Snyk is the leader in secure AI software development, helping millions of developers develop fast and stay secure as AI transforms how software is built. Our AI-native Developer Security Platform integrates seamlessly into development and security workflows, making it easy to find, fix, and prevent vulnerabilities — from code and dependencies to containers and cloud.
Our mission is to empower every developer to innovate securely in the AI era — boosting productivity while reducing business risk. We’re not your average security company - we build Snyk on One Team, Care Deeply, Customer Centric, and Forward Thinking.
It’s how we stay driven, supportive, and always one step ahead as AI reshapes our world.
Why this role?
As a Security Researcher within the Snyk API and Web team, you will be redefining how security tools are built in the AI Era. These changes affect builders and breakers, defenders and attackers, and you have the opportunity to be at the forefront of building the engines that protect our global network of high-profile customers.
We are looking for a Senior Security Researcher develop our Scanning Engine - working with an award-winning team (recognised at RSAC 2025 as the most innovative API security product) to accelerate and scale the product for enterprise needs, whilst engineering innovative new features and products, designed to map and protect the ever-expanding web and API attack surface.
**What You’ll Do: **
- Develop Snyk API & Web’s vulnerability scanner, adding new features and supporting existing ones
- Reasearch develop and improve the scanner vulnerability detection capabilities, while keeping our 0.08% false-positive rate amazingly low
- Contribute to our firing range by adding new vulnerable applications and endpoints for testing purposes
- Work with the engineering team to discuss and implement technical solutions, fix and identify bugs
- Mentor and coach more junior engineers on the team, regularly reviewing and testing teammates' code
**What You’ll Bring: **
- Proficiency in Java
- Good understanding of how web applications and APIs work, down to the HTTP layer
- Familiarity with high-level vulnerability classes, such as those enumerated in the OWASP Top 10
- A strong desire to keep up to date with new research and technologies from across the industry, and the ability to bring new ideas into the team
- Basic usage and knowledge of AI systems, such as chatbots and code editor extensions
We’d be Lucky if You
- Have ideas for novel and impactful security research targets and areas
- Have a basic understanding of popular infrastructure components, such as Docker, or AWS
- You are comfortable with the programming languages Python or Go, or have a willingness to learn
#LI-CR1 #LI-Hybrid
We care deeply about the warm, inclusive environment we’ve created and we value diversity – we welcome applications from those typically underrepresented in tech. If you like the sound of this role but are not totally sure whether you’re the right person, do apply anyway!
About Snyk
Snyk is committed to creating an inclusive and engaging environment where our employees can thrive as we rally behind our common mission to make the digital world a safer place. From Snyk employee resource groups, to global benefits that help our employees prioritize their health, wellness, financial security, and a work/life blend, we aim to support our employees along their entire journeys here at Snyk.
Benefits & Programs
Prioritize health, wellness, financial security, and life balance with programs tailored to your location and role.
Flexible working hours, work-from home allowances, in-office perks, and time off for learning and self development
Generous vacation and wellness time off, country-specific holidays, and 100% paid parental leave for all caregivers
Health benefits, employee assistance plans, and annual wellness allowance
Country-specific life insurance, disability benefits, and retirement/pension programs, plus mobile phone and education allowances