CrawlJobs Logo
Wiz Logo Wiz · IT - Software Development

Application Security Product Analyst

Israel, Tel Aviv · Job Posted January 21, 2026
Apply Position
Job Link Share

Job Description

Come join the company that is reinventing cloud security and empowering businesses to thrive in the cloud. As the fastest-growing startup ever, Wiz is on a mission to help organizations secure cloud environments that will accelerate their businesses. Trusted by security teams all over the world, we have a proven track record of success and a culture that values world-class talent. Our Wizards from over 20 countries work together to protect the infrastructure of our hundreds of customers, including over 50% of the Fortune 100, who trust us to scan and secure over 230 billion files daily. We’re the leading player in a massive and growing market, but it’s still early enough for you to make a significant impact. At Wiz, you’ll have the freedom to think creatively, dream big, and use your full range of skills to contribute to our record growth. Come join our team and help us create secure cloud environments that allow the best companies to move faster.

Job Responsibility

  • Oversee the daily deployment, health, and operation of DAST and penetration testing capabilities to ensure optimal scanning across diverse customer environments
  • Develop and maintain attack policies and rules by creating and fine-tuning the logic that defines how the system identifies, prioritizes, and exploits vulnerabilities
  • Analyze and validate findings by reviewing complex attack paths to reduce false positives and improve the core logic's performance
  • Research novel attack vectors and emerging web/API threats to translate new techniques into executable behaviors for the DAST engine
  • Collaborate on product evolution with R&D and Product teams, using operational insights to drive feature requests and continuous improvement

Requirements

  • Over 2 years of DAST and penetration testing expertise, including hands-on experience in application security or operating enterprise tools like Burp Suite, OWASP ZAP, or Acunetix
  • Proven ability in security rule and policy development, specifically in writing custom scripts or signatures to translate vulnerability classes into detection rules
  • Technical proficiency in web protocols and API standards, with a strong command of HTTP/S, REST, GraphQL, and authentication mechanisms like OAuth and SAML
  • Proficiency in scripting languages such as Python, Go, or JavaScript to automate tasks and interact with the codebase
  • An analytical mindset with the ability to diagnose complex logs and scans to distinguish between tool failures, configuration issues, and valid security findings

Nice to have

  • Knowledge of AI/ML and how LLMs or reinforcement learning agents operate within a cybersecurity context
  • SaaS and cloud experience with familiarity in AWS, Azure, or GCP environments and modern cloud-native architectures
  • A red teaming background with experience in simulated adversarial attacks and bypassing standard WAF or security controls
Wiz - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Application Security Product Analyst

8 matching positions

Application Security Analyst

We are looking for an Application Security Analyst to join our client’s team on-...
Location
Location
Spain; Montenegro
Salary
Salary:
Not provided
https://www.precisers.pt Logo
Precise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree in IT
  • Experience working as an Application Security Analyst
  • Experience working with security and vulnerabilities
  • Knowledge about testing tools
  • Knowledge of programming languages (Java) and scripting languages (Python, PowerShell, Bash)
  • Intermediate level of English
  • Available to move and work from Montenegro or Spain
Job Responsibility
Job Responsibility
  • Developing security requirements at the early stages of the product life cycle
  • Recommending solutions to software developers to address identified security vulnerabilities
  • Preparing test scenarios for audits based on business requirements, project technical documentation, and a list of affected systems
  • Fulltime
Read More
Arrow Right

Application Security Analyst

The Checkmarx Security Research group seeks an experienced, curious, detail-orie...
Location
Location
Portugal , Braga
Salary
Salary:
Not provided
checkmarx.com Logo
Checkmarx
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Passionate about security and keen on growing in the security field
  • 1-2 years of experience as an analyst or researcher
  • 1-2 years of experience in a similar role in the security field
  • Familiar with key AppSec concepts, such as understanding security concepts, vulnerabilities, and secure coding practices
  • Have a deep understanding of the OWASP Top 10
  • Experience with Python scripting/programming
  • Familiarity with both interpreted and compiled languages, and the ability to learn new programming languages and technologies independently
  • Basic experience in conducting security research, bug bounties, and Pentesting
  • Excellent writing and oral presentation skills in English
  • Customer-oriented mindset and driven by innovation
Job Responsibility
Job Responsibility
  • Analyze source code containing various security risks & vulnerabilities written in multiple languages/frameworks
  • Analyze results produced by Checkmark’s AST solutions that can include SAST, DAST, IaC, and other engines
  • Collaborate with other areas in the group, such as SCA and SCS
  • Supervise required technical components and collaborate with the required teams
  • Engage in proactive interactions with Product and R&D teams to align the security aspect of new features and product enhancements
  • Research ways to improve internal processes and promote relevant product features
  • Be at the forefront of the Application Security world: Discover and report Application Security trends. Suggest new ideas and write publications on new vulnerabilities and relevant topics
  • Develop Python scripts and tools for research purposes and automation
  • Leverage the latest technological trends for optimizing processes, including AI
What we offer
What we offer
  • Great work environment
  • professional development
  • challenging careers
  • competitive compensation
  • great work-life balance
  • great benefits and perks throughout the year
  • Fulltime
Read More
Arrow Right

Product Security Analyst - Cyber Operations & Compliance Specialist

Entry-level position offering a fantastic opportunity to learn and grow in a sup...
Location
Location
Australia , Williamtown
Salary
Salary:
Not provided
boeing.com Logo
Boeing
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Genuine interest in cybersecurity and a desire to learn
  • Solid understanding of information security practices (certifications preferred but not required)
  • Strong written and verbal communication skills
  • Willingness to work as part of a dynamic team
  • Willingness to work on site at our location in Williamtown NSW
  • Hold or have the ability to obtain a minimum NV1 Security Clearance
  • Must be willing to disclose all relevant and required information and MUST have lived in Australia, or have a checkable background, for at least the preceding Ten years
  • Applicants must be Australian Citizens to meet Defence security requirements
Job Responsibility
Job Responsibility
  • Work as part of a team responsible for implementation of information security requirements, policies, standards, guidelines and procedures
  • Monitor and analyze network traffic and event logs to identify potential threats and vulnerabilities
  • Assist in the continuous monitoring and assessment of security controls
  • Participate in vulnerability assessments and audits to identify weaknesses
  • Support incident response activities and post-incident analysis
  • Collaborate with the team to implement information security policies and procedures
  • Help create security policies, audits, and assessments in support of the maintenance of Security Accreditation documentation
What we offer
What we offer
  • Flexible working options
  • Study assistance
  • Salary packaging
  • Employee Incentive Program
  • Global opportunities
Read More
Arrow Right

Application Security Analyst

The Checkmarx Security Research group seeks an experienced, detail-oriented Appl...
Location
Location
Israel , Ramat Gan
Salary
Salary:
Not provided
checkmarx.com Logo
Checkmarx
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Passionate about security and keen on growing in the security field
  • 1-2 years of experience as an analyst
  • 1-2 years of experience in a similar role in the security field
  • Familiar with key AppSec concepts, such as understanding security concepts, vulnerabilities, and secure coding practices
  • Have a deep understanding of the OWASP Top 10
  • Experience with Python scripting/programming
  • Familiarity with both interpreted and compiled languages, and the ability to learn new programming languages and technologies independently
  • Basic experience in conducting security research, bug bounties, and Pentesting
  • Excellent writing and oral presentation skills in English
  • Ability to handle multiple requests and work in a fast-paced environment
Job Responsibility
Job Responsibility
  • Assist the SCA analysts in conducting vulnerability analysis of known open-source software vulnerabilities to identify affected libraries and other elements, such as the affected vulnerable code
  • Analyze code containing various security risks & vulnerabilities written in multiple languages/frameworks
  • Analyze results produced by Checkmark’s AST solutions that can include SAST, DAST, IaC, and other engines
  • Supervise the technical components and collaborate with the required teams
  • Engage in proactive interactions with Product and R&D teams to align the security aspect of new features and product enhancements
  • Research ways to improve internal processes and promote relevant Product features
  • Be at the forefront of the Application Security world: Discover and report Application Security trends. Suggest new ideas and write publications on new vulnerabilities and relevant topics
  • Develop Python scripts and tools for research purposes and automation
What we offer
What we offer
  • Great work environment
  • professional development
  • challenging careers
  • competitive compensation
  • great work-life balance
  • great benefits and perks throughout the year
  • Fulltime
Read More
Arrow Right

Application Security Engineer / Analyst

Core Responsibilities: Perform Web Application and API Security testing aligned ...
Location
Location
India , Chennai, Bangalore
Salary
Salary:
Not provided
ambconline.com Logo
AMBC
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Perform Web Application and API Security testing aligned with OWASP Top 10 using tools such as Burp Suite, Postman, and Tenable Nessus
  • Conduct Secure Code Reviews (manual and SAST-based) to identify vulnerabilities in source code and recommend remediation steps
  • Integrate and validate security controls within CI/CD pipelines for continuous testing and compliance
  • Assess application, microservice, and infrastructure security gaps, and support teams with remediation planning
  • Define and review hardening standards, TLS configurations, and integration security controls
  • Collaborate with developers, architects, and DevOps teams to embed “Shift Left” security practices during SDLC stages
  • Document findings, prepare detailed security assessment reports, and assist in mitigation validation
  • Stay updated with emerging threats, vulnerabilities, and security best practices to strengthen product security posture
  • Work Experience 3 to 6 years
Job Responsibility
Job Responsibility
  • Perform Web Application and API Security testing aligned with OWASP Top 10 using tools such as Burp Suite, Postman, and Tenable Nessus
  • Conduct Secure Code Reviews (manual and SAST-based) to identify vulnerabilities in source code and recommend remediation steps
  • Integrate and validate security controls within CI/CD pipelines for continuous testing and compliance
  • Assess application, microservice, and infrastructure security gaps, and support teams with remediation planning
  • Define and review hardening standards, TLS configurations, and integration security controls
  • Collaborate with developers, architects, and DevOps teams to embed “Shift Left” security practices during SDLC stages
  • Document findings, prepare detailed security assessment reports, and assist in mitigation validation
  • Stay updated with emerging threats, vulnerabilities, and security best practices to strengthen product security posture
Read More
Arrow Right

Product Security Engineer - Secure SDLC Analyst

HPE Aruba Networking is looking for a person excited to work at the intersection...
Location
Location
United States , San Juan
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS in Information Security, Computer Science, or related technical field
  • A background in software security, either academic or work experience, including reverse engineering, vulnerability classes such as buffer overflows and their prevention, web application security, and/or cloud security
  • Programming knowledge of at least one programming language with the ability to look at source code and figure out what it’s doing
  • Familiarity with the purpose of tools such as IDEs, compilers, source code revision control systems, ASPM, SCA and code scanners
  • Minimum 3 years of experience working directly in software engineering or in an adjacent field with exposure to the software engineering environment
  • Experience conducting risk assessments, threat modeling, and/or compliance assessments
  • Experience supporting the integration of security practices through the software development lifecycle
Job Responsibility
Job Responsibility
  • Assist in the execution of product compliance assessments against various frameworks (e.g. NIST SSDF, NIST SP 800-218, SP 800-53, CIS Benchmarks)
  • Assist in the development and/or maintenance of GRC and SDLC tooling implementations, including scripting and automation
  • Operate as a representative of HPE Aruba in working groups, with government representatives, and with auditors
  • Provide consulting, information, and advice to product teams around implementing and improving the maturity of our SDLC
  • Document known issues and provide information to product teams in a manner which allows for easy interpretation and corrective actions to be performed
  • Monitor worldwide government standards and communicate to management and product teams when changes are made that may impact an existing control or introduce new requirements
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right
New

Application Security Engineer II

Ellucian designs technology that powers the educational mission of colleges and ...
Location
Location
Mexico
Salary
Salary:
Not provided
mygwork.com Logo
myGwork - LGBTQ+ Business Community
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2 to 5 years of experience working as Application Security engineer or similar position
  • Thorough knowledge of SAST, DAST, SCA tooling
  • Extensive skills and experience performing application security / penetration testing using manual and automated tools including AI
  • Progressive application security and software development experience
  • Demonstrated technical skills, especially in the areas of enterprise application security, AI security testing, and secure development practices
  • A thorough understanding of OWASP application security tools, code libraries and documentation
  • Experience developing automated solutions to application security problems
  • Demonstrated ability to clearly communicate complex ideas verbally and in writing
  • Excellent troubleshooting, problem-solving, and analytical skills
  • Ability to occasionally work off-hours or extended hours in support of various projects
Job Responsibility
Job Responsibility
  • Analyze the security of Ellucian applications and coding practices using a variety of tools and frameworks
  • Perform manual and automated application penetration testing
  • Provide guidance to development teams for remediating application security vulnerabilities
  • Develop innovative new DevSecOps solutions to application security problems
  • Act as an evangelist for DevSecOps and application security within Ellucian
  • Create and deliver application security training for product owners, business analysts, test engineers and developers
  • Lead ongoing process and policy improvement efforts
  • Provide mentoring to members of development teams
  • Conduct ongoing research of trends in application security practices, tools and utilities
What we offer
What we offer
  • Comprehensive health coverage: family major medical expenses, dental and life insurance
  • Christmas bonus 30 days
  • Saving fund
  • Monthly food coupon
  • 15 workdays vacation
  • Thrive Flex Program that allows you to contribute towards your health, financial or learning interests
  • 5 charitable days to support the community that supports us
  • Diversity and inclusion programs that promote employee resource groups such as: Women in Technology, Pride and Go Green
  • Parental leave
  • Employee referral bonuses
  • Fulltime
Read More
Arrow Right

Vulnerability Management Senior Cyber Security Analyst

Location (Primary) - Noida / Chennai (Secondary) GCF Level - 2A(01 nos) & 2B(01 ...
Location
Location
India , Noida
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must hands on experience with detection and monitoring tools (Microsoft Defender for Endpoint EDR/XDR, WIZ, NESSUS PRO, Dynatrace)
  • Experience information system management and mapping tools (CMDB, VISIT)
  • Good knowledge of software distribution tools (SCCM, Intune, Satellite, Ansible, etc.), and reporting and analysis tools (PowerBI)
  • Experience with ServiceNow (SNOW), specifically the SECOPS module
  • Strong understanding of - On-prem infrastructure, SaaS / IaaS / Cloud workloads, Application vulnerability context
  • Ability to enrich findings using CMDB / asset mapping tools
  • Working knowledge of - SCCM, Intune, Ansible, Satellite
  • Stakeholder & Coordination Skills
  • Documentation & Effective Communication - Clear communication (EN/FR preferred) with structured documentation mindset
  • Process & Continuous Improvement Mindset
Job Responsibility
Job Responsibility
  • Oversee the receipt, analysis, and tracking of vulnerabilities from various sources (CERT, scanning tools, division reports)
  • manage backlog processing, and create or update vulnerability tickets using multiple detection and asset management tools
  • Assess and identify impacted assets across various environments
  • Qualify vulnerabilities by evaluating exposure, versions, severity, attack vectors, and client context
  • Enhance asset information using CMDB, and promptly issue alerts for critical vulnerabilities
  • Develop, implement, and coordinate remediation plans by analyzing security advisories and scan reports
  • Defining tailored action strategies (including patches, workarounds, and updates)
  • Prioritizing tasks, tracking requests in ServiceNow
  • Sending criticality-based reminders, and supporting remediation teams
  • Monitor and validate patch application by ensuring timely verification
  • Fulltime
Read More
Arrow Right