Application Security Researcher - monday.com : Job Details

monday.com is looking for an application security researcher to research our platform for vulnerabilities, manage our bug bounty program, and work with R&D to enhance the security of our platform. The Application Security Team is based in our headquarters, Tel Aviv, Israel - you'll be the first to join the team from London.

monday.com works hybrid with 3 days in the London office.

• Perform black, gray, and white box penetration testing on monday.com's platform - both frontend and backend.
• Manage the bug bounty program, including hacker engagement and communication with the hacker community.
• End-to-end work on reported vulnerabilities as part of the bug bounty program.
• Provide guidance on security best practices to developers.
• Embed/improve security threat modeling and secure coding in the development lifecycle.
• Develop security abuse cases for testing as part of the software development lifecycle.
• Perform and oversee security testing and manage remediation of identified vulnerabilities.
• Monitor and proactively report on current threats and vulnerabilities to application security.
• Initiate and automate processes for detecting and monitoring the platform security.

• Scripting capabilities and automation mindset.
• At least 2 years of experience in web penetration-testing, blackbox and whitebox.
• In-depth knowledge of application security vulnerabilities, testing techniques, and the OWASP framework.
• Experience working with the hacker/pen-testing community.
• Team player able to build relationships across the organization, also remotely.
• Understanding of secure web application development.
• Comprehensive knowledge of IT and information security subject matter.
• Exposure to methods of promoting security awareness.
• Strong communication (verbal/written) and influencing skills, with an ability to manage internal and external relationships.
• Anticipates problems and identifies long-term implications of decisions and actions.
• Ability to work and learn alone.
• Able to prioritize workload and drive work to set deadlines.

We believe in equal opportunity. monday.com is an equal opportunity employer and bans discrimination and harassment of any kind. monday.com is committed to the standard of equal employment opportunity for all employees and to creating and maintaining a workplace free of discrimination and harassment.

All qualified applicants will be considered for employment regardless of any personal characteristic. We encourage candidates from all backgrounds to apply, regardless of their race, religion, national origin, ethnicity, sexual orientation, gender identity, age, marital status, family or parental status, physical or mental disability or any other status protected by the laws or regulations in the locations where monday.com operates.

monday.com is committed to working with and providing access and reasonable accommodation to applicants with any disabilities. If you think you may require accommodation for any part of the recruitment process, please send a request to [email protected]. All requests for accommodation are treated confidentially, as practical and permitted by law.

We are responsible for providing our customers, employees, and management with best-in-class security in order to promote our business goals and company growth.