Y-Axis Jobs Logo
Send us feedback
telephone  +91 7670 800 001
Log in Sign up Try Premium
OX Security: Cloud Security Researcher (CSPM/CNAPP Product) at CommIT
Warsaw, Masovian Voivodeship, Poland -
Full Time

Start Date

Immediate

Expiry Date

16 Jun, 26

Salary

0.0

Posted On

18 Mar, 26

Experience

2 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Cloud Security, CSPM, CNAPP, Security Research, AWS, Azure, GCP, APIs, SDKs, Risk Modeling, Prioritization, Security Fundamentals, Code Review, Terraform, Cloud Telemetry

Industry

Software Development

Description
We’re hiring Cloud Security Researcher and engineer to help evolve our CSPM/CNAPP product. You’ll work on improving how cloud risks are discovered, modeled, prioritized, and communicated, turning diverse cloud signals into accurate, customer-ready security insights. This role is security-first: strong fundamentals and judgment matter more than “tooling.” Requirements What We’re Looking For: Strong foundation in cybersecurity Hands-on experience with at least one major cloud platform (AWS preferred; Azure or GCP also valid). Comfort navigating services, permissions models, and APIs/SDK concepts. Ability to translate security and customer needs into high-value product work (prioritization, impact vs effort, clear definitions of “done”). Good communication skills: you can explain security decisions and tradeoffs to both technical and non-technical stakeholders. Solid engineering literacy (you can read and review code, reason about reliability and edge cases). Deep coding expertise is not required. Bonus Points For: Experience with CSPM/CNAPP tools, security research, or building detection/analytics pipelines. Familiarity with cloud telemetry/log sources and correlating security signals. Comfort with Infrastructure as Code concepts (e.g., Terraform) and cloud-native environments.
Responsibilities
The role involves evolving the CSPM/CNAPP product by improving how cloud risks are discovered, modeled, prioritized, and communicated. This includes transforming diverse cloud signals into accurate, customer-ready security insights.