ZEST Security
Join to apply for the
Security Engineer (Research)
role at
ZEST Security
Company ZEST Security offers an AI-powered risk resolution platform that enables security and DevOps teams to remediate and mitigate cloud risks at a scale and speed that wasn’t possible before.
Mission ZEST’s mission is to bridge the gap between identifying cloud security risks and resolving them. It’s not about opening tickets; it’s about closing them.
Role Description
Conduct security research to identify vulnerabilities in cloud environments, including detecting and addressing CVEs
Lead the design and implementation of security solutions for cloud infrastructure (AWS, Azure, GCP)
Assess and mitigate cloud security risks, including misconfigurations, vulnerabilities, and compliance gaps
Perform penetration testing and vulnerability assessments to identify new vulnerabilities
Develop and maintain security policies, standards, and procedures for cloud services
Contribute to security incident response processes, providing guidance on remediation and mitigation
Design and implement automation scripts for vulnerability detection and remediation
Conduct research on emerging threats, security tools and methodologies to enhance the overall security posture
Qualifications
2+ years of experience in cloud security, with a strong focus on vulnerability management and research (CVE detection and mitigation)
In-depth experience with cloud platforms such as AWS, Azure, and Google Cloud Platform
Strong understanding of security concepts such as IAM, firewalls, encryption, key management, and network security
Hands‑on experience with vulnerability management and cloud misconfiguration (scanning and remediation)
Hands‑on experiences with cloud tools such as Wiz, Crowdstrike or other CNAPP tools
Proven ability to identify and mitigate cloud vulnerabilities, including research into CVEs and applying patches or security workarounds
Experience with DevSecOps practices, including integrating security into CI/CD pipelines
Strong understanding of security standards and frameworks such as CIS, NIST, or ISO 27001
Experience in scripting and automation for security tasks (Python, Bash, PowerShell, etc.)
Excellent analytical and problem‑solving skills, with strong attention to detail
Strong communication and collaboration skills, with the ability to work with cross‑functional teams
Preferred Qualifications
Relevant certifications such as AWS Certified Security – Specialty, Certified Ethical Hacker (CEH), Certified Cloud Security Professional (CCSP), or Offensive Security Certified Professional (OSCP)
Experience with Kubernetes security and container-based environments
Knowledge of threat modeling and risk assessment methodologies
#J-18808-Ljbffr
Security Engineer (Research)
role at
ZEST Security
Company ZEST Security offers an AI-powered risk resolution platform that enables security and DevOps teams to remediate and mitigate cloud risks at a scale and speed that wasn’t possible before.
Mission ZEST’s mission is to bridge the gap between identifying cloud security risks and resolving them. It’s not about opening tickets; it’s about closing them.
Role Description
Conduct security research to identify vulnerabilities in cloud environments, including detecting and addressing CVEs
Lead the design and implementation of security solutions for cloud infrastructure (AWS, Azure, GCP)
Assess and mitigate cloud security risks, including misconfigurations, vulnerabilities, and compliance gaps
Perform penetration testing and vulnerability assessments to identify new vulnerabilities
Develop and maintain security policies, standards, and procedures for cloud services
Contribute to security incident response processes, providing guidance on remediation and mitigation
Design and implement automation scripts for vulnerability detection and remediation
Conduct research on emerging threats, security tools and methodologies to enhance the overall security posture
Qualifications
2+ years of experience in cloud security, with a strong focus on vulnerability management and research (CVE detection and mitigation)
In-depth experience with cloud platforms such as AWS, Azure, and Google Cloud Platform
Strong understanding of security concepts such as IAM, firewalls, encryption, key management, and network security
Hands‑on experience with vulnerability management and cloud misconfiguration (scanning and remediation)
Hands‑on experiences with cloud tools such as Wiz, Crowdstrike or other CNAPP tools
Proven ability to identify and mitigate cloud vulnerabilities, including research into CVEs and applying patches or security workarounds
Experience with DevSecOps practices, including integrating security into CI/CD pipelines
Strong understanding of security standards and frameworks such as CIS, NIST, or ISO 27001
Experience in scripting and automation for security tasks (Python, Bash, PowerShell, etc.)
Excellent analytical and problem‑solving skills, with strong attention to detail
Strong communication and collaboration skills, with the ability to work with cross‑functional teams
Preferred Qualifications
Relevant certifications such as AWS Certified Security – Specialty, Certified Ethical Hacker (CEH), Certified Cloud Security Professional (CCSP), or Offensive Security Certified Professional (OSCP)
Experience with Kubernetes security and container-based environments
Knowledge of threat modeling and risk assessment methodologies
#J-18808-Ljbffr