Veracode · 23 hours ago
Senior Security Researcher
Burlington, MA
Full-time
Onsite
Mid, Senior Level
3+ years expVeracode is a global leader in Application Risk Management for the AI era. The Senior Security Researcher will lead research projects to improve Veracode’s Static Application Security Testing capabilities and conduct original security research to advance community knowledge.
Cyber SecurityEnterprise ApplicationsMobileSecuritySoftware
Responsibilities
Conduct research to identify potential weaknesses and security vulnerabilities in C / C++ and C# / .NET applications as well as others as the need arises
Describe vulnerabilities and potential exploits, and produce proofs of concept and representative examples to aid engineering teams in building product capabilities
Engage in binary and source static analysis/reverse-engineering of applications
Conduct research to improve automation, accuracy, and efficiency of detection techniques and related systems, using both our own proprietary software as well as open-source tools
Contribute expertise to Veracode’s customer- and public-facing documentation to ensure information is current, accurate, and actionable
Mentor and provide technical guidance to developers and researchers
Actively participate in the software security community by attending and presenting at industry conferences, conducting and publishing original research, contributing articles to the Veracode blog and/or trade blogs and magazines, etc
Qualification
Required
2+ years of practical reverse-engineering or binary static-analysis experience, including familiarity with Abstract Syntax Trees (AST), reflection, or other code transformation approaches; compilers and associated tooling; and decompilers, disassemblers, and/or debuggers used in binary analysis
1+ years of practical application security experience, such as source code auditing, penetration testing, product assessment, vulnerability research
The ability to enter a 'breaker' mentality – Veracode is defensively-oriented, but our research requires an offensive mindset, including the ability to assess the attack surface of a piece of software
Prototyping ability – must be comfortable producing 'quick and dirty hacks' to demonstrate a concept or solve a one-off problem
Attention to detail as part of a commitment to quality
Analytical and organizational capability for advocating, planning, and executing projects independently
Ability to understand technical and security issues from a customer points of view
Strong written and verbal communication ability in English, especially technical writing for a developer audience
Benefits
Outstanding Medical, Dental, and Vision Coverage to meet all your healthcare needs.
Wellness benefits to help you focus on what’s most important.
“Take What You Need” time off policy.
Extensive development and training offerings to help you grow your career at Veracode.
Generous 401k match to help save for your future.
Company
Veracode
Veracode provides cloud-based app intelligence and security verification services to protect critical data across software supply chains.
501-1000 employees
H1B Sponsorship
Veracode has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (4)
2024 (4)
2023 (4)
2022 (8)
2021 (16)
2020 (5)
Funding
Current Stage
Late StageTotal Funding
$114.26MKey Investors
Founders Circle CapitalWellington ManagementMeritech Capital Partners
2022-03-15Acquired
2014-12-01Secondary Market
2014-09-11Series F· $40M
Leadership Team
Jens Wessling
CTO
John Smith
CTO EMEA
Recent News
2025-11-14
2025-11-12
Company data provided by crunchbase