Yoni R.’s Post

🚨 Calling All Security Researchers, Join Us in Building the Future of Security We're a well-funded stealth security startup in San Francisco, founded by the teams who led Microsoft's vulnerability mitigation efforts and Tesla's offensive research. We're building technology that fundamentally changes how companies handle security vulnerabilities, not incremental improvements, but a completely different approach that's already transforming how our early customers think about their security stack. Our customers' reaction when they see what we've built? Pure excitement. That's not something you usually see in enterprise security. The Role: In this role, you'll be on the front lines of vulnerability research, helping to build a next-generation platform that automates complex security processes. You will be responsible for conducting deep research into vulnerabilities, exploits, and emerging attack vectors to enhance our platform's capabilities and accuracy. This is a unique opportunity to work with cutting-edge technology and directly impact the future of vulnerability management.  This is more than a job, it's a chance to build something that fundamentally changes how companies secure their products. Key Responsibilities * Conduct advanced research into modern attack vectors across a variety of environments, including AppSec, cloud, and emerging technologies like LLMs. * Reverse engineer and analyze code, infrastructure, and exploit techniques to understand and document complex vulnerabilities. * Contribute to our internal knowledge base of vulnerabilities, exploits, and attack patterns, helping to build a robust and accurate data foundation. * Collaborate closely with our engineering and product teams to prototype and implement new detection and mitigation strategies. * Publish security research write-ups and engage with the broader security community. Required Qualifications * 8+ years of experience in security research, vulnerability analysis, or penetration testing. * Deep expertise with modern application stacks, including microservices, containers, and cloud platforms (AWS, GCP, etc.). * Strong programming skills with proficiency in at least one modern language (Python, Go, Java, JavaScript, etc.). * Demonstrated experience in penetration testing, vulnerability research, and the exploitation of web/API ecosystems. * Proven track record of responsible disclosure and a history of finding vulnerabilities, including CVEs. * Strong analytical skills and the ability to work independently on complex research problems. Preferred Qualifications * A proven track record of publishing high-quality research or presenting at security conferences. * Relevant security certifications (e.g., OSCP, OSCE). * Experience in CI/CD pipeline security and runtime security. Tag the top researchers you know, or feel free to send me a DM.