Job Postings

Back to discussions
Expand all | Collapse all

Hiring Sr. Cloud Security Threat Researcher - Normalyze (Series A funded by Lightspeed and Battery) DSPM

  • 1.  Hiring Sr. Cloud Security Threat Researcher - Normalyze (Series A funded by Lightspeed and Battery) DSPM

    Posted Dec 15, 2022 08:03:00 AM
    Edited by Orbert Reavis Dec 16, 2022 10:47:11 AM
    Apply here:  https://jobs.lever.co/normalyze/e3bf363f-bc69-4c3f-807c-cc5c8328b2d9

    About Normalyze:
    At Normalyze, we're changing the way security and DevSecOps teams view their cloud deployments. Our mission is to help enterprises protect all the data they run in the cloud.
    Through its agentless assessments, data discovery, AI-driven risk prioritization, and comprehensive and actionable remediation insights, Normalyze helps enterprises understand the full range of risks present against their cloud data.
    Normalyze is a cybersecurity startup focussed on a data-first approach to cloud security. Founded by security veterans from Netskope (pre-IPO, $7.5B), Palo Alto Networks (PANW: $60B) and Qualys (QLYS: $5B), and backed by Tier-1 VC's, including Lightspeed and Battery Ventures. The company headquarters are in the US (Silicon Valley) but operates fully remote with a global team.
    About this role:
    • Research and analyze threats related to Cloud, IaaS & SaaS service providers like AWS, GCP, Azure, Office 365, Okta, and Snowflake.
    • Analyze emerging cloud threats and their impact on customers as well as our own cloud infrastructure.
    • Build contextual attack graphs by combining various cloud data security elements.
    • Discover new attack techniques and develop detection methods for them.
    • Help customers understand the threat landscape and provide guidance on risk mitigation.
    • Work closely with engineers to prioritize and refine your deliverables. - Implement, map and correlate various compliance frameworks with cloud misconfigurations and data security risks
    Requirements:
    • 5+ years of information security research, incident response, penetration testing, or similar experience.
    • Strong understanding of security in public cloud providers like AWS, GCP, or Azure. Ideally on at least 2 of the three.
    • Pen Testing AWS, GCP, or Azure.
    • Scripting and automation experience. Experience with Graph, Neo4j, cypher query is a plus.
    • You can demonstrate that you are innovative, a continuous learner, and a problem solver

    Apply here:  https://jobs.lever.co/normalyze/e3bf363f-bc69-4c3f-807c-cc5c8328b2d9


    ------------------------------
    Chuck Konrad
    Head of Talent
    Normalyze
    ------------------------------