Staff Security Researcher jobs in United States
cer-icon
Apply on Employer Site
company-logo

Zscaler · 19 hours ago

Staff Security Researcher

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level, Lead/Staff
money$116K/yr - $165K/yr
date5+ years exp

Zscaler is a leader in cloud security, dedicated to helping customers transform digitally while ensuring security. The Staff Security Researcher will lead technical responses to product security incidents, manage vulnerabilities, and enhance secure development practices within the Engineering team.

Cloud SecurityCyber SecurityEnterprise SoftwareSecurity
check
H1B Sponsor Likelynote

Responsibilities

Leading technical responses for critical product security incidents by coordinating with Engineering, Product, and Legal teams to ensure swift resolution and mitigation
Owning the triaging, investigation, and management of product vulnerabilities from intake (e.g., bug bounty reports, researcher submissions, internal discoveries) to resolution, prioritizing high-impact issues with critical urgency
Serving as the primary technical interface for the bug bounty program by validating, reproducing, and assessing the business impact of reported vulnerabilities
Conducting thorough root cause analysis for vulnerabilities and provide engineering teams with secure, scalable remediation strategies to prevent recurrence
Using insights from identified vulnerabilities to enhance secure development lifecycle (SDL) processes, improve coding standards, and influence security architecture to minimize future risks

Qualification

Incident responseProduct securityVulnerability managementSecure coding practicesCybersecurity experienceSIEMsPythonThreat intelligence toolsCISSPCEHOSCPSDLCCode reviews

Required

5+ years of cybersecurity experience, particularly in incident response or product security
Bachelor's degree (or equivalent experience) in a relevant field like Cybersecurity, Computer Science, or Information Systems
Proficiency in security principles, secure coding practices, and protocols (e.g., HTTP, TCP/IP)
Hands-on experience managing security incidents, including malware and exploits
Experience with SIEMs, vulnerability scanners, and scripting tools like Python or PowerShell

Preferred

Certifications like CISSP, CEH, OSCP, or related credentials
Experience with SDLC (secure development lifecycle) and code reviews
Advanced tools proficiency (e.g., EDR platforms, threat intelligence tools)

Benefits

Various health plans
Time off plans for vacation and sick time
Parental leave options
Retirement options
Education reimbursement
In-office perks, and more!

Company

Zscaler

twittertwittertwitter
Glassdoor4.0
company-logo
Zscaler is a global cloud-based information security company that enables secure digital transformation for mobile and cloud.
dateFounded in 2008
location
San Jose, California, USA
people-size5001-10000 employees
web-link
https://www.zscaler.com

H1B Sponsorship

Zscaler has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (140)
2024 (220)
2023 (108)
2022 (144)
2021 (82)
2020 (51)

Funding

Current Stage
Public Company
Total Funding
$1.67B
Key Investors
TPG GrowthLightspeed Venture Partners
2025-07-01Post Ipo Debt· $1.5B
2024-04-23Post Ipo Equity· $22.7M
2018-03-16IPO

Leadership Team

leader-logo
Jay Chaudhry
CEO, Chairman & Founder
linkedin
leader-logo
Hemant Dabke
Area Vice President
linkedin

Recent News

CRN
The 10 Biggest Tech M&A Deals Of 2025
2025-12-18
The Motley Fool
Better Buy: Zscaler or Workday?
2025-12-11
GlobeNewswire
AI Attacks Surge 156% as Enterprises Rush to Lock Down Quantum-Vulnerable Systems
2025-12-09
Company data provided by crunchbase