Senior Application Security Researcher

• Research, identify, evaluate and implement the best solutions for security in Wix’s production environment
• Research, identify, evaluate and implement the best solutions for the platform code and services used by our developers
• Work closely with development and system teams on all SDLC levels, performing security design reviews, threat modeling and penetration tests, while acting as a security mentor for developers
• Investigate abnormal activity in production
• Build creative tools and services to detect and solve cross-security issues

Requirements

• A Senior Application Security Researcher with 5+ years of hands-on experience in application security
• Hands-on experience in security research with an offensive mindset
• In-depth knowledge of web application vulnerabilities, their exploitation in the real world, and browser security mechanisms
• A deep understanding of authentication and authorization protocols, and application security methodologies
• Passionate about cutting-edge technologies
• Excited by the idea of taking on lots of responsibility, you can work independently and be flexible
• Open-minded self-learner who can see the big picture, analyze complex systems, identify potential failure points and find opportunities for big security wins

An advantage if you:

• Published security research
• Participated in bug bounty programs
• Know Node/Java/Scala programming languages, or know your way around Docker containers and Kubernetes
• Know your way around AWS and GCP environments, or cloud and microservice architectures