Get a Demo
Careers at Upwind

Up & Up

Join a group of builders who move with intention, take ownership, and grow together as we shape what’s next.
See open positions

The best talent is global

We believe great teams are built around people, not locations. Upwind supports remote and hybrid work so we can collaborate with exceptional talent wherever they are.
  • 11
  • 28
  • 27
  • 34
  • 33
  • 32
  • 31
  • 30
  • 29
  • 26
  • 25
  • 24
  • 23
  • 22
  • 21
  • 20
  • 19
  • 18
  • 17
  • 16
  • 15
  • 14
  • 13
  • 10
  • 3
  • 2
  • 1

Moments that bring us together

From offsites to everyday collaboration, we make time to connect beyond the work.
While we work across time zones, we invest in real-world connection. With offices in Tel Aviv, Belfast, and Iceland, plus team offsites throughout the year, we create space for teams to build trust, strengthen relationships, and do better work together.
“Working at Upwind is an exhilarating journey of innovation and growth. Every day presents new challenges and opportunities that fuel my passion and drive. In this dynamic environment, I’ve collaborated with talented individuals who value inclusion and embrace different perspectives.”
f96303f944e24a0441296ddfbe18df5e8846937d
Nofar Ginon
|
Engineering Manager
“As a UI/UX designer, I enjoy creating user-friendly experiences that deliver innovative technology. It’s empowering to be part of a company that values inclusion and embraces unique perspectives in the cybersecurity industry.”
8c550635ce0f817e031279960e0ee19aba2d5d5d
Maya Mitrani
|
Product Designer
“Upwind is a place where diversity of thought is encouraged and accepted. My ideas are valued, my voice is heard, and my potential is realized. We are shaping the future of cloud security.”
dde45ac65ead551923045d0b62865e6b06f9724a
Kim Usher
|
Group Manager, Engineering

Open positions

Array
← All Jobs

Senior Vulnerability Researcher

Tel Aviv · Full-time · Senior

About The Position

Upwind is a next-generation Cloud Security Platform that leverages runtime context to identify and prioritize critical risks, providing precise insights and efficient cloud security management. Unlike traditional tools, Upwind uses runtime data proactively for risk prioritization and posture insights, ensuring teams focus on what truly matters. With industry-leading efficiency and eBPF-powered sensors, Upwind delivers comprehensive capabilities, including agentless cloud posture discovery, real-time threat protection, and integrated API security. From misconfigurations to malware defense, Upwind ensures end-to-end, cost-effective cloud infrastructure protection. At Upwind, you’ll have the opportunity to think creatively, explore new ideas, and use your skills to make a meaningful impact on our growth.


We are looking for a highly skilled Senior Vulnerability Researcher to join our team. In this role, you will lead offensive research on our clients' assets, uncovering complex vulnerabilities and directly connecting your findings to our product to demonstrate actionable value. Beyond client-focused engagements, you will spearhead vulnerability research into cutting-edge technologies within the AI and Cloud domains. As a senior technical voice for the company, you will share your findings by writing technical blogs and representing us at industry security conferences.

Key Responsibilities

  • Conduct deep-dive offensive research on client assets to identify and exploit vulnerabilities.
  • Bridge the gap between offensive findings and product value, demonstrating to clients how our solutions mitigate their specific risks.
  • Perform pioneering vulnerability research on emerging technologies, specifically focusing on Cloud infrastructure and Artificial Intelligence (AI) ecosystems.
  • Author high-quality technical blogs, whitepapers, and vulnerability reports.
  • Represent the company by speaking and participating in leading global security conferences.


Requirements

  • Experience: 6+ years of proven experience in Offensive Security, Vulnerability Research, or Web Application Security.
  • Proven Track Record: Demonstrated background in discovering and disclosing vulnerabilities (e.g., published CVEs, strong bug bounty profiles, or independent research).
  • Technical Proficiency: Strong programming and scripting skills in languages such as Python, Go, C/C++, or Rust to build custom exploits and tooling.
  • Cloud/AI Knowledge: Solid understanding of modern Cloud environments (AWS, GCP, or Azure) and a foundational understanding of AI/ML architectures and their unique attack surfaces (e.g., LLM vulnerabilities, model poisoning).
  • Communication Skills: Exceptional written and verbal communication skills, with the ability to translate complex technical findings into clear business value for clients.

Advantages

  • Low-Level Expertise: Proven background in low-level exploitation (e.g., binary analysis, reverse engineering, memory corruption vulnerabilities).


Apply for this position