Application Security Researcher at Cato Networks

About the role

Aplyr's Quick Take

This role is about ensuring the security of Cato Networks' applications by reviewing code, architecture, and design for vulnerabilities. You'll work closely with R&D and Product teams to implement security best practices and stay updated on threats. It's an individual contributor role focused on technical security tasks.

Good fit

Ideal candidates have at least 3 years of experience in application security or vulnerability research, with a strong understanding of secure coding practices. A proactive and detail-oriented working style will help you thrive in this environment.

Worth noting

The position emphasizes collaboration with product teams and includes contributions to a security research blog, which could be a unique opportunity for those interested in thought leadership in security.

Welcome to the future of cloud networking and security!

Cato Networks is the first company to converge enterprise networking and security into one centralized and global service that is delivered by cloud. It is led by networking and security pioneer Shlomo Kramer (Check Point, Imperva) and early investor (Palo Alto Networks, Exabeam, Trusteer and more). Cato’s unique technology inspired a brand-new product category, later named “SASE” by Gartner and a market expected to reach $28.5 billion by 2028.

This is your opportunity to get on the rocket ship and join a company that is building a cutting-edge enterprise network and secure cloud platform, and is on a fast track to becoming the worldwide market leader – don’t miss it!

We're looking for an Application Security Researcher to join us. In this critical role, you will assist us in validating our services and environments according to the highest security standards. Also, You will work closely with our R&D and Product teams, and solve complex security problems.

Responsibilities:

Continuously checking and improving security measures to protect our systems.
Reviewing system architecture, design, and code to find and fix security weaknesses before they become a problem.
Helping developers follow secure coding practices and learn how to prevent security risks.
Staying updated on new security threats and best practices to keep our security standards high.
Contributing to Cato’s security research blog.

Requirements:

At least 3 years of experience in application security or vulnerability research.
Hands-on experience in penetration testing for web, mobile, infrastructure, and thick client applications.
Experience bypassing security tools like RBI, EDR, and DLP.
Programming skills, with a preference for Java, Go, or C.
Ability to find and fix security flaws in open-source libraries and third-party software.
Knowledge of supply chain attacks and how to prevent them.
Hands-on experience with AWS cloud attacks and mitigations (preferred).
Understanding of microservices architectures, Docker, and Kubernetes.
Strong problem-solving skills and the ability to work independently.
Good communication skills and a passion for sharing knowledge.
Understanding of network security and encryption protocols.

Additional Skills (Preferred):

Experience using SAST/DAST tools for static and dynamic code analysis.
Experience working in Agile teams and collaborating with different departments.
Security certifications like OSCP, CRTP, OSWE, or similar.
Ability to lead security projects and initiatives.
Adaptability to a fast-paced environment.
Knowledge of current security threats and how to defend against them.
Experience with writing security blogs, CVE research, or bug bounty programs is a plus.
BSc in Computer Science- an advantage.

Skills & Tags

java go rust aws kubernetes docker ai mobile

Aplyr's read

Cato Networks is a leading cloud-based cybersecurity firm, attracting professionals skilled in AI, network security, and global sales strategies.
Synthesized from recent postings & public sources

What's promising

•Cato Networks offers innovative cloud-based security solutions, addressing modern cybersecurity challenges.
•The company is expanding its AI capabilities, hiring roles like AI Team Lead and Agentic AI Engineer.
•Cato Networks is growing globally, with roles like Country Manager and Channel Account Manager in diverse regions.

What to watch

•The competitive cybersecurity market requires constant innovation to maintain a leading position.
•Rapid expansion may challenge internal communication and operational consistency.
•Dependence on cloud infrastructure could pose risks if service disruptions occur.

Why Cato Networks

•Cato Networks integrates AI into its cybersecurity solutions, enhancing threat detection and response.
•The company offers a unified platform for secure access, simplifying network security management.
•Cato Networks' focus on global expansion is evident in its diverse hiring across regions and functions.

Aplyr’s read is generated by AI from public sources. Was it useful?