Security Researcher

About Us

Oligo is a rapidly growing startup headquartered in Tel Aviv, leading the way in reshaping Application Security. With a strong investment from top-tier VCs including Greenfield Partners, Red Dot Capital Partners, Lightspeed, Ballistic Ventures, and TLV Partners, we are developing a unique solution to address application security challenges, mainly focusing on open-source components in the application.

Our innovative technology leverages runtime application context while maintaining exceptional performance and stability. The Oligo Application Defense Platform gives security teams powerful capabilities to observe application components, detect intrusions, and mitigate threats, ensuring attacks are stopped before they can cause harm.

‍

What You’ll Be Doing

As a Security Researcher in our ADR (Application Detection & Research) multidisciplinary team, you will play a key role in advancing our runtime protection capabilities. Our team includes both researchers and developers, enabling rapid implementation of research insights into our product. Your work will focus on identifying and analyzing runtime attack patterns, as well as developing innovative detection techniques to strengthen the protection of our clients’ cloud-native applications.

Specifically, You Will

• Conduct cutting-edge security research on runtime threats in cloud-native applications.
• Design, develop, and validate detection algorithms based on large-scale telemetry, threat research and experiments to identify runtime threats.
• Characterize and refine the security data collected from costumers’ runtime environments to enhance detection efficacy and improve research-driven insights.
• Own the end-to-end impact of your research, from identifying emerging cloud threats to developing and deploying detection rules that protect real-world environments.
• Work cross-functionally with researchers, engineers and product managers to ensure research translates into effective, real-world security protections.
  
  

• 5+ years of experience in security research, focusing on advanced threat detection and deep attack analysis.
• Ability to design and execute structured experiments and tests to validate detection algorithms.
• Proven experience conducting hands-on investigations into real-world security threats and reverse engineering of attack patterns.
• Strong communication and collaboration skills to translate complex security findings into actionable insights.
• Strong expertise in the Linux ecosystem.
• Familiarity with common application weaknesses, (e.g. RCE, SQLi, memory corruptions, insecure deserialization, etc.).
• Strong data analysis skills and hands-on experience with databases.
• Basic programming skills (experience with at least 1 high-level language like Python).
  
  

• Experience writing and deploying security detection rules in production environments.
• Understanding of cloud-native attack surfaces (containers, Kubernetes, cloud networking).
• Knowledge of programming languages internals (e.g. Low level languages, JVM, etc.).
• Experience with data science and statistical analysis in security research.