About JFrog
The software supply chain platform for seamless updates
Key Highlights
- Headquartered in Sunnyvale, CA with 1001+ employees
- $226.5 million raised in Series C funding
- Serves thousands of clients including Dell, Netflix, and Facebook
- Focus on automating DevOps and DevSecOps with REST APIs
JFrog, headquartered in Sunnyvale, CA, is a leading software supply chain platform that automates the release of software updates. Founded in 2008, JFrog has raised $226.5 million in funding and serves thousands of clients, including Dell, Netflix, and Facebook. With a focus on DevOps and DevSecOps,...
🎁 Benefits
JFrog offers an Employee Stock Purchase Plan, comprehensive medical, dental, and vision coverage, a robust retirement plan, wellness programs, and gen...
🌟 Culture
JFrog fosters a culture centered on automation and security, emphasizing the importance of continuous software updates. The company prioritizes collab...
Skills & Technologies
Overview
JFrog is seeking a Security Researcher to perform security research on open-source projects and develop automated methods for identifying vulnerabilities. You'll work with languages such as Python, Java, and Node.js, and your role will involve vulnerability research and code exploitation.
Job Description
Who you are
You have experience in security research, particularly focusing on open-source projects and various programming languages. Your background includes vulnerability research and the ability to define automated methods for identifying exploitable security issues. You are proficient in Python and have experience with code exploitation, whether in backend environments or web applications. Your technical writing skills allow you to produce detailed reports on your findings, and you may have experience in binary reverse engineering, which is a valuable asset for this role. Additionally, familiarity with DevOps practices will enhance your contributions to the team.
What you'll do
As a Security Researcher at JFrog, you will engage in cutting-edge security research, focusing on both web and low-level technologies. Your primary responsibility will be to research CVEs and one-day vulnerabilities across various programming languages and ecosystems. You will define and develop automated methods to identify exploitable vulnerabilities, ensuring that our security measures are robust and effective. Your role will involve collaborating with other security experts and developers to push the boundaries of security analysis, contributing to the overall mission of JFrog to secure software delivery. You will also be responsible for writing technical reports that detail your research findings and methodologies, helping to inform and educate the broader team on security best practices.
What we offer
At JFrog, you will be part of a dynamic team that values innovation and collaboration. We offer a unique work environment where you can grow your skills and contribute to meaningful projects that impact the security of software delivery for major companies worldwide. You will have the opportunity to work alongside industry-leading experts and be part of a culture that encourages creativity and technical excellence. We believe in supporting our employees' professional development and providing them with the resources they need to succeed in their roles.
Interested in this role?
Apply now or save it for later. Get alerts for similar jobs at JFrog.
Similar Jobs You Might Like
Based on your interests and this role
Network Engineer
Axonius is hiring a Network Security Researcher to conduct deep-dive security research and network analysis on OT, IoT, and medical protocols. You'll utilize Python and SQL to automate research workflows and enhance product detection capabilities. This position requires at least 2 years of experience in cybersecurity research.
Security Engineer
JFrog is seeking a Security Research Team Lead to drive security research on open-source projects and manage a team of researchers. You'll work with technologies like C, Java, and Python to identify and automate the detection of vulnerabilities. This role requires strong leadership and technical expertise in security research.
Security Engineer
Geotab is hiring a Senior Security Researcher to advance security in IoT and connected transportation. You'll leverage machine learning and data analytics to enhance fleet safety and sustainability. This position requires expertise in security research and analytics.
Security Engineer
Veracode is hiring a Senior Security Researcher to lead research projects aimed at enhancing Static Application Security Testing capabilities. You'll conduct original security research and engage in static analysis of applications. This role requires expertise in C, C#, and C++.