Application Security Researcher (US)

Tenzai

$120K — $150K *
Boston, MA 02115In-Person
Information Technology
Less than 5 years of experience
Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • Deep expertise in Web and API security, covering authentication, business logic, and injection flaws.
  • Over 3 years of hands-on experience in Penetration Testing, Application Security, Bug Bounty, or Red Team operations.
  • Strong ability to communicate complex vulnerabilities clearly, in both written and verbal formats.
  • Experience in coding to create custom tools for penetration tests.
  • Proven adaptability to fast-paced startup environments with a strong sense of ownership.

Responsibilities

  • Leverage Tenzai's AI agent to test customer applications, validate vulnerabilities, and document findings with evidence.
  • Deliver clear presentations of vulnerability findings to both customers and internal stakeholders.
  • Evaluate the AI system's performance, focusing on missed opportunities, misclassifications, or erroneous assessments.
  • Create new offensive testing techniques and strategies for web and API vulnerabilities, enhancing AI capabilities with real-world insights.

Benefits

  • Unique opportunity to work at the intersection of offensive security and AI.
  • Collaborative environment with a tight-knit team focused on innovation.
  • Impactful role where your expertise directly shapes an enterprise-scale security platform.
Full Job Description
Description

About the role

This is a rare opportunity to work at the intersection of offensive security and AI - and to have your expertise shape a platform used at enterprise scale. You'll perform attacks on customer applications, help the AI agent get smarter, and work alongside a tight-knit team building something genuinely new in the security space. Work closely with AI and engineering teams to continuously improve agent capabilities.

Responsibilites

  • Harness Tenzai's AI agent on customer applications, analyze the results, and validate vulnerabilities with clear exploitation evidence.
  • Present findings and exploitation evidence clearly and transparently to customers and internal teams
  • Analyze where the system needs to improve, investigate cases where the AI missed, misclassified, or hallucinated vulnerabilities.
  • Develop new attack strategies and offensive testing techniques for web and API targets, and translate real-world knowledge into improvements for the AI agent.

Requirements

  • Deep expertise in Web and API security, including authentication, business logic, and injection flaws
  • 3+ years of hands-on experience in Penetration Testing, Application Security, Bug Bounty, or Red Team operations
  • Ability to articulate complex vulnerabilities clearly, both in writing and verbally.
  • Experience in writing code to develop tooling for penetration tests
  • Comfortable working in a fast-paced startup environment with a high degree of ownership
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at Tenzai

More Information Technology Jobs

Find similar Application Security Researcher (US) jobs:

NationwideBoston, MA