Senior Threat Researcher

At SAFE Security, our vision is to be the Champions of a Safer Digital Future and the Catalysts of Change. We believe in empowering individuals and teams with the freedom and responsibility to align their goals, ensuring we all move forward together.

We operate with radical transparency, autonomy, and accountability—there’s no room for brilliant jerks. We embrace a culture-first approach, offering an unlimited vacation policy, a high-trust work environment, and a commitment to continuous learning. For us, Culture is Our Strategy—check out our Culture Memo to dive deeper into what makes SAFE unique.

We’re looking for a Senior Threat Researcher to lead security efforts across our product and production environments and ensure that what we build is built to last and withstand.

As part of our Security Operations (SecOps) team, you’ll work closely with engineers and product managers, embedding security into every phase of the development lifecycle.

What You’ll Do:

• Lead a team of 3 Threat Researchers focused on product and production security
• Conduct manual security assessments of web/mobile applications and APIs as part of sprint ceremonies (biweekly)
• Perform static code analysis (SAST), software composition analysis (SCA), and secrets scanning using automated tools, followed by deep manual validation
• Monitor, triage, and prioritize vulnerabilities in the production environment
• Carry out perimeter security reviews based on emerging threats and attack surface changes
• Review the security implications of new architecture or deployment changes
• Monitor and action alerts from the Cloud Native Application Protection Platform (CNAPP)
• Collaborate cross-functionally with engineering and program teams to embed security best practices
• Automate repetitive security tasks using scripting (Python, Shell, JS, etc.)

What You’ll Bring:

• Bachelor’s or Master’s degree in Computer Science, IT, or related field
• Proven experience in Application & Cloud Security, with hands-on exposure to:
- Burp Suite Pro
- SAST/SCA tools
- CNAPP solutions
• Strong understanding of vulnerability validation and risk prioritization
• Familiarity with code repositories (e.g., GitHub) and secure code practices
• Comfortable with scripting for automation and tooling
• Experience working in Agile Scrum environments
• Effective communicator with strong documentation and team collaboration skills
• Previous experience in leading or mentoring a security-focused team

Nice to Have (Certifications):

• OSCP
• OSWE
• CRTP

If you’re passionate about cyber risk, thrive in a fast-paced environment, and want to be part of a team that’s redefining security—we want to hear from you! 🚀