Job Description
Wing Security is an Israeli cybersecurity company offering an innovative SaaS Security Posture Management (SSPM) solution. Wing empowers organizations worldwide by providing clear visibility and full control over their SaaS applications, which are becoming increasingly critical for businesses today.
Wing is seeking an experienced Cyber Threat Researcher to join our cyber research team. This role involves in-depth research into SaaS application security, identifying misconfigurations, and providing insights that help secure our customers’ SaaS environments. You’ll work closely with product, marketing, and R&D teams to ensure your research contributes to developing cutting-edge security features and customer value.
Key Responsibilities
- Conduct Security Research: Conduct in-depth research into security risks and misconfigurations associated with SaaS applications, identifying trends and opportunities to enhance product capabilities.
- API Analysis: Review SaaS application APIs to assess security functionalities, and determine how to leverage them for enhanced protection.
- Cyber Threat Intelligence: Analyze emerging cyber threats and breaches to understand attack vectors, risks, and trends, applying this knowledge to enhance the security posture of our product and customers.
- Collaborate Across Teams: Partner with product, R&D, and marketing teams to translate research findings into valuable product features and contribute to security-focused publications and thought leadership.
Qualifications
- 3+ years of experience in cyber threat research, security research, or related fields.
- Experience with APIs and the ability to interpret API documentation to understand data extraction and actions possible via SaaS application APIs.
- Solid knowledge of cyber attack frameworks such as MITRE ATT&CK and familiarity with TTPs and real-world cyber threats.
- Excellent collaboration skills, with experience working cross-functionally with product, marketing, and R&D teams.
- Strong problem-solving and critical thinking abilities, with a proven ability to analyze complex cyber threats and recommend appropriate actions.