Cloud Security Researcher

Orca Security is a cybersecurity startup and cloud innovation leader. Founded in 2019 in Israel by former Check Point managers, it raised $630+ million and became a 'unicorn' in 2021.

Orca Security develops advanced cloud monitoring sensor to monitor infrastructure security with extended capabilities and opens recruitment of IT specialists in Poland.

The new sensor will operate in real time — immediately notifying about vulnerabilities and reacting to them depending on the settings. This functionality works at the Linux kernel level, using eBPF technology, which ensures safe and efficient operation.

The sensor will be integrated with SideScanning technology and will become part of a comprehensive solution offered by Orca Security.

As a Security Researcher in our R&D team, you'll be at the forefront of developing and enhancing our runtime security sensor. This role is crucial for improving our product's detection capabilities and fidelity in cloud environments. You'll work with cutting-edge technologies like eBPF in Linux and Kubernetes environments, contributing significantly to our cloud security offerings.

This position provides a unique opportunity to shape industry standards and drive significant impact on the future of cloud security.

Responsibilities:

• Develop and refine our runtime security sensor using eBPF technology for Linux and Kubernetes environments in the cloud
• Investigate and analyze complex security threats, applying your findings to improve product detection capabilities
• Collaborate with cross-functional teams to integrate new features and enhance existing ones
• Conduct in-depth research on cloud security, focusing on major platforms like AWS, GCP, and Azure
• Design and implement sophisticated algorithms to advance our threat detection capabilities
• Contribute to the continuous improvement of our product's detection accuracy and fidelity
• Stay updated on the latest security trends and attack techniques, incorporating this knowledge into our product development
• Take the lead in speaking at conferences and writing blog posts about the latest security trends, and how our solution can mitigate them, establishing yourself as a key voice in the security community.

• Work in a highly professional team with a friendly community spirit and supportive environment
• Flexible working hours - we care about you (!) and your output
• Inflation-protected wages with regular revision of compensation conditions
• Paid vacation - 20 days per year, 100% sick leave payment
• Ability to work from our comfortable office in Warsaw at Prosta str. 51
• Partially compensated educational costs (for courses, certifications, professional events, etc.)
• Language classes 2 times a week (online)
• 5 sick days per year
• Equipment provision
• Health insurance (after the end of the probationary period)
• Bright and memorable corporate life: corporate parties, special occasion gifts, weekly pizza fridays with board games.

• You have 4+ years of experience in cybersecurity, with a strong focus on cloud environments
• Knowledge/experience with eBPF technology and its applications in security contexts will be a huge plus
• Solid understanding of Linux systems and Kubernetes environments
• Experience in threat detection and familiarity with major cloud platforms (AWS, GCP, Azure)
• Programming skills, particularly in languages commonly used for security tools and research - Go/Rust/C++/C
• Knowledge of reverse engineering techniques is a plus
• Background in vulnerability research is advantageous
• Excellent analytical skills with the ability to understand and dissect complex attacks
• Strong communication skills to effectively collaborate with various teams and explain technical concepts
• Proactive learner, always eager to expand your knowledge in the rapidly evolving field of cloud security
• A customer-oriented mindset focused on delivering high-quality, impactful security solutions