Cloud Security Researcher

Location: Israel

E.V.A. Information Security helps clients grow by leveraging modern technology and creating a safe future. We specialize in simulating real-world cyber adversaries to test and improve the resilience of our clients’ environments.

This is a hybrid & remote role for a Cloud Security Researcher.



Role Overview

You will be part of a team of researchers uncovering unique vulnerabilities, designing new attack techniques, and exploring unknown attack surfaces in modern cloud and infrastructure environments. Your work will involve identifying and exploiting real-world misconfigurations, analyzing complex architectures, and pushing the boundaries of cloud and container security research. You’ll collaborate with peers and clients to turn findings into actionable improvements and help shape the future of secure cloud environments.

Qualifications

• Strong knowledge of cloud provider services (AWS, Azure, GCP) and common attack vectors.
• Hands-on experience attacking cloud and/or infrastructure environments.
• Experience with containerized environments and Kubernetes security.
• Familiarity with CI/CD pipelines and their security challenges.
• Understanding how infrastructure and application environments are built and designed.

Nice to Have

• Prior research into cloud-related vulnerabilities.
• Programming and scripting skills (e.g., Python, Go, Bash, etc.).
• DevSecOps knowledge and experience integrating security into CI/CD.
• Familiarity with Application Security (OWASP Top 10, MITRE ATT&CK).
• Experience in securing IaaC and cloud-native workloads.