Why CAST AI?

CAST AI is the leading Kubernetes cost optimization platform for AWS, GCP and Azure customers. The company is on a mission to deliver a fully automated Kubernetes experience. What’s unique about CAST AI is that its platform goes beyond monitoring clusters and making recommendations; it utilizes advanced machine learning algorithms to analyze and automatically optimize clusters, saving customers 50% or more on their cloud spend, improving performance and reliability, and boosting DevOps and engineering productivity.

The company has raised $73M from investors, including Cota Capital, Creandum, Uncorrelated Ventures, and Vintage Investment Partners. CAST AI has nearly 200 employees globally and is headquartered in Miami, Florida.

However, this is merely the beginning. Our product roadmap is filled with exciting innovations that are yet to come. We are searching for intelligent, motivated, and self-reliant people to help us fulfill this ambitious mission.

Core values that hold us all together:

PRACTICE CUSTOMER OBSESSION. Focus on the customer journey and work backwards. Strive to deliver customer value and continuously solve customer problems. Listen to customer feedback, act, and iterate to improve customer experience.

LEAD. Take ownership and lead through action. Think and act on behalf of the entire company to build long-term value across team boundaries.

DEVELOP AND HIRE THE BEST. Strive to raise the performance bar by continuously investing in yourself, the team and by hiring the best possible candidates for every position. Drive towards personal development and professional growth, and mentor others to raise the collective bar.

EXPECT AND ADVOCATE CHANGE. Strive to innovate and accept the inevitable change that comes with innovation. Constantly welcome new ideas and opinions. Share insights responsibly with unwavering openness, honesty, and respect. Once a path is chosen, be ready to disagree and commit to a direction.

What does the Security Team do?

As Kubernetes becomes a core component of modern infrastructure, it also expands the potential attack surface. Kubernetes is a complex component with many moving parts, making it hard to understand and hard to secure - a single cluster can have thousands of unpatched vulnerabilities and misconfigurations, but a serious breach can be triggered by a single one.

Our goal is to help our customers secure their Kubernetes clusters by surfacing the threats with the biggest potential impact and then guide them in mitigating these threats. We achieve this by building a Kubernetes security product that provides customers with visibility into the security posture of their clusters, provides insights into which threats are the most critical and guides them in remediation.

The Security Team is responsible for this Kubernetes security product end-to-end - designing and implementing new detections for misconfigurations, vulnerabilities, malicious activities, collecting and processing vast amounts of data from Kubernetes clusters to enable these detections, designing and implementing ways to leverage all this data to prioritize the findings and surface the most valuable insights for the customer.

Role overview

We are looking for a Security Researcher to join our Security Team. 

In this role, you will work closely with both the product team and software engineers to define the future roadmap of the security product, you will propose new ideas and improvements, you will work on analyzing threats and develop rules to detect these threats.

• Partner with hiring managers to support CAST AI's short-term and long-term headcount growth plans
• Stay up to date with the Kubernetes and cloud security landscape.
• Participate in calls with customers to gather feedback and requirements.
• Given the knowledge of the security landscape and customer feedback, find the most impactful improvements to the product.
• Work closely with the product team and software engineers to define the future roadmap of the Kubernetes security product.
• Maintain our current set of threat detection rules. Work on improving detection rate and minimizing false positives.
• Analyze malicious activities, threat campaigns against our customers. Design and develop rules to detect these threats.

Requirements

• You have to be physically in any of the European countries GMT 0 to GMT +3
• Thorough understanding of the latest security principles, techniques, and protocols, especially in and around Kubernetes
• Strong knowledge of the cyber security product landscape
• Experience in cyber security research, threat analysis and detection
• Familiarity with Go or Python or another programming language
• Familiarity with at least one of the big three cloud providers AWS, GCP or Azure
• Experience with git
• Strong analytical, problem-solving skills
• Strong verbal and written communication skills
• Ability to work independently or with a group
• A “yes we can” attitude.

What's in it for you?

• Work with a team of highly skilled professionals
• Opportunity to influence the future of the security product
• Time to focus on work with a minimum overhead of meetings, bureaucracy, etc.
• Flexible working location
• Equity for every employee
• Additional time off
• 10% dedicated time for self-improvement or personal projects
• Health insurance from day one (employees based in Lithuania)
• Monthly salary range up to 9000 Eur gross, depending on experience.