Product Security Researcher

About Astelia

Astelia helps security teams cut through vulnerability noise by showing what's actually reachable and exploitable across their environment. Our agentless platform maps the full external attack surface, applies deep exploitability context, and surfaces only the vulnerabilities that represent real attack paths. We're a small, fast-moving startup with great people who care about impact, craftsmanship, and each other.

The Role: Product Security Researcher

As a Product Security Researcher at Team8, you will be instrumental in shaping the future of the Astelia platform. This role involves end-to-end ownership of product outcomes, from understanding customer needs and defining strategy to execution, launch, and measurement. You'll collaborate closely with engineering, design, and customers to deliver a product that revolutionizes how organizations manage vulnerability exposure.

What You Will Do

• Partner closely with R&D, Product Managers, designers, and customers to translate customer pain points into product direction that drives revenue and adoption.
• Lead POC processes with potential customers, working with PMs to design the "win plan" for each POC, owning risk assessments (e.g., network gap validation), and driving R&D execution.
• Serve as the domain expert at the intersection of product and cybersecurity, translating vulnerability management, network security, and threat intelligence challenges into actionable research tasks.
• Build and maintain data-quality and validation frameworks - mapping data gaps, creating automated validators, and surfacing inconsistencies across the platform to ensure accuracy at scale.
• Research network devices, VM products, and edge-case behaviors to proactively identify data-impacting bugs and deepen understanding of supported environments.
• Analyze customer feedback, usage patterns, and market trends to identify gaps, validate opportunities, and drive data-driven prioritization alongside Product Management.
• Design and maintain internal tooling and back-office systems (e.g., Dagster/Retool integrations, dashboards, severity rulesets) that improve R&D operational efficiency.

What We're Looking For

• A product-minded security thinker - someone who naturally bridges the gap between "how does this work technically" and "what does this mean for the customer."
• Curiosity-driven and self-directed - comfortable researching unfamiliar network devices, VM products, or vendor behaviors independently.
• Experience with internal tooling or back-office workflows (e.g., Retool, Dagster, dashboards) - or eagerness to learn.
• Familiarity with POC/POV processes and customer-facing technical work.
• Exposure to analytics tools (e.g., PostHog, Mixpanel) or product usage analysis is a plus.
• A bias toward automation - you'd rather build a validator than check things manually twice.

Requirements

• 2+ years of experience in cybersecurity, vulnerability management, or network security with strong conceptual understanding of how these domains translate into product.
• Hands-on experience with data analysis and validation, comfortable working with SQL, Python, or similar tools to investigate data quality issues.
• Experience working closely with R&D and Product teams in a B2B SaaS or security product environment.
• Strong analytical thinking, able to spot patterns, inconsistencies, and edge cases in complex datasets.
• Excellent communication skills, able to translate technical cybersecurity concepts into clear, actionable items for cross-functional stakeholders.

Key skills/competency

• Product Security
• Vulnerability Management
• Network Security
• Cybersecurity Research
• Data Analysis
• Automation
• SQL
• Python
• B2B SaaS
• Threat Intelligence