Senior Cybersecurity Researcher

We are looking for a Senior Cybersecurity Researcher to play a key role in maintaining our industry-leading vulnerability database, which is based on a Python/Django/Postgres stack. Your focus will be on software supply chain security and vulnerability analysis, with a particular emphasis on Python, Java, and JavaScript ecosystems.

Responsibilities:

- Review and assess the validity of known vulnerabilities, occasionally delving deeper to thoroughly understand the issues at hand

- Contribute to the development and maintenance of the vulnerability database, focusing on Python, Java, and JavaScript ecosystems

- Experiment with and discover novel ways to detect potential vulnerabilities in packages or software

- Collaborate with data engineers to translate novel vulnerability detection methods into systematic, repeatable processes within our data processing system

- Work closely with the Lead System Architect and Senior Data Engineer to integrate security findings into the data processing system

- Develop and optimize AI-driven modules and components to enhance the system's security capabilities

- Stay up-to-date with the latest security trends and incorporate this knowledge into the system

- Embrace a fast-paced, iterative development approach, delivering working solutions quickly and continuously improving based on feedback

Impact:

As a Senior Cybersecurity Research Engineer, you will play a vital role in building and maintaining an industry-leading vulnerability database that will protect and secure the Python, Java, and JavaScript ecosystems. Your work will have a massive impact on the cybersecurity landscape, empowering organizations worldwide to safeguard their software supply chains and mitigate vulnerabilities. Be part of a team that is at the forefront of innovation, leveraging cutting-edge AI technologies to revolutionize the way we approach cybersecurity.

If you are excited about the opportunity to make a significant impact in the cybersecurity domain and build a world-class vulnerability database, we want to hear from you! Join our dynamic and fast-paced startup, where you'll have the chance to work with cutting-edge technologies, shape the future of software supply chain security, and deliver impactful results through iterative deployments.

Requirements

- 10+ years of overall technical experience

- 5+ years of experience in cybersecurity research, specifically in software supply chain security

- Strong programming skills in Python, Java, and JavaScript, complemented by an understanding of their package ecosystems and associated vulnerabilities.

- Experience using LLMs, such as GPT, Claude, or Copilot, for security research and analysis

- Excellent problem-solving and communication skills

- Ability to work collaboratively in a fast-paced, agile environment

- Passionate about staying at the forefront of cybersecurity research and AI-driven solutions

- Thrives in a fast-paced startup environment, comfortable with rapid iterations and adaptable to changing requirements

- Resourceful and creative problem-solver, able to deliver results with limited resources and tight deadlines