Security Researcher

Equixly is an innovative cybersecurity tech company that has developed a cutting-edge API Security Testing solution designed to help businesses identify vulnerabilities in their applications. Our mission is to shift the paradigm from addressing issues post-attack to preventing them proactively, by seamlessly integrating into the software development lifecycle (CI/CD).

We are committed to advancing the future of cybersecurity in Europe. Every aspect of our platform is built in-house, leveraging our deep technical expertise to create proprietary AI models and agents that drive our solutions.

To fuel our growth, we are looking for a talented Security Researcher to play a key role in testing and expanding the scope of vulnerabilities identified by Equixly. You will collaborate closely with our AI team to enhance the performance of our testing tools, validate vulnerabilities, and develop automation methods to strengthen our product’s ability to detect Web vulnerabilities, ensuring our customers receive the highest level of protection.

Main Responsibilities

• Run security tests on APIs, single-page applications, and web applications using Equixly to identify vulnerabilities and areas for improvement.
• Work with the AI team to help train models to use testing tools, confirm vulnerabilities, and improve detection accuracy.
• Improve Equixly’s algorithms to increase coverage and accuracy when identifying vulnerabilities in REST APIs, GraphQL, SOAP, and modern applications.
• Develop extensions, modules, and custom security tests using the Equixly engine to cover new attack paths and specific use cases.
• Research and apply new exploitation and automation techniques to find zero-day vulnerabilities and new types of security issues.
• Validate and triage vulnerabilities identified by the platform, reducing false positives and ensuring the results sent to clients are high quality.
• Work with development teams to define fixes, give security advice, and promote secure coding practices.
• Help shape future technical plans by giving feedback on how well the tools work and suggesting new features based on real test scenarios.

Required Skills and Experience

• Proven experience in penetration testing for REST APIs, with a strong background in cybersecurity.
• Deep knowledge of API security standards, including the OWASP Top 10 for APIs and common security issues in REST APIs.
• Experience using API security testing products, with the ability to read results and turn them into clear actions.
• Strong analytical and problem-solving skills, with a structured approach to finding and reducing vulnerabilities.
• Excellent communication skills to work well with internal teams and present results and suggestions in a clear way.
• Bonus points: OSWE or eWPT certifications, and a degree in Computer Science.

What We Offer

• A dynamic and stimulating work environment in an innovative cybersecurity startup.
• Opportunities for professional and personal growth.
• Competitive salary and company benefits.