Job Openings Security Researcher

About the job Security Researcher

Security Researcher - 100% Remote (US-Europe)

At Doyensec (https://doyensec.com/), we believe that quality is the natural product of passion and care. We love what we do and we routinely take on difficult engineering challenges to help our customers build with security.

Our clients are some of the global brands in the tech and startup communities. We help them secure their software and systems by providing information security consulting services (pentesting, reverse engineering, product security design and auditing). We keep a small dedicated client base and expect to develop long term working relationships with the projects and people with whom we work.

We are looking for a highly experienced security researcher to join our team. We perform gray-box security testing on complex web and mobile applications. We need someone who has proven testing skills across multiple languages and environments and can hit the ground running. If youre good at crawling around in the ventilation ducts of the worlds most popular and important applications, you probably have the right skillset for the job. Experience developing code and tools is highly desirable, along with the ability to support the growth of fellow engineers.

We offer a competitive salary in a supportive and dynamic environment that rewards hard work and talent. We are dedicated to providing research-driven application security and therefore invest 25% of your time exclusively in R&D, where we build security testing tools, discover new attack techniques and develop exploits.

Responsibilities:

  • Vulnerability research activities, coordinated and executed with Doyensec's founders
  • Auditing of OSS and proprietary web/mobile/desktop applications

  • Developing security testing tools, including but not limited to fuzzers, semgrep rules, Burp Suite extensions, etc.
  • Research new class of attacks affecting containerized environments
  • Shape the internal methodology and tooling adopted by all team members during our cloud security engagements

Requirements:

  • Ability to discover, document and fix security bugs

  • Youre passionate about understanding complex systems and can have fun while doing it

  • Top-notch in web security. Mobile and desktop appsec is nice to have. Show us public research, code, advisories, etc.

  • Eager to learn, adapt, and perfect your work

We offer:

  • Remote work, with flexible hours

  • Competitive salary with shared research revenue

  • Startup atmosphere

  • 25% R&D time (really!)

  • Access to high-visibility security testing efforts for leading tech companies

  • Possibility to attend and present at various security conferences around the globe