Application Security Researcher

Cato Networks is seeking an Application Security Researcher to join our team in Tel Aviv, Israel. In this pivotal role, you will be instrumental in ensuring our services and environments adhere to the highest security standards. Collaborating closely with our R&D and Product teams, you will tackle complex security challenges to maintain and enhance the security posture of our cutting-edge enterprise network and secure cloud platform.

Your primary responsibilities will include continuously assessing and improving security measures to safeguard our systems. This involves reviewing system architecture, design, and code to identify and remediate potential security vulnerabilities proactively. Additionally, you will guide developers in adopting secure coding practices and staying abreast of emerging security threats and best practices to uphold our stringent security standards. Contributing to Cato’s security research blog will also be part of your role.

The ideal candidate will possess at least 3 years of experience in application security or vulnerability research, with hands-on expertise in penetration testing across web, mobile, infrastructure, and thick client applications. Proficiency in programming languages such as Java, Go, or C is preferred, along with the ability to identify and address security flaws in open-source libraries and third-party software. Knowledge of supply chain attacks and preventive measures, as well as familiarity with microservices architectures, Docker, and Kubernetes, are essential. Strong problem-solving skills, the ability to work independently, and effective communication skills are also required.

Preferred qualifications include experience with SAST/DAST tools for static and dynamic code analysis, working in Agile teams, and holding security certifications like OSCP, CRTP, or OSWE. The ability to lead security projects, adaptability to a fast-paced environment, and experience with security blogging, CVE research, or participation in bug bounty programs are advantageous. A BSc in Computer Science is also considered a plus.

Joining Cato Networks offers the opportunity to be part of a rapidly growing company at the forefront of cloud networking and security. We provide a dynamic work environment that fosters professional growth and development, with opportunities to engage in innovative projects and contribute to the evolution of enterprise network security.