Location: US (Remote). US-Residents only.

The Company

ZEST Security offers an AI-powered risk resolution platform that enables security and DevOps teams to remediate and mitigate cloud risks at a scale and speed that wasn’t possible before.

The Mission

ZEST’s mission is to bridge the gap between identifying cloud security risks and resolving them. It’s not about opening tickets; it’s about closing them.

Role Description

• Conduct security research to identify vulnerabilities in cloud environments, including detecting and addressing CVEs
• Lead the design and implementation of security solutions for cloud infrastructure (AWS, Azure, GCP)
• Assess and mitigate cloud security risks, including misconfigurations, vulnerabilities, and compliance gaps
• Perform penetration testing and vulnerability assessments to identify new vulnerabilities
• Develop and maintain security policies, standards, and procedures for cloud services
• Contribute to security incident response processes, providing guidance on remediation and mitigation
• Design and implement automation scripts for vulnerability detection and remediation
• Conduct research on emerging threats, security tools and methodologies to enhance the overall security posture

Qualifications

• 2+ years of experience in cloud security, with a strong focus on vulnerability management and research (CVE detection and mitigation)
• In-depth experience with cloud platforms such as AWS, Azure, and Google Cloud Platform
• Strong understanding of security concepts such as IAM, firewalls, encryption, key management, and network security
• Hands-on experience with vulnerability management and cloud misconfiguration(scanning and remediation)
• Hands-on experiences with cloud tools such as Wiz, Crowdstrike or other CNAPP tools
• Proven ability to identify and mitigate cloud vulnerabilities, including research into CVEs and applying patches or security workarounds
• Experience with DevSecOps practices, including integrating security into CI/CD pipelines
• Strong understanding of security standards and frameworks such as CIS, NIST, or ISO 27001
• Experience in scripting and automation for security tasks (Python, Bash, PowerShell, etc.)
• Excellent analytical and problem-solving skills, with strong attention to detail
• Strong communication and collaboration skills, with the ability to work with cross-functional teams

Preferred Qualifications

• Relevant certifications such as AWS Certified Security – Specialty, Certified Ethical Hacker (CEH), Certified Cloud Security Professional (CCSP), or Offensive Security Certified Professional (OSCP)
• Experience with Kubernetes security and container-based environments
• Knowledge of threat modeling and risk assessment methodologies