Vulnerability Research Team Lead

At JFrog, we’re reinventing DevOps to help the world’s greatest companies innovate -- and we want you along for the ride. This is a special place with a unique combination of brilliance, spirit and just all-around great people. Here, if you’re willing to do more, your career can take off. And since software plays a central role in everyone’s lives, you’ll be part of an important mission. Thousands of customers, including the majority of the Fortune 100, trust JFrog to manage, accelerate, and secure their software delivery from code to production -- a concept we call “liquid software.” Wouldn't it be amazing if you could join us on our journey?

JFrog Security is one of the main pillars of the JFrog offering and long-term strategy. We are pushing the boundaries of security analysis of both binaries and code, shifting left and bringing new and exciting features to both developers and DevOps.

We are looking for an experienced Vulnerability Researcher to lead our world-class vulnerability research team. As a Vulnerability Researcher Team Lead at JFrog, you will perform research and responsible disclosure on the latest open-source software, working with your team to find flaws in the most popular components today.  The position requires proven experience in vulnerability research, both on web applications and native applications.

As a Vulnerability Researcher Team Lead at JFrog you will... 

• Research zero-day vulnerabilities in open-source projects and popular web applications
• Manage a team of senior researchers, setting the team’s research targets and methodologies
• Manage the coordinated disclosure process for vulnerabilities identified by the team
• Write & review technical blogposts for vulnerabilities identified by the team
• Speak in the most important global security conferences about vulnerabilities identified by the team

To be a Vulnerability Researcher Team Lead at JFrog you need...

• 3+ years of vulnerability research experience in open-source projects
• 3+ years of vulnerability research experience in web applications
• Experience in team management
• Experience in writing technical vulnerability blogs
• Advantage - Experience in binary reverse engineering