Job Description

About the role Today, there s more data and users outside the enterprise than inside, causing the network perimeter as we know it to dissolve. We realized a new perimeter was needed, one that is built in the cloud and follows and protects data wherever it goes, so we started Netskope to redefine Cloud, Network, and Data Security. Within Netskope Engineering, we have invented a Next Generation SaaS Security Posture Management (SSPM) tool that gives enterprises workload and compliance visibility to protect critical data within their numerous Software-as-a-Service deployments. The research team for this product works as content producers, pathfinders and minesweepers. The researchers duties are to discover the best solutions to the problems our customers are facing before they know they have them and to find flaws in our design choices before we engineer them. For this mission, we are looking for new security researchers to design new security-focused application integrations and develop new content for the platform. What s in it for you We believe Netskope s SSPM team is the best place for you to work if you seek: An opportunity to shape the design of a novel product and have a significant role on the impact it makes in the enterprise security domain. To solve intellectually rewarding problems with a meaningful purpose. A position with high agency and trust on how you choose to work. An amazing work environment, competitive compensation, benefits and great perks. The rest of the great reasons to join Netskope as described in https: / / www.netskope.com / company / careers What you will be doing Some examples of the problems the team needs to solve could include: Implement security and compliance content to the product. Help make the correct security configuration decisions on behalf of our customers. Investigate SaaS design and data models and translate them to security graphs consumed by the SPM product. Study API design, hardening manuals and security best practices to discover the essential security caveats of the target applications. Find novel solutions to provide visibility, security, compliance and remediation tools for enterprise SaaS application environments. Explore different threat vectors for cloud services. Support multiple stakeholders such as engineering, research, product management, customer success, and customer support teams as a domain expert. Public writing and presentation opportunities, such as publishing articles, blogs or papers in relevant conferences. Mentor, coach and lead a team of researchers to write detections that are of high quality. Required skills and experience A decent understanding of Information Security. SaaS specific security experience preferable. At least 4 - 6 years of experience in security domain (any of CSPM, DSPM, ASPM or the like) Experience from security analysis work, enterprise SaaS deployment hardening duties or from security content development. Proficient enough in scripting language ( Python, Shell ) of one s choice to be able to solve technical problems with code. Experience with public cloud security and other security solutions is an asset. Experience on novel product development, API-based automation and programming are great merits as well. Experience working with common database and search technologies such as SQL Experience working with big data frameworks such as Spark or BigQuery Additional Skills To perform this duty successfully, a candidate ideally has the following non-technical skills: Great written and verbal communication skills. Fast learning skills, intuitiveness and creativity. Comfortable working in unknown domains. Be opinionated and not afraid of expressing oneself. Precise, careful and detail oriented. Ability to work in a geo-distributed cross-functional group in asynchronous fashion. Education BSCS or equivalent required, MSCS or equivalent strongly preferred #LI-JB3