Security Analyst
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Every day the world gets more digital thanks to tens of millions of developers building the future faster than ever. But with exponential growth comes exponential risk as outnumbered security teams struggle to secure mountains of code. This is where Snyk (pronounced sneak) comes in. Snyk is a developer security platform that makes it easy for development teams to find prioritize and fix security vulnerabilities in code dependencies containers and cloud infrastructure and do it all right from the start. Snyk is on a mission to make the world a more secure place by empowering developers to develop fast and stay secure.
Joining Snyk means embracing our core values: One Team Care Deeply Customer Centric and Forward Thinking. As a member of our team youll have the opportunity to thrive in a dynamic environment where fostering collaboration leading with empathy driving business impact and inspiring trust are at the heart of everything we do.
We are looking for a Vulnerability Researcher to join our Security Intelligence team to analyze known vulnerabilities and discover unknown vulnerabilities. Our scope is open source packages including those distributed by the largest Linux distributions.
Your Role
In modern software development much of any projects code relies on open source packages. These are out there in the world visible for anyone; and within that code there are vulnerabilities. As part of our security intelligence team youll join us on our mission to continuously provide actionable analysis of these vulnerabilities that can be used by developers and security professionals.
Youll join our interdisciplinary security intelligence team alongside fully dedicated engineers focused on building tools that make your work more effective and have lots of opportunities to learn and grow. This role is particularly wellsuited to candidates with a deep understanding of how code works and over time youll have the opportunity to work with a wide variety of programming languages. You can read in depth about the way the teams data are used as the basis for the leading software security platform on Snyks blog.
Youll spend your time:
- Triaging and analyzing potential vulnerabilities discovered in open source dependencies
- Further researching known vulnerabilities to determine characteristics such as severity and exploitability
- Verifying or disqualifying potential vulnerabilities via handson research
- Assessing and building in new vulnerability sources
- Crosspollinating security knowledge and techniques with group members to keep the learning flowing
- Exploring the new abilities we need to develop our data products to further our mission
- Developing and testing new ways to improve the teams workflows
You should apply if:
- You have a passion for security and the exploitation problem space
- You have experience navigating open source codebases and package managers
- You love learning new techniques and getting experience in new fields
- Youre comfortable working with quantitative data tools including SQL NoSQL Python notebooks pandas
- You have good mastery of written and spoken English expression
Wed especially love to hear from you if:
- You have worked with researchers before ideally in the security space or have conducted security research yourself
- You have experience reproducing vulnerabilities and processing responsible vulnerability disclosures
- Youve analyzed data before using quantitative/statistical techniques employing purposebuilt tools to come to valid databased conclusions
- You love to automate your work by writing scripts or adopting new technologies
Interested
Please apply below! We care deeply about the warm inclusive environment weve created and we value diversity we welcome applications from those typically underrepresented in tech. If you like the sound of this role but are not totally sure whether youre the right person do apply anyway :
About Snyk
Snyks mission is to help developers and enterprises develop fast and stay secure.
The use of open source is booming but security is a key concern. Snyks unique platform enables developers and enterprise security teams to continuously find & fix vulnerable dependencies without slowing down offering seamless integration into Dev DevOps and DevSecOps workflows. We care deeply about the quality and usefulness of the tools we develop always focusing on our customers and users.
We believe opensource software is a force for good and were building Snyk to make it easier for developers who arent security experts to stay secure.
We care deeply about the warm inclusive environment weve created and we value diversity we welcome applications from those typically underrepresented in tech. If you like the sound of this role but are not totally sure whether youre the right person do apply anyway!
About Snyk
Snyk is committed to creating an inclusive and engaging environment where our employees can thrive as we rally behind our common mission to make the digital world a safer place. From Snyk employee resource groups to global benefits that help our employees prioritize their health wellness financial security and a work/life blend we aim to support our employees along their entire journeys here at Snyk.
Benefits & Programs
Prioritize health wellness financial security and life balance with programs tailored to your location and role.
- Flexible working hours workfrom home allowances inoffice perks and time off for learning and self development
- Generous vacation and wellness time off countryspecific holidays and 100 paid parental leave for all caregivers
- Health benefits employee assistance plans and annual wellness allowance
- Countryspecific life insurance disability benefits and retirement/pension programs plus mobile phone and education allowances
Required Experience:
IC
Employment Type
Full Time
