Job Description

Harness is a high-growth company that is disrupting the software delivery market. Our mission is to enable the 30 million software developers in the world to deliver code to their users reliably, efficiently, securely and quickly, increasing customers' pace of innovation while improving the developer experience. We offer solutions for every step of the software delivery lifecycle to build, test, secure, deploy and manage reliability, feature flags and cloud costs. The Harness Software Delivery Platform includes modules for CI, CD, Cloud Cost Management, Feature Flags, Service Reliability Management, Security Testing Orchestration, Chaos Engineering, Software Engineering Insights and continues to expand at an incredibly fast pace.

Harness is led by technologist and entrepreneur Jyoti Bansal, who founded AppDynamics and sold it to Cisco for $3.7B. We're backed with $425M in venture financing from top-tier VC and strategic firms, including J.P. Morgan, Capital One Ventures, Citi Ventures, ServiceNow, Splunk Ventures, Norwest Venture Partners, Adage Capital Partners, Balyasny Asset Management, Gaingels, Harmonic Growth Partners, Menlo Ventures, IVP, Unusual Ventures, GV (formerly Google Ventures), Alkeon Capital, Battery Ventures, Sorenson Capital, Thomvest Ventures and Silicon Valley Bank.
You should be extremely passionate about building the next generation cloud native security product and researching modern cloud native security vulnerabilities and attacks. In this role, you'll partner closely with customers to understand their environments, align Traceable's detection and protection capabilities with their use cases, and ensure smooth adoption, deployment, and ongoing success. You will also collaborate with product and engineering teams to bring real-world insights that shape the product roadmap.

Responsibilities:

Working closely with product, engineering, and customers in researching modern cloud native attacks and solving detection and protection use-cases in product. Working closely with customers to understand their application environment, security use-cases, and help map them to product features, and working closely with sales engineering in POCs and Deployments. Conducting a Security Assessment/Penetration Test. Research on the next generation of detection and protection methodologies. Designing and developing any internal tools for security research. Troubleshooting and debugging customer-facing issues around the detection and protection of attacks. Evangelise product capabilities in security researchers and pen testing communities by publishing relevant blogs/podcasts, etc. Studying cyber security attacks happening globally, doing root cause analysis for some of the relevant attacks, and understanding the relevance of Traceable product in preventing the attacks.

Requirements:

Bachelor's or Master's degree in computer science. 1-3 years of work experience. Experience in modern tech stack - microservices, Docker, Kubernetes, cloud platform (AWS/GCS, etc). Prior development experience and a fair understanding of programming languages and frameworks are a must. Proficiency in web app security, vulnerability research, and penetration testing. Strong experience with various pentesting tools like Burp Suite, ZAP, etc. Strong applied knowledge of attacks in Web/API eco-system - Web attacks, API attacks, API abuse, API Fraud, ATO, etc. Strong understanding of Application Security Solutions (WAF, RASP, etc. ). Working knowledge of IAST, DAST, and SAST. Nice to Have: Active participation in security communities like OWASP, NullCon.

Harness in the news:

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex or national origin.

Note on Fraudulent Recruiting/Offers

We have become aware that there may be fraudulent recruiting attempts being made by people posing as representatives of Harness. These scams may involve fake job postings, unsolicited emails, or messages claiming to be from our recruiters or hiring managers.



Please note, we do not ask for sensitive or financial information via chat, text, or social media, and any email communications will come from the domain @harness.io. Additionally, Harness will never ask for any payment, fee to be paid, or purchases to be made by a job applicant. All applicants are encouraged to apply directly to our open jobs via our website. Interviews are generally conducted via Zoom video conference unless the candidate requests other accommodations.



If you believe that you have been the target of an interview/offer scam by someone posing as a representative of Harness, please do not provide any personal or financial information and contact us immediately at . You can also find additional information about this type of scam and report any fraudulent employment offers via the Federal Trade Commission's website (, or you can contact your local law enforcement agency.