Portfolio Jobs

What We’re About

We’re an experienced and diverse team focused on solving one of the biggest challenges CIOs and CISOs have - allowing development teams to move fast without compromising on security controls and risk management. We’re looking for strong and fun people to join us and take a significant part in shaping our technology, product, and culture.

What You’re About

We are looking for a security researcher with at least 5 years of experience in application security research and a background in the security industry. The ideal candidate has a degree in a related field and is able to develop proof-of-concepts based on their research findings. They are also familiar with modern cloud-native applications and their associated threats. The candidate should be an independent and fast learner who is able to produce professional content for internal or external consumption. Experience in startups and a deep understanding of technical and marketing aspects are a plus.

What You Will Do

You will be researching application security industry-related hot topics to identify relevant trends, methods, vulnerabilities, and tools, run POC’s and come up with recommended implementations that will enhance our technology, product, and business.

You will support the development of solutions that are in alignment with the business and technical goals, research specific cases within our unique patent-pending technology to enhance our product’s capabilities and value. You will also build, review, and maintain the research technical documentation.

Creating professional content is part of your role, as well as advocating and presenting our product, research results, and insights within the industry’s ecosystem. This will enhance our brand and product awareness, and support our thought leadership positioning (blog posts, webinars, social media, conferences, and more).

• ​​Research vulnerabilities in cutting-edge technologies, for example - open source packages, package managers, SCM, CI/CD environments, and Kubernetes clusters.
• Investigating attacks against software supply chain entities, their impact and remediation
• Hunting and analyzing emerging application threats and developing detections and tools to protect customers and the public from those threats
• Collaborating with the R&D team to transform research insights into product features.
• Developing best practices based on research findings, and writing external facing materials