Senior Security Researcher

May 3

Apply Now

Get a free AI resume review

Veracode

WebsiteLinkedInAll Job Openings

Security for Cloud-Native Application Development

Application Security • Web Application Security • Binary Static Analysis • Vendor Application Security Testing • Runtime Application Self Protection

501 - 1000

💰 Private Equity Round on 2022-03

Description

• Integrate security findings from various areas into reports for a CISO or other interested parties. • Configure and deploy automated application and cloud security testing solutions including SAST, DAST, SCA, IaC, and container scanning. • Triage and correlate CWEs, CVEs, and other common security defects, score them, and relay essential information to stakeholders. • Provide input and guidance into development of functional requirements for the Application Security Posture Management (ASPM) product. • Perform security assessment and research of containers, infrastructure as code, low- and no-code environments. • Provide independent research for product features. • Conduct independent research for the larger security community.

Requirements

• Expert understanding of fundamental security concepts with a focus on application security in particular. • Able to investigate, understand, and contextualize a wide array of vulnerabilities and be able to explain them at a technical depth appropriate to audience. • The skills to reverse engineer or otherwise assess a CVE, reproduce the vulnerability, and pinpoint the affected source code. • Familiarity with modern SDLC practices, cloud-based architecture, and deployment patterns including technologies such as git, CI/CD pipelines (GitHub, GitLab), Docker, Kubernetes, AWS, Azure, etc. • Strong writing skills and the ability to discern what’s important as well as the ability to present those findings. • Prototyping tools for analysis and software hacking problems.

Benefits

• Outstanding Medical, Dental, and Vision Coverage to meet all your healthcare needs. • Wellness benefits to help you focus on what’s most important. • “Take What You Need” time off policy. • Extensive development and training offerings to help you grow your career at Veracode. • Generous 401k match to help save for your future. • Amazing community of professionals who take pride in what we do every day