WI
Application Security Product Analyst
full-time•Tel-Aviv
About this role
<div class="content-intro"><p class="x_MsoNormal FluidPluginCopy"><span class="ContentPasted0">Come join the company that is reinventing cloud security and empowering businesses to thrive in the cloud. As the <a href="https://www.wiz.io/blog/100m-arr-in-18-months-wiz-becomes-the-fastest-growing-software-company-ever" target="_blank">fastest-growing startup ever,</a> </span><span class="ContentPasted0">Wiz is on a mission to help organizations secure cloud environments that will accelerate their businesses. Trusted by security teams all over the world, we have a proven<span class="ContentPasted0"> </span><a class="ContentPasted0" href="https://www.g2.com/products/wiz-wiz/reviews" target="_blank" data-auth="NotApplicable" data-safelink="true" data-linkindex="1">track record of success</a><span class="ContentPasted0"> </span>and a culture that values world-class talent. </span></p>
<p class="x_MsoNormal FluidPluginCopy"><span class="ContentPasted0">Our Wizards from over 20 countries work together to protect the infrastructure of our hundreds of customers, including over 50% of the Fortune 100, who trust us to scan and secure over 230 billion files daily. We’re the leading player in a massive and growing market, but it’s still early enough for you to make a significant impact. At Wiz, you’ll have the freedom to think creatively, dream big, and use your full range of skills to contribute to our record growth. Come join our team and help us create secure cloud environments that allow the best companies to move faster. </span></p></div><p><strong>SUMMARY</strong></p>
<p>We're looking for a <strong>Application Security Product Analyst</strong> to join our Product team and spread the power of Wiz. In this pivotal role, you will be the primary operator of our cutting-edge AI-driven Dynamic Application Security Testing (DAST) agent. You will bridge the gap between automated AI testing and security policy, defining the "rules of engagement" for our agents and ensuring they effectively simulate sophisticated attacks while maintaining operational safety.</p>
<p><strong>WHAT YOU’LL DO</strong></p>
<ul>
<li>Oversee the daily deployment, health, and operation of DAST and penetration testing capabilities to ensure optimal scanning across diverse customer environments.</li>
<li>Develop and maintain attack policies and rules by creating and fine-tuning the logic that defines how the system identifies, prioritizes, and exploits vulnerabilities.</li>
<li>Analyze and validate findings by reviewing complex attack paths to reduce false positives and improve the core logic's performance.</li>
<li>Research novel attack vectors and emerging web/API threats to translate new techniques into executable behaviors for the DAST engine.</li>
<li>Collaborate on product evolution with R&D and Product teams, using operational insights to drive feature requests and continuous improvement.</li>
</ul>
<p><strong>WHAT YOU’LL BRING</strong></p>
<ul>
<li>Over 2 years of DAST and penetration testing expertise, including hands-on experience in application security or operating enterprise tools like Burp Suite, OWASP ZAP, or Acunetix.</li>
<li>Proven ability in security rule and policy development, specifically in writing custom scripts or signatures to translate vulnerability classes into detection rules.</li>
<li>Technical proficiency in web protocols and API standards, with a strong command of HTTP/S, REST, GraphQL, and authentication mechanisms like OAuth and SAML.</li>
<li>Proficiency in scripting languages such as Python, Go, or JavaScript to automate tasks and interact with the codebase.</li>
<li>An analytical mindset with the ability to diagnose complex logs and scans to distinguish between tool failures, configuration issues, and valid security findings.</li>
</ul>
<p><strong>BONUS POINTS</strong></p>
<ul>
<li>Knowledge of AI/ML and how LLMs or reinforcement learning agents operate within a cybersecurity context.</li>
<li>SaaS and cloud experience with familiarity in AWS, Azure, or GCP environments and modern cloud-native architectures.</li>
<li>A red teaming background with experience in simulated adversarial attacks and bypassing standard WAF or security controls.</li>
</ul>
<p><em data-stringify-type="italic">By submitting your application, you acknowledge that Wiz will process your personal data in accordance with Wiz's Privacy Policy </em><em data-stringify-type="italic">and that you consent to the retention of your application for consideration for future opportunities at Wiz</em><em data-stringify-type="italic">.</em></p><div class="content-conclusion"><p><em><span class="TextRun SCXW149741735 BCX0" lang="EN-US" data-contrast="auto"><span class="NormalTextRun SCXW149741735 BCX0">Applicants must have the legal right to work in the country where the position is based, </span><span class="NormalTextRun SCXW149741735 BCX0">without the need for</span> <span class="NormalTextRun SCXW149741735 BCX0">visa </span><span class="NormalTextRun SCXW149741735 BCX0">sponsorship.</span> <span class="NormalTextRun SCXW149741735 BCX0">This</span><span class="NormalTextRun SCXW149741735 BCX0"> role does not offer</span> <span class="NormalTextRun SCXW149741735 BCX0">visa</span></span> <span class="TextRun SCXW149741735 BCX0" lang="EN-US" data-contrast="auto"><span class="NormalTextRun SCXW149741735 BCX0">sponsorship</span><span class="NormalTextRun SCXW149741735 BCX0">.</span></span></em></p>
<p>Wiz is an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. </p>
<p>By submitting your application, you acknowledge that Wiz will process your personal data in accordance with <a href="https://www.wiz.io/legal/privacy" target="_blank">Wiz's Privacy Policy.</a></p></div>
What you'll do
- Oversee the daily deployment and operation of DAST and penetration testing capabilities. Develop and maintain attack policies and rules to ensure effective vulnerability identification and exploitation.
About Wiz, Inc.
Organizations of all sizes and industries use Wiz to rapidly identify and remove the most critical risks in AWS, Azure, GCP, OCI, Alibaba Cloud and Kubernetes so they can build faster and more securely.
Ready to join Wiz, Inc.?
Take the next step in your career journey
Frequently Asked Questions
What does a Application Security Product Analyst do at Wiz, Inc.?
As a Application Security Product Analyst at Wiz, Inc., you will: oversee the daily deployment and operation of DAST and penetration testing capabilities. Develop and maintain attack policies and rules to ensure effective vulnerability identification and exploitation..
Is the Application Security Product Analyst position at Wiz, Inc. remote?
The Application Security Product Analyst position at Wiz, Inc. is based in Tel-Aviv, Tel-Aviv District, Israel. Contact the company through Clera for specific work arrangement details.
How do I apply for the Application Security Product Analyst position at Wiz, Inc.?
You can apply for the Application Security Product Analyst position at Wiz, Inc.directly through Clera. Click the "Apply Now" button above to start your application. Clera's AI-powered platform will help match your profile with this opportunity and guide you through the application process.