Question
2-5

Cloud Security Researcher (CSPM/CNAPP Product) - B2B Contract

3/8/2026

The engineer will design and improve cloud security detections and enrichment logic by correlating diverse cloud signals to enhance accuracy and reduce noise. This involves validating severity, prioritizing findings, and using AI tools to accelerate development and deliver product improvements.

Working Hours

40 hours/week

Company Size

51-200 employees

Language

English

Visa Sponsorship

No

About The Company
OX Security removes risk at the source - eliminating exposures from AI code generation through cloud runtime - preventing security debt before it ever reaches production. Unlike conventional tools that cannot keep pace with modern, AI-driven development, or cloud-specific solutions that are infrastructure-only, the OX Platform pinpoints vulnerabilities at creation and remediates runtime exposures at the source.
About the Role

We’re hiring Cloud Security Researcher and engineer to help evolve our CSPM/CNAPP product. You’ll work on improving how cloud risks are discovered, modeled, prioritized, and communicated, turning diverse cloud signals into accurate, customer-ready security insights. This role is security-first: strong fundamentals and judgment matter more than “tooling.”


Responsibilities

What You’ll Do

  • Design and improve cloud security detections and enrichment logic: define what to detect, why it matters, and what evidence customers need to act.
  • Correlate multiple signals (configuration, identity, asset inventory, activity/telemetry, relationships between resources) to improve accuracy and reduce noise.
  • Validate and refine severity/prioritization so results are consistent, explainable, and aligned with real risk.
  • Use competitor analysis and customer feedback to identify opportunities and deliver product improvements with clear business impact.
  • Use AI and internal agents to accelerate development: write strong prompts, guide outputs, review/adjust generated logic and code, and turn prototypes into reliable implementations.
  • Communicate clearly with engineering/product teams: requirements, tradeoffs, release notes, and customer-facing rationale.

Requirements

What We’re Looking For

  • Strong foundation in cybersecurity
  • Hands-on experience with at least one major cloud platform (AWS preferred; Azure or GCP also valid). Comfort navigating services, permissions models, and APIs/SDK concepts.
  • Ability to translate security and customer needs into high-value product work (prioritization, impact vs effort, clear definitions of “done”).
  • Good communication skills: you can explain security decisions and tradeoffs to both technical and non-technical stakeholders.
  • Solid engineering literacy (you can read and review code, reason about reliability and edge cases). Deep coding expertise is not required.

Bonus Points For

  • Experience with CSPM/CNAPP tools, security research, or building detection/analytics pipelines.
  • Familiarity with cloud telemetry/log sources and correlating security signals.
  • Comfort with Infrastructure as Code concepts (e.g., Terraform) and cloud-native environments.


Key Skills
CSPMCNAPPCloud SecurityAWSAzureGCPRisk DiscoverySignal CorrelationPrioritizationSecurity DetectionsAPIsSDK ConceptsCommunicationEngineering LiteracyInfrastructure as CodeTerraform
Categories
Security & SafetySoftwareEngineeringTechnologyData & Analytics
Apply Now

Please let OX Security know you found this job on InterviewPal. This helps us grow!

Apply Now
Prepare for Your Interview

We scan and aggregate real interview questions reported by candidates across thousands of companies. This role already has a tailored question set waiting for you.

Elevate your application

Generate a resume, cover letter, or prepare with our AI mock interviewer tailored to this job's requirements.

Tailor my ResumeWrite my cover letterFind Your Cover Letter