Cyber Researcher

Description

Grip Security is looking for a Cyber Researcher to join our community! 

We are a fast-growing startup in the software-as-a-service security industry. We provide innovative solutions to securing the whole organization-to-SaaS surface. (More details: https://grip.security) 

Using the newest technologies, we're working on solving a huge problem all enterprises face today - govern the accessibility of all its employees to all 3rd party vendors (GitHub, SendGrid, Atlassian, and thousands more!), and make sure there are no leftover/unwanted access to any of the organization's SaaS assets. The SaaS security field is complex and challenging; therefore, we're looking for super-talented people, who are not afraid of technical challenges and breaking down barriers to achieve good solutions. 

The job

We're looking for a Cyber Researcher who will be responsible for identifying, analyzing, and providing mitigation options for emerging cyber threats and vulnerabilities in SaaS environments. As a Cyber Researcher in Grip, you’ll lead and contribute to discovering new attack vectors, developing detection and defense techniques, and providing actionable intelligence to strengthen our products and protect our customers. 

You will

• Conduct proactive research on emerging threats, vulnerabilities, and attack techniques relevant to SaaS and cloud environments. 
• Collaborate with engineering and product teams to translate research findings into product features and security controls. 
• Develop proof-of-concept and detection mechanisms to validate and demonstrate risks. 
• Stay up-to-date with the latest trends in cyber threats, security tools, and industry best practices. 

Requirements

• 3+ years of professional experience in cybersecurity research, threat intelligence, or a related field. 
• Deep understanding of cybersecurity threats and attack techniques involving SaaS, cloud, or web technologies. 
• Hands-on experience with threat intelligence, network research, penetration testing, Identity and Access Management or Systems research 
• Proficiency in programming/scripting languages such as Python 
• Strong analytical and problem-solving skills with a passion for research and innovation. 
• Ability to communicate complex technical findings clearly to both technical and non-technical audiences. 
• Experience working in a fast-paced, dynamic environment. 
• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field (or equivalent experience). 
• Relevant certifications (e.g., OSCP, CEH, GXPN) are an advantage. 

Bonus Points 

• Familiarity with security frameworks and compliance standards. 
• Contributions to the security research community (e.g., published CVEs, conference talks, open-source tools).