Security Researcher
JFrog
Job Overview
Who's the hiring manager?
Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.
Job Description
About JFrog and the Security Researcher Role
At JFrog, we’re reinventing DevOps to help the world’s greatest companies innovate, and security is a core part of our mission. Our team of industry-leading software security experts are true pioneers, constantly pushing the boundaries with original research and technology innovation. JFrog is a special place with a unique combination of brilliance, spirit, and just all-around great people. Thousands of customers, including the majority of the Fortune 100, trust JFrog to manage, accelerate, and secure their software delivery from code to production – a concept we call “liquid software.”
JFrog Security is one of the main pillars of the JFrog offering and long-term strategy. We are pushing the boundaries of security analysis of both binaries and code, shifting left and bringing new and exciting features to both developers and DevOps. We are looking for a Security Researcher to join the team. As a Security Researcher, you will perform security research on open-source projects in both web and low-level technologies. You will define how to identify exploitable security issues in an automated manner and develop code for that purpose.
As a Security Researcher at JFrog you will...
- Research CVEs and 1-day vulnerabilities in various programming languages and ecosystems
- Define how to automatically find exploitable vulnerabilities & develop code that identifies the instances where a vulnerability is exploitable
- Perform security research on various open-source technologies, frameworks, and libraries
- Write technical reports regarding all research subjects mentioned above
To be a Security Researcher at JFrog you need...
- At least 2 years of experience as a Security Researcher
- Vulnerability research experience in any of the following languages: Python, Node.JS, Java, C
- Experience with code exploitation (for example, Penetration testing in backend environments or web applications, or binary exploitation)
- Programming experience in Python
- Experience in writing technical reports
- Experience in binary reverse engineering - an advantage
- DevOps experience - an advantage
Key skills/competency
- Security Research
- Vulnerability Analysis
- Code Exploitation
- Python Programming
- Technical Reporting
- Open-Source Security
- CVE Research
- Binary Reverse Engineering
- DevOps Security
- Penetration Testing
How to Get Hired at JFrog
- Research JFrog's culture: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor.
- Tailor your resume: Customize your application to highlight security research, vulnerability analysis, and Python skills relevant to the Security Researcher role at JFrog.
- Showcase technical expertise: Prepare to discuss deep technical knowledge in CVE research, code exploitation, and relevant programming languages during interviews for JFrog.
- Demonstrate problem-solving: Be ready to articulate your approach to defining and automating the identification of exploitable vulnerabilities.
- Network strategically: Connect with JFrog employees on LinkedIn to gain insights and potentially secure referrals for the Security Researcher position.
Frequently Asked Questions
Find answers to common questions about this job opportunity
Explore similar opportunities that match your background