Application Security Researcher (US)

Tenzai

$100K — $150K *
US-AnywhereRemote in Boston, MA
Information Technology
Less than 5 years of experience
Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • Deep expertise in Web and API security, particularly authentication, business logic, and injection flaws.
  • 3+ years of hands-on experience in Penetration Testing, Application Security, Bug Bounty, or Red Team operations.
  • Strong verbal and written communication skills for articulating complex vulnerabilities.
  • Experience in coding to create tools for penetration testing.
  • Ability to thrive in a fast-paced startup environment with significant ownership.

Responsibilities

  • Utilize Tenzai's AI agent on customer applications and validate vulnerabilities with detailed evidence.
  • Communicate findings and evidential exploitation clearly to customers and internal stakeholders.
  • Identify and analyze areas for AI improvement, including instances of missed or misclassified vulnerabilities.
  • Innovate new attack strategies and offensive testing techniques targeting web and API applications.
  • Translate practical experience into actionable enhancements for the AI agent.

Benefits

  • Opportunity to work at the forefront of offensive security and AI integration.
  • Collaborative environment with a close-knit team.
  • Engagement in influencing a platform used at enterprise scale.
  • Chance to continuously learn and improve AI capabilities in the security space.
Full Job Description
Description

About the role

This is a rare opportunity to work at the intersection of offensive security and AI - and to have your expertise shape a platform used at enterprise scale. You'll perform attacks on customer applications, help the AI agent get smarter, and work alongside a tight-knit team building something genuinely new in the security space. Work closely with AI and engineering teams to continuously improve agent capabilities.

Responsibilites

  • Harness Tenzai's AI agent on customer applications, analyze the results, and validate vulnerabilities with clear exploitation evidence.
  • Present findings and exploitation evidence clearly and transparently to customers and internal teams
  • Analyze where the system needs to improve, investigate cases where the AI missed, misclassified, or hallucinated vulnerabilities.
  • Develop new attack strategies and offensive testing techniques for web and API targets, and translate real-world knowledge into improvements for the AI agent.

Requirements

  • Deep expertise in Web and API security, including authentication, business logic, and injection flaws
  • 3+ years of hands-on experience in Penetration Testing, Application Security, Bug Bounty, or Red Team operations
  • Ability to articulate complex vulnerabilities clearly, both in writing and verbally.
  • Experience in writing code to develop tooling for penetration tests
  • Comfortable working in a fast-paced startup environment with a high degree of ownership
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at Tenzai

More Information Technology Jobs

Find similar Application Security Researcher (US) jobs:

NationwideRemote