Threat Research Engineer (Web Security)

Company Description

Have you ever wondered why your favorite apps, social media content, and video games load in the blink of an eye? It's likely because of Gcore behind the scenes!

Join a team that collaborates with industry giants like Intel, Dell, NVIDIA, Graphcore, and Equinix to accelerate AI training, provide cutting-edge cloud services, and optimize content delivery.

If you are passionate about transforming the internet and contributing to cutting-edge innovations, come join us at Gcore!

We are over 550 professionals and currently looking for an (add job title)

Job Description

About the Product: Our company is dedicated to providing comprehensive web security solutions, protecting our customers from a wide range of threats, including L7 bot attacks, DDoS, OWASP top 10 vulnerabilities, WAF, and API security. As part of our Web Security team, we are leveraging AI to enhance our threat detection and mitigation strategies, ensuring robust and dynamic protection for our clients.

What You Will Do: As a Threat Research Engineer, you will be pivotal in enhancing our web security product. You will identify and mitigate new threats, develop automated pipelines for integrating security measures, and contribute to the development and continuous training of AI models for threat detection.

Your Responsibilities:

• Identify and research emerging threats targeting web applications, including L7 bot attacks, DDoS, OWASP top 10 vulnerabilities, WAF, and API security.
• Develop and maintain automated pipelines to integrate new security measures, including scanning, monitoring, and enabling countermeasures.
• Participate in the development and refinement of AI models to replace traditional regex-based rules, ensuring continuous training and testing of these models.
• Collaborate with the Web Security team to implement and enhance AI-driven decision-making processes for threat detection and mitigation.
• Stay updated with the latest security trends, vulnerabilities, and attack vectors to proactively protect our customers.

Qualifications

We Expect You to Have:

• Extensive experience in web security, with a focus on L7 bot attacks, DDoS protection, OWASP top 10 vulnerabilities, WAF, and API security.
• Proficiency in developing automated security pipelines using industry-standard tools and frameworks.
• Experience with AI/ML models, particularly in the context of security and threat detection.
• Deep understanding of web security principles, attack vectors, and mitigation techniques.
• Familiarity with scripting and programming languages commonly used in threat research (e.g., Python, JavaScript).
• Knowledge of modern CI/CD practices and automation tools to ensure efficient deployment and monitoring of security measures.
• Strong problem-solving skills and a proactive approach to identifying and addressing security threats.

Additional Information

What We Offer:

We aim to ensure you feel and give your best by offering:

- Competitive Salary
- Flexible schedule
- Remote, hybrid or office work
- Educational support
- Medical insurance (depending on the contract type and your location)
- Business trips (depending on your role).


About the Company

Gcore is an international cloud and edge leader in providing first-class web performance, content delivery, and security. Headquartered in Luxembourg, with offices around the world, the company provides its solutions to global leaders in numerous industries.

Millions of people worldwide use apps and play games based on our infrastructure and services: we are trusted by World of Tanks, Albion Online, Avast, Photon, Unity, Sandbox Interactive, and others.

To find out more about Gcore, please check out our product website, our Careers page, LinkedIn page, and Instagram account. Let’s transform the Internet together!


Equal Opportunity Employer

We provide equal opportunity to all applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity, gender expression, national origin, disability, or any other legally protected characteristics.