OX Security: Cloud Security Researcher (CSPM/CNAPP Product)

Description

We’re hiring Cloud Security Researcher and engineer to help evolve our CSPM/CNAPP product. You’ll work on improving how cloud risks are discovered, modeled, prioritized, and communicated, turning diverse cloud signals into accurate, customer-ready security insights. This role is security-first: strong fundamentals and judgment matter more than “tooling.”

Requirements

What We’re Looking For:

• Strong foundation in cybersecurity
• Hands-on experience with at least one major cloud platform (AWS preferred; Azure or GCP also valid). Comfort navigating services, permissions models, and APIs/SDK concepts.
• Ability to translate security and customer needs into high-value product work (prioritization, impact vs effort, clear definitions of “done”).
• Good communication skills: you can explain security decisions and tradeoffs to both technical and non-technical stakeholders.
• Solid engineering literacy (you can read and review code, reason about reliability and edge cases). Deep coding expertise is not required.

Bonus Points For:

• Experience with CSPM/CNAPP tools, security research, or building detection/analytics pipelines.
• Familiarity with cloud telemetry/log sources and correlating security signals.
• Comfort with Infrastructure as Code concepts (e.g., Terraform) and cloud-native environments.