Application Security Researcher (SAST)

TL;DR

Application Security Researcher (SAST): Identifying common vulnerabilities and defining static analysis rules to enhance code security platforms with an accent on language ecosystem expertise and developer-centric security. Focus on investigating vulnerability patterns, refining detection logic, and driving innovation in SAST engine capabilities.

Location: On-site in Bochum, Germany

Company

hirify.global is a leader in AI-powered code review and verification, providing the backbone for secure software development for global enterprises.

What you will do

• Identify common vulnerabilities across various language ecosystems.
• Define and specify static analysis rules to detect security issues.
• Collaborate with developers to validate functional aspects of security rules.
• Interact with the user community to refine detection logic and reduce noise.
• Drive innovation to improve the performance and accuracy of the SAST engine.
• Conduct competitor gap analyses to maintain market leadership.

Requirements

• Mastery of application security fundamentals and vulnerability exploitation.
• Strong developer mindset with experience in coding lifecycles and code reviews.
• Proficiency in at least one programming language and its development environment.
• Strong communication skills for collaborating with non-security experts.
• High level of autonomy while remaining open to team feedback.
• Must be able to work on-site in Bochum, Germany.

Nice to have

• Understanding of static analysis mechanisms.
• Ability to challenge and improve rule implementation.

Culture & Benefits

• Work at the forefront of the AI software revolution.
• Collaborative environment focused on quality and effective teamwork.
• Opportunity to impact the development practices of millions of developers.
• Commitment to diversity, equity, and inclusion.