Related skills
benchmarking sast dast sca code analysisπ Description
- Carry out vulnerability research and develop PoCs for GitLab security products.
- Curate advisory databases for dependencies; automate to reduce manual work.
- Build benchmarks to test scanner efficacy across security categories.
- Measure product efficacy over time and improve detection reliability.
- Assess security product output and perform root-cause analysis to identify gaps and false positives/false negatives.
- Write detailed technical reports documenting findings and recommendations; collaborate with teams.
π― Requirements
- Experience developing or improving vulnerability detection in web security.
- Knowledge of vulnerability management and linking research to product outcomes.
- Understanding of software composition analysis and software supply chain ecosystems.
- Experience with source code analysis, SAST/DAST, and benchmarking security tools.
- Knowledge of compilers and compiler design related to code analysis and detection.
- Experience building automated web security testing/analysis tools.
π Benefits
- Benefits to support health, finances, and well-being.
- Flexible Paid Time Off.
- Equity compensation and Employee Stock Purchase Plan.
- Growth and Development Fund.
- Parental leave.
- Home office support.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!