Security researcher

Short facts about us:

• We are a global remote-first team of 100+ people on 4 continents and in 10+ countries.

• We have been protecting our clients since 2016.

• The company has raised over $10M in investments.

• More than 200 customers around the world, including Fortune 500, Nasdaq, and high-growth startups choose Wallarm to protect their API and web applications.

• The company passed Y Combinator, the most prestigious incubator in Silicon Valley, from which Dropbox, Stripe, Docker, etc. came out.
  

Our product:

Wallarm API security solutions provide proven performance to support innovative companies serving millions of users and billions of API requests per month. Hundreds of Security and DevOps teams globally use Wallarm daily to:

1. Discover. See every asset across your entire attack surface—from cloud environments to every API endpoint with auto-discovery capabilities.

2. Protect. A single suite that goes beyond OWASP Top 10 for full coverage for API specific threats, account takeover, malicious bots, L7 DDoS, and more.

3. Respond. Streamline incident response with complete visibility, smart triggers, and active threat verification.

4. Test. Automate security testing of your APIs and web assets. Prioritize remediation for every asset, in every environment.

In this role you will:

• Improve detection capabilities of Wallarm products;

• Analyze and research new vulnerabilities, WEB/API attack techniques and reproduce them;

• Develop new detection mechanisms, rules and attack attribution filters;

• Continuously evaluate (manually and automated) the product’s posture; 

• Identify detecting gaps;

• Research new methods and techniques for identifying API threats (API vulnerabilities, API leaks, etc.); 

• Generate and push ideas for improving the product;

• Occasionally triage security events and investigate security incidents;

• Support and improve the infrastructure and processes of the team.