Staff Security Research Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Harness · 2 weeks ago

Staff Security Research Engineer

positionMountain View, CA
timeFull-time
remoteOnsite
seniorityLead/Staff
money$150K/yr - $226K/yr
date8+ years exp

Harness is a high-growth company that is disrupting the software delivery market, and they are seeking a Staff Security Research Engineer to lead research into cutting-edge threats targeting APIs and CI/CD pipelines. This role involves collaborating with teams to develop detection capabilities and customer protection strategies while representing Harness at security conferences.

Artificial Intelligence (AI)Developer ToolsDevOpsProductivity ToolsSaaS
check
H1B Sponsor Likelynote

Responsibilities

Conduct cutting-edge research on modern attack vectors across AppSec, CI/CD pipelines, runtime environments, and emerging technologies like LLMs
Develop and refine advanced exploit techniques to prevent attacks targeting software delivery, runtime from code to cloud
Collaborate with research, product and engineering to prototype and implement detection and mitigation strategies for emerging threats
Perform in-depth security assessments and penetration testing of web applications, APIs, build systems, and cloud-native environments
Engage with customers to understand their application landscape and provide expert guidance on integrating product capabilities with their security requirements
Support pre-sales, POCs, and post-sales engagements by troubleshooting and solving complex detection and protection challenges
Build internal tools to automate and enhance security research workflows
Evangelize our research and platform through blogs, white papers, and talks at premier security conferences
Analyze global cybersecurity incidents to extract learnings and apply them across domains

Qualification

Penetration testingVulnerability researchApplication securityCloud platformsProgramming languagesSecurity assessmentsSecurity researchSecurity certificationsAnalytical skillsAutonomous work

Required

Bachelor's or Master's degree in Computer Science
8-10+ years of work experience
Deep expertise with modern application stacks (microservices, containers, Kubernetes, cloud platforms like AWS/GCP)
Prior development experience and a fair understanding of programming languages and frameworks are a must
Proficient in at least one modern programming language (Python, Go, Java, JavaScript, etc.)
Demonstrated experience in penetration testing, vulnerability research, and exploitation of Web/API ecosystems
Strong foundation in computer science fundamentals, identity aware, network, application and runtime security
Strong experience with various pen testing tools like Burpsuite, ZAP, etc
Strong applied knowledge of attacks in Web/API eco-system - Web attacks, API attacks, API abuse, API Fraud, ATO, etc
Strong knowledge of modern application security threats and mitigation platforms like (WAFs, WAAP, RASP, etc.)
Working knowledge of IAST, DAST, and SAST
Experience in responsible disclosure of vulnerabilities and a track record of CVEs or similar
Strong analytical skills and the ability to conduct complex security research autonomously
Ability to work autonomously and drive complex security investigations from hypothesis to implementation

Preferred

Proven track record of publishing high-quality research or presenting at top security conferences (e.g., Black Hat, DEF CON, RSAC, BSides) is a strong plus
Certifications such as CEH, OSCP, OSCE, or relevant security credentials

Company

Harness

twittertwittertwitter
Glassdoor3.7
company-logo
Harness provides a software delivery platform that helps engineering teams build, deploy, and operate applications through a set of tools.
dateFounded in 2017
location
San Francisco, California, USA
people-size501-1000 employees
web-link
http://harness.io

H1B Sponsorship

Harness has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (31)
2024 (22)
2023 (10)
2022 (36)
2021 (6)
2020 (21)

Funding

Current Stage
Late Stage
Total Funding
$775M
Key Investors
Goldman SachsSilicon Valley BankNorwest
2025-12-11Series E· $200M
2025-12-11Secondary Market
2024-05-14Debt Financing· $150M

Leadership Team

leader-logo
Jyoti Bansal
CEO & Co-Founder
linkedin
leader-logo
Ravitej Yadalam
Senior Director of Product Management
linkedin

Recent News

Sourcery
FOMO: All the deals you missed in December
2026-01-07
Forbes India
We are building an AI fabric for security, testing, compliance: Harness CEO
2025-12-26
IndiaTimes
ETtech Deals Digest: Startups raise $1 billion in December so far; up 6% on-year
2025-12-26
Company data provided by crunchbase