Senior Security Researcher

Tel Aviv

SecureNative is disrupting the application cyber security market through its cutting edge patent-pending technology. We help SaaS companies to better monitor and protect their online users. We bridge the gap between engineering and security by enabling developers and security teams to implement security without impacting engineering velocity

We are on our mission to make the world more open and safe, and are looking for smart, fast-paced, out-of-the-box, energetic team players to join our mission. The company is backed by worldwide top Tier VCs and managed by very experienced and successful entrepreneurs and executives.

We're seeking A players to work with A players. We're a high-growth company on a once-in-a-lifetime journey to revolutionize the way online users are protected.

What You'll Do

  • Research and detect new threats in the fraud field and propose new detection methods to identify and incorporate them as part of the SecureNative security platform

  • Research and discover new features to be included in our risk prediction models

  • Performing complex data analysis and finding ways to flag malicious entities and anomalies

  • Exploring new tactics to improve performance of our risk models and detections and minimize false-positives

Requirements

  • At least 3 years of relevant experience in cyber security research (Fraud or Web Security fields)

  • Thorough knowledge in widely used web protocols (HTTP, TLS, WebSockets, IPv4, IPV6, DNS, etc.)

  • Familiarity with browser internals (DOM and APIs) and good knowledge of JavaScript

  • Good knowledge of automated threats attacks (credential stuffing, fingerprinting, scraping, spamming, etc.)

  • Proven experience with scripting languages such as Python and using tools such as Wireshark or Burp Suite to analyze HTTP requests, debug APIs and routing issues, search for specific data in network traffic

  • Familiarity with automation libraries such as Selenium, PhantomJS, Puppeteer, Headless Chrome

  • Knowledge of modern web architecture, including WAF/DDoS/CDNs, multi-regional deployments

  • Knowledge of SQL and experience and using databases such as Postgres/Clickhouse or Elasticsearch

  • Independent worker with ability to lead tasks end-to-end,  you are able to analyze complex data, to detect what data missing, and incorporate you findings into working product

  • A fast analytical mind, have strong attention to details with ability to investigate and correlate complex information together

  • Strong communication skills, ability to present your ideas clearly focusing on the value they bring.

Nice to have:

  • Experience with the cloud native ecosystem, such as Docker/Kubernetes and public cloud services

  • You writing tech blogs