Back to all jobs

Security Analyst

Snyk

Apr 12

Security Analyst

We are looking for a curious, analytical and detail-oriented Security Analyst to join our team and help us continue building, refining and improving our Container vulnerability database.

Your Role

In modern software development, many technologies powering containers, such as some Linux distributions, are open source and rely on open source packages.  These packages are out there in the world, visible for anyone, and within that code there are vulnerabilities. As part of our team, you'll join us on our mission to continually improve our vulnerability coverage and accuracy. 

You'll join our interdisciplinary security team, alongside fully dedicated engineers focussed on building the tools and infrastructure that make your work more effective and have lots of opportunities to learn and grow. 

You’ll spend your time:

  • Analyzing and understanding the security data of container operating systems, such as different Linux distributions
  • Exploring and analysing additional metadata to verify and determine the severity of vulnerabilities
  • Monitoring our containers vulnerabilities database to make sure of its accuracy by creating and managing a variety of dashboards, using tools such as Python, Looker, Grafana and DataStudio
  • Building data models and structures
  • Using data analyst techniques to answer research questions about vulnerabilities, and general threat intelligence trends
  • Developing and testing theories and hypotheses around new areas that Snyk tackles
  • Exploring and establishing the new abilities we need to develop our product to further achieve our mission
  • Developing and maintaining relationships with  Linux distributions security teams
  • Defining and developing the new features and KPIs in our Container  products

You should apply if:

  • You're comfortable working with large datasets (we use BigQuery; ideally you'll have used one of BigQuery, elasticsearch, kibana, hadoop etc.)
  • You have a passion for security and an interest in the problem space
  • You’ve triaged and analysed data before using techniques and tools such as Looker, DataStudio and Python
  • You have experience using statistical tools to help answer research questions
  • You love to automate your work, through writing your own scripts (we use Python and JavaScript)
  • You love learning new techniques and getting experience in new fields
  • You have previous experience working with open source codebases

We’d especially love to hear from you if you:

  • You have worked with researchers before, ideally in the security space or have conducted security research yourself
  • You have experience PoCing vulnerabilities and dealing with vulnerability disclosures
  • You have worked closely with Data Scientists in the past
  • You have experience working with containers or Linux

Interested?

Please apply below! We care deeply about the warm, inclusive environment we’ve created and we value diversity - we welcome applications from those typically underrepresented in tech. If you like the sound of this role, but are not totally sure whether you’re the right person, do apply anyway :)

 

Location

For this role, we can hire remotely in the following countries: Israel, Romania or UK

About Snyk

Snyk is the leader in developer security. We empower the world's developers to build secure applications and equip security teams to meet the demands of the digital world. Our developer-first approach ensures organizations can secure all of the critical components of their applications from code to cloud, leading to increased developer productivity, revenue growth, customer satisfaction, cost savings and an overall improved security posture. 

At Snyk, we envision an inclusive technology industry powering a more sustainable and secure world. Since our founding, Snykers have cared deeply for one another and the developer and security communities as well as the larger world around us. Learn more about our Snyk Impact social and environmental mission and take action with us here.

Snyk's Developer Security Platform automatically integrates with a developer's workflow and is purpose-built for security teams to collaborate with their development teams. Snyk is used by 1,200 customers worldwide today, including industry leaders such as Asurion, Google, Intuit, MongoDB, New Relic, Revolut and Salesforce.

Snyk is recognized on the Forbes Cloud 100 2021, the 2021 CNBC Disruptor 50 and was named a Visionary in the 2021 Gartner Magic Quadrant for AST.