies, and best practices to maintain expertise in the field.
Collaborate with cross-functional teams to communicate and implement identified attacks, techniques, and solutions.
Contribute to public security research through blog posts and potentially present findings at industry conferences.

We seek a highly skilled Blockchain Security Researcher to lead our Blockchain Security Research Team. This role focuses on discovering low and high-level vulnerabilities, researching exploits in decentralized applications (dApps), developing security tools, and enhancing proactive security measures to protect blockchain environments. As a team lead, you will also be responsible for leading and mentoring a team of security researchers, driving security strategy, and collaborating cross-functionally to improve our overall security posture.
This is a unique opportunity to be part of a fast-growing startup developing state-of-the-art blockchain technology while working at the forefront of security.
Key Responsibilities:
Lead and mentor a team of blockchain security researchers, fostering innovation and collaboration.
Find and analyze exploits in compilers, dApps, smart contracts, and blockchain networks.
Develop tools for detecting and preventing attacks in blockchain ecosystems.
Conduct deep forensic analysis of blockchain transactions, logs, and smart contract behaviors to understand attack vectors.
Stay up to date with blockchain threat intelligence, emerging vulnerabilities, and new attack techniques.
Design tailored security solutions for dApps, protocols, and critical network components.
Proactively enhance security monitoring and threat detection for identified attacks.
Collaborate with product, development, and security teams to improve security posture.
Drive security research initiatives and contribute to industry-wide best practices.

We are looking for a Cyber Threat Intelligence Analyst to be an integral part of our Intelligence teams, combining both cutting-edge technology and advanced threat intelligence analysis methodologies to deliver high-impact briefings to our customers.

We are seeking a motivated cybersecurity professional with a solid foundation in networking and cybersecurity to join our team as a Security Analyst. In this dynamic role, you will engage in various security tasks, from conducting detailed network analysis to developing and validating network signatures and workflows.

You will have the opportunity to collaborate with experienced professionals, contributing to vulnerability assessments, threat detection, and enhancing Cyberints customers security posture.

This position is designed for individuals eager to apply their technical skills in real-world scenarios while growing their expertise in various aspects of cybersecurity. You'll play a key role in our mission to safeguard critical systems.

If you are passionate about cybersecurity, committed to continuous learning, and ready to take on diverse challenges, we encourage you to join our team.

Key Responsibilities
Network Analysis:
Conduct thorough research of network-based vulnerability traffic.
Development & Validation:
Develop, write, review, and validate signatures and templates used for scanning systems for security weaknesses.
Security Assessments:
Assist in performing vulnerability assessments and penetration testing to support ongoing security initiatives.
Collaboration & Reporting:
Work closely with team members to document findings, prepare detailed reports, and recommend actionable remediation steps.
Continuous Learning:
Stay updated on the latest cybersecurity trends, threats, vulnerabilities, and best practices.

We are seeking junior Detection Engineers who look for their first (or second) steps in the Cybersecurity industry. The position is in our Research department, focusing on detection rules in the domains of Enterprise Copilots, GenAI technologies, and Low-code/No-code platforms. This role offers a unique opportunity to work closely with Inbar Raz, a prominent figure in the security research community known for his pioneering work and thought leadership. Inbars extensive expertise and innovative approach to security research will not only guide but also inspire your work, making a place where your contributions can have a significant impact on the future of application security. This role will set you on a path into the Cybersecurity world and let you evolve your skills into the directions of a security researcher or a security engineer.

We are seeking a Senior Vulnerability Researcher. In this role, you will research various cloud assets, roles, relations, and configurations to uncover 0-day vulnerabilities in major cloud providers and technologies. You will lead innovation, solve complex problems, and develop strategies for both attacking and defending cloud environments.

Furthermore, you will be in charge of fostering and spreading Tenable Cloud Securitys technical expertise. You will present your novel work at conferences and author papers and blogs. You will also build open-source cloud security tools and solutions.

If youre a curious, creative, technical person with an attackers mindset, strong systemic thinking, and a passion for taking things apart and understanding how they work, we encourage you to apply.

Your Role:

Investigate and analyze the multi-cloud stack to find 0-day vulnerabilities, security holes, weaknesses, and design flaws.

Follow emerging security threats, author blogs about novel research, publish content, and speak at conferences.

Conduct technical research on cloud platforms to yield new insights, theories, analyses, TTPs.

Serve as a technical leader and contributor for a research team exploring emerging cloud technologies and services.