[Remote] Senior Security Researcher at Endor Labs

United States

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Application Security, CybersecurityIndustries

Skills

Key technologies and capabilities for this role

Security ResearchVulnerability DiscoveryOffensive SecurityReverse EngineeringExploit DevelopmentSoftware Vulnerability AnalysisSoftware Supply Chain SecurityCI/CD Pipelines

Questions & Answers

Common questions about this position

Is this position remote?

Yes, this is a remote position.

What is the salary for this Senior Security Researcher role?

This information is not specified in the job description.

What skills and experience are required for this role?

Candidates need 5+ years of experience in security research, vulnerability discovery, and offensive security, deep expertise in reverse engineering, exploit development, and software vulnerability analysis, strong understanding of software supply chain security including package management, CI/CD pipelines, and dependency analysis, plus experience discovering and disclosing zero-day vulnerabilities.

What does the company culture or work environment look like at Endor Labs?

This information is not specified in the job description.

What makes a strong candidate for this Senior Security Researcher position?

A strong candidate has 5+ years in security research and offensive security, deep expertise in reverse engineering and exploit development, experience with zero-day vulnerabilities, and knowledge of software supply chain security including CI/CD and dependencies.

Endor Labs

Cybersecurity software vulnerability analysis services

About Endor Labs

Endor Labs specializes in cybersecurity by focusing on reachability-based dependency analysis to identify vulnerabilities in software that hackers could exploit. Their team, composed of PhDs, analyzes software to provide a comprehensive risk score that evaluates security, quality, popularity, and activity. This analysis helps reduce alert noise by 80%, allowing clients to concentrate on the most critical issues. They offer a flexible policy engine for clients to create tailored risk profiles, minimizing disruptions in the software development process. Additionally, Endor Labs assists businesses in managing Software Bill of Materials (SBOM) and Vulnerability Exploitability Exchange (VEX) to understand the risks and costs associated with software ownership. Their goal is to enhance the security and quality of software for businesses of all sizes while generating revenue through their analysis and monitoring services.

Palo Alto, CaliforniaHeadquarters

2021Year Founded

$92.4MTotal Funding

SERIES_ACompany Stage

Data & Analytics, CybersecurityIndustries

51-200Employees

Benefits

Health Insurance

Dental Insurance

Vision Insurance

Mental Health Support

Unlimited Paid Time Off

401(k) Retirement Plan

Remote Work Options

Risks

Integration with Microsoft Cloud Defender may strain resources to maintain high performance.

New AI model evaluation tool could expose Endor Labs to risks of biases and inaccuracies.

Strategic investment from Citi Ventures may pressure the company for rapid financial growth.

Differentiation

Endor Labs specializes in reachability-based dependency analysis for software vulnerability detection.

The company offers a comprehensive risk score for software packages, reducing alert noise by 80%.

Endor Labs' flexible policy engine allows clients to create specific risk-based policies.

Upsides

Endor Labs' SCA tool is integrated with Microsoft Cloud Defender, expanding its market reach.

The company received strategic investment from Citi Ventures, boosting financial resources.

Endor Labs won 'Most Innovative Technology' award, enhancing its industry credibility.

Land your dream remote job 3x faster with AI

Try Jobo Free