Senior Cybersecurity Researcher

We are looking for a Senior Cybersecurity Researcher to play a key role in maintaining our industry-leading vulnerability database, which is based on a Python/Django/Postgres stack. Your focus will be on software supply chain security and vulnerability analysis, with a particular emphasis on Python, Java, and JavaScript ecosystems.

Responsibilities:

• Review and assess the validity of known vulnerabilities, occasionally delving deeper to thoroughly understand the issues at hand

• Contribute to the development and maintenance of the vulnerability database, focusing on Python, Java, and JavaScript ecosystems

• Experiment with and discover novel ways to detect potential vulnerabilities in packages or software

• Collaborate with data engineers to translate novel vulnerability detection methods into systematic, repeatable processes within our data processing system

• Work closely with the Lead System Architect and Senior Data Engineer to integrate security findings into the data processing system

• Develop and optimize AI-driven modules and components to enhance the system's security capabilities

• Stay up-to-date with the latest security trends and incorporate this knowledge into the system

• Embrace a fast-paced, iterative development approach, delivering working solutions quickly and continuously improving based on feedback

Impact:

As a Senior Cybersecurity Research Engineer, you will play a vital role in building and maintaining an industry-leading vulnerability database that will protect and secure the Python, Java, and JavaScript ecosystems. Your work will have a massive impact on the cybersecurity landscape, empowering organizations worldwide to safeguard their software supply chains and mitigate vulnerabilities. Be part of a team that is at the forefront of innovation, leveraging cutting-edge AI technologies to revolutionize the way we approach cybersecurity.

If you are excited about the opportunity to make a significant impact in the cybersecurity domain and build a world-class vulnerability database, we want to hear from you! Join our dynamic and fast-paced startup, where you'll have the chance to work with cutting-edge technologies, shape the future of software supply chain security, and deliver impactful results through iterative deployments.

Requirements

• 10+ years of overall technical experience

• 5+ years of experience in cybersecurity research, specifically in software supply chain security

• Strong programming skills in Python, Java, and JavaScript, complemented by an understanding of their package ecosystems and associated vulnerabilities.

• Experience using LLMs, such as GPT, Claude, or Copilot, for security research and analysis

• Excellent problem-solving and communication skills

• Ability to work collaboratively in a fast-paced, agile environment

• Passionate about staying at the forefront of cybersecurity research and AI-driven solutions

• Thrives in a fast-paced startup environment, comfortable with rapid iterations and adaptable to changing requirements

• Resourceful and creative problem-solver, able to deliver results with limited resources and tight deadlines

Benefits

Salary of $120,000 to $150,000 CAD / year, depending on experience

Healthcare plan

Generous equity stock options plan

Remote worker friendly