By clicking “Accept All Cookies”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.
Preferences
Deny all
Deny all
Accept all
Accept all

Cookie Settings

Deny all
Deny all
Accept all
Accept all
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Meet Us at Black Hat 2025
Back to Careers
Remote
US Resident Only

Security Engineer (Research)

Location
All US
-
US
Apply now
Apply now

The Company

ZEST Security offers an AI-powered risk resolution platform that enables security and DevOps teams to remediate and mitigate cloud risks at a scale and speed that wasn’t possible before.

The Mission

ZEST’s mission is to bridge the gap between identifying cloud security risks and resolving them. It ’s not about opening tickets; it ’s about closing them.

Role Description

  • Conduct security research to identify vulnerabilities in cloud environments, including detecting and addressing CVEs
  • Lead the design and implementation of security solutions for cloud infrastructure (AWS, Azure, GCP)
  • Assess and mitigate cloud security risks, including misconfigurations, vulnerabilities, and compliance gaps
  • Perform penetration testing and vulnerability assessments to identify new vulnerabilities
  • Develop and maintain security policies, standards, and procedures for cloud services
  • Contribute to security incident response processes, providing guidance on remediation and mitigation
  • Design and implement automation scripts for vulnerability detection and remediation
  • Conduct research on emerging threats, security tools and methodologies to enhance the overall security posture

Qualifications

  • 2+ years of experience in cloud security, with a strong focus on vulnerability management and research (CVE detection and mitigation)
  • In-depth experience with cloud platforms such as AWS, Azure, and Google Cloud Platform
  • Strong understanding of security concepts such as IAM, firewalls, encryption, key management, and network security
  • Hands-on experience with vulnerability management and cloud misconfiguration(scanning and remediation)
  • Hands-on experiences with cloud tools such as Wiz, Crowdstrike or other CNAPP tools
  • Proven ability to identify and mitigate cloud vulnerabilities, including research into CVEs and applying patches or security workarounds
  • Experience with DevSecOps practices, including integrating security into CI/CD pipelines
  • Strong understanding of security standards and frameworks such as CIS, NIST, or ISO 27001
  • Experience in scripting and automation for security tasks (Python, Bash, PowerShell, etc.)
  • Excellent analytical and problem-solving skills, with strong attention to detail
  • Strong communication and collaboration skills, with the ability to work with cross-functional teams

Preferred Qualifications

  • Relevant certifications such as AWS Certified Security – Specialty, Certified Ethical Hacker (CEH), Certified Cloud Security Professional (CCSP), or Offensive Security Certified Professional (OSCP)
  • Experience with Kubernetes security and container-based environments
  • Knowledge of threat modeling and risk assessment methodologies
Apply now
Apply now