isecjobs.com

Application Security Researcher - London

London, London, GB

Full Time Mid-level / Intermediate GBP 70K - 130K *
monday.com logo

monday.com

Streamline workflows and gain visibility with customizable solutions for projects, CRM, IT, and software development.

View all jobs at monday.com

Apply now Apply later

Description

monday.com is looking for an application security researcher to research our platform for vulnerabilities, manage our bug bounty program, and work with R&D to enhance the security of our platform. The Application Security Team is based in our headquarters, Tel Aviv, Israel - you’ll be the first to join the team from London.

monday.com works hybrid with 3 days in the London office.

About The Role

  • Perform black, gray, and white box penetration testing on monday.com’s platform - both frontend and backend.
  • Manage the bug bounty program, including hacker engagement and communication with the hacker community.
  • End-to-end work on reported vulnerabilities as part of the bug bounty program.
  • Provide guidance on security best practices to developers.
  • Embed/improve security threat modeling and secure coding in the development lifecycle.
  • Develop security abuse cases for testing as part of the software development lifecycle.
  • Perform and oversee security testing and manage remediation of identified vulnerabilities.
  • Monitor and proactively report on current threats and vulnerabilities to application security.
  • Initiate and automate processes for detecting and monitoring the platform security.

Requirements

  • Scripting capabilities and automation mindset.
  • At least 2 years of experience in web penetration-testing.
  • In-depth knowledge of application security vulnerabilities, testing techniques, and the OWASP framework.
  • Experience working with the hacker/pen-testing community.
  • Team player able to and build relationships across the organization, also remotely.
  • Understanding of secure web application development.
  • Comprehensive knowledge of IT and information security subject matter.
  • Exposure to methods of promoting security awareness.
  • Strong communication (verbal/written) and influencing skills, with an ability to manage internal and external relationships.
  • Anticipates problems and identifies long-term implications of decisions and actions.
  • Ability to work and learn alone.
  • Able to prioritize workload and drive work to set deadlines.


Social Title

Application Security Researcher

Social Description

None

Our Team

None

Position Type

None

About The Team (Internal)

None

Internal requirements

None
Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  8  1  0
Categories: AppSec Jobs Research Jobs

Tags: Application security Automation Monitoring OWASP Pentesting R&D Scripting SDLC Vulnerabilities White box

Region: Europe
Country: United Kingdom

More jobs like this

« Back to job search To the top ↑

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.

Information Systems Security Officer jobsInformation System Security Officer jobsInformation Security Manager jobsSenior Cloud Security Engineer jobsInformation Security Officer jobsSenior Cybersecurity Engineer jobsSenior Network Security Engineer jobsIT Security Engineer jobsCyber Security Specialist jobsSenior Information Security Analyst jobsSystems Engineer jobsSystems Administrator jobsSecurity Consultant jobsSecurity Specialist jobsIT Security Analyst jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsInformation System Security Officer (ISSO) jobsInformation Systems Security Engineer jobsSenior Penetration Tester jobsThreat Intelligence Analyst jobsStaff Security Engineer jobsSecurity Operations Analyst jobsSenior Information Security Engineer jobsSenior Product Security Engineer jobs
Java jobsTop Secret jobsMalware jobsGDPR jobsSplunk jobsEDR jobsSaaS jobsForensics jobsRMF jobsIDS jobsSDLC jobsBash jobsSQL jobsIPS jobsDoDD 8570 jobsIntrusion detection jobsThreat detection jobsActive Directory jobsFinance jobsCompTIA jobsGIAC jobsCRISC jobsITIL jobsTerraform jobsDocker jobs
OWASP jobsClearance Required jobsSANS jobsHIPAA jobsIndustrial jobsSOC 2 jobsOSCP jobsCCSP jobsUNIX jobsPolygraph jobsVPN jobsBanking jobsAnsible jobsTCP/IP jobsJavaScript jobsData Analytics jobsDNS jobsSOX jobsSAP jobsIT infrastructure jobsNIST 800-53 jobsSOAR jobsCISO jobsJira jobsMachine Learning jobs