Application Security Researcher

TL;DR

Application Security Researcher: Validating and improving security of enterprise network and cloud platform services with an accent on application security, penetration testing, and vulnerability research. Focus on reviewing system architecture, secure coding practices, and staying updated on security threats and mitigations.

Company

hirify.global is a pioneer in converging enterprise networking and security into a centralized cloud-delivered service, leading the SASE market.

What you will do

• Continuously check and improve security measures to protect systems.
• Review system architecture, design, and code to identify and fix security weaknesses.
• Assist developers in following secure coding practices and preventing security risks.
• Stay updated on new security threats and best practices.
• Contribute to security research and knowledge sharing.

Requirements

• At least 3 years of experience in application security or vulnerability research.
• Hands-on experience in penetration testing for web, mobile, infrastructure, and thick client applications.
• Programming skills in Java, Go, or C.
• Knowledge of supply chain attacks and AWS cloud attack mitigations.
• Understanding of microservices architectures, Docker, and Kubernetes.
• Good communication skills and ability to work independently.

Nice to have

• Experience with SAST/DAST tools for static and dynamic code analysis.
• Security certifications like OSCP, CRTP, OSWE.
• Experience leading security projects and initiatives.
• Experience writing security blogs, CVE research, or bug bounty programs.
• BSc in Computer Science.