Application Security Researcher (Cybersecurity)
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Application Security Researcher (Cybersecurity): Designing and building detection engines and autonomous security systems for AI-driven SDLC with an accent on automated attack development and vulnerability chaining. Focus on building autonomous agentic pentesting capabilities and integrating advanced security features into production environments.
Location: Ramat Gan, Israel (Onsite)
Company
secures the AI-driven SDLC from prompt to production, unifying development and cloud context to eliminate critical real-time risks.
What you will do
- Design and build detection engines and decision-making logic for autonomous security systems.
- Develop new classes of automated attacks leveraging deep application and infrastructure context.
- Conduct advanced research on chaining vulnerabilities, logic flaws, and complex attack paths.
- Prototype, build, and ship security capabilities into production environments.
- Collaborate with Product, Engineering, and Data teams to shape next-gen security features.
- Analyze large-scale data to identify attack opportunities and improve detection accuracy.
Requirements
- 5+ years of experience in Application/Infrastructure Penetration Testing.
- Strong knowledge of common vulnerabilities (OWASP Top 10, etc.) and remediation techniques.
- Experience with code-level analysis and modern development stacks.
- Strong programming skills and hands-on technical capabilities.
- Deep understanding of how systems break and how to exploit them.
- Familiarity with DevSecOps practices or security automation tools.
Nice to have
- Experience with bug bounty programs or red teaming.
- Strong software engineering background.
- Hands-on experience with LLMs, autonomous agents, or security automation.
- Passion for building secure products and empowering developers.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →