Security Researcher

What we do at Detectify

The fear of cyber threats should never stand in the way of digital greatness. That is why we are changing the fundamentals of how cyber security works. We collaborate with ethical hackers to build a powerful platform that automates and scales crowdsourced vulnerability research.

For us, security is not just about protecting what you have but more so a tool to achieve what you want. At Detectify, your opinion and ideas matter. You belong to a dedicated, driven and forever curious team that recognise the power of knowledge sharing and challenging the status quo.

We value diversity of minds, different backgrounds, and perspectives. We are all here because we want to make a positive impact in the world. If you are collaborative and passionate about what you do, then you too could be a Detectifyer.

The Predictive Assessment team

Our team is growing and we are looking for another Security Researcher to the Predictive Assessment team. This team is currently composed of four people that work hard in order to make sure that the members of Detectify Crowdsource - our network of ethical hackers - are engaged and enjoying the best possible experience when collaborating with Detectify.

When a researcher submits a vulnerability through our Crowdsource platform, our team builds a module for it and adds it into the Detectify service. By reporting the vulnerability to us, it becomes a security test which is then made available to all our customers – this is how Detectify combines automation and crowdsourcing.

What you will get to do

As a Security Researcher, your main responsibility will be to validate and implement proof of concepts, uploaded by our Crowdsource and internal researchers, into our scanner. You will also be involved in the development of predictive scanning engines, with the final aim of enabling significant scaling of Crowdsource.

Other responsibilities include:

• Communicate with our security researchers in order to gather all necessary information to understand the submitted vulnerabilities.
• Develop modules from vulnerability reports using a JSON-based DSL and C#.
• Develop predictive scanning engines in Golang.
• Perform code reviews to ensure accuracy and reduce tests resulting in false positives.
• Consistently review behavior of implemented modules to identify false positives or negatives.
• Consistently evolve predictive scanners to accommodate smarter automation of module development.
• Develop proof-of-concept code for new scanner features.

Who you are

You are looking for an opportunity to impact and shape the future of a growing organisation. You are obsessed with tinkering and iterating to develop your programming further with a security-first approach. You are a highly versatile and self-motivated individual who can create and drive change.

You are involved with the security community and understand how vulnerabilities work. Overall, internet security is an interest of yours and you want to engage with an international network of security researchers.

We would expect you to have some years of experience writing code in an object and component-oriented programming discipline.

So, what do you think?

We are proud to foster an inclusive workplace free from discrimination. We strongly believe that diversity of experience, perspectives, and background will lead to a better environment for our employees and a better product. This is something we value deeply and we encourage everyone to be a part of changing the way the world thinks about security! Go hack yourself!

Remote work

This position is for the Stockholm office. We offer remote working, with access to our office in central of Stockholm. We think you should be able to work from anywhere but for tax reasons we need you to be located in Sweden, and we are more than happy to help you relocate.

Öppen för alla
Vi fokuserar på din kompetens, inte dina övriga förutsättningar. Vi är öppna för att anpassa rollen eller arbetsplatsen efter dina behov.