Security Researcher - Application Security

  • Locations
  • Paris, France
  • Madrid, Spain
  • Last Published
  • Dec. 12, 2024
  • Sector
  • Data

The Security Research team at Datadog performs cutting-edge research and development in Cloud Security, Threat Research, Application Security, and Detection Engineering to further equip Datadog customers with the best protection against threat actors targeting their production infrastructure. As part of the overall Security Research organization, you will join a diverse team of hackers and builders who launch impactful security products and research via cross-company collaboration, partnerships with the security community and open source initiatives
As an Application Security Researcher, you will work closely with our product engineering, security research, and product management teams. You’ll be able to perform research on application security, creating and validating exploits, build and monitor detections for our application security management product. This unique position allows you to build detections deployed to hundreds of thousands of hosts and perform research with our threat research, cloud research teams on different threats targeting modern applications.

At Datadog, we place value in our office culture - the relationships that it builds, the creativity it brings to the table, and the collaboration of being together. We operate as a hybrid workplace to ensure our employees can create a work-life harmony that best fits them.

What You’ll Do:

  • Track, research and experiment with the latest tactics, techniques & procedures for attacking and defending web applications and their corresponding technologies
  • Research emerging vulnerabilities and replicate attack chains in purple team environments, performing red team and blue team operations, and at times writing proof-of-concept (PoCs) of attacks
  • Deploy and monitor rule health and performance across our testing, honeypot and customer production infrastructure. Hunt for emerging in the wild attacks to write detections, blog posts and documentation
  • Work closely with other Security Researchers and Product Managers to identify and prioritize new rules, product features, and areas of improvement
  • Write, create and deliver content for our community such as blog posts, conference talks, documentation, webinars and workshops

Who You Are:

  • You have deep knowledge of the Web application attacks, code vulnerabilities, and can comfortably talk about frameworks such as the OWASP Top 10, API top 10, Serverless top 10, ...etc.
  • Comfortable with building out proof-of-concept services, which include writing and testing code (e.g. Go, Python, Ruby), deploying and monitoring of this code
  • You can create proof of concept attacks, vulnerable environments and detection scenarios using code, and aren’t afraid to learn new languages
  • Passionate about collaborating with stakeholders like detection engineers, product management, software engineers, customers and other researchers
  • You are eager to work for a product organization and making an impact to Datadog customers by protecting them from threat actors
  • Wanting to work with other humble researchers, product managers and engineers to make an impact to not only our customers but the community

Datadog values people from all walks of life. We understand not everyone will meet all the above qualifications on day one. That's okay. If you’re passionate about technology and want to grow your skills, we encourage you to apply.

Benefits and Growth:

  • New hire stock equity (RSUs) and employee stock purchase plan (ESPP)
  • Continuous professional development, product training, and career pathing
  • Intradepartmental mentor and buddy program for in-house networking
  • An inclusive company culture, ability to join our Community Guilds (Datadog employee resource groups)
  • Access to Inclusion Talks, our Internal panel discussions
  • Free, global mental health benefits for employees and dependents age 6+
  • Competitive global benefits

Benefits and Growth listed above may vary based on the country of your employment and the nature of your employment with Datadog.


About Datadog:

Datadog (NASDAQ: DDOG) is a global SaaS business, delivering a rare combination of growth and profitability. We are on a mission to break down silos and solve complexity in the cloud age by enabling digital transformation, cloud migration, and infrastructure monitoring of our customers’ entire technology stacks. Built by engineers, for engineers, Datadog is used by organizations of all sizes across a wide range of industries. Together, we champion professional development, diversity of thought, innovation, and work excellence to empower continuous growth. Join the pack and become part of a collaborative, pragmatic, and thoughtful people-first community where we solve tough problems, take smart risks, and celebrate one another. Learn more about #DatadogLife on Instagram, LinkedIn, and Datadog Learning Center.


Equal Opportunity at Datadog:

Datadog is an Affirmative Action and Equal Opportunity Employer and is proud to offer equal employment opportunity to everyone regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, and more. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. Here are our Candidate Legal Notices for your reference.

Your Privacy:

Any information you submit to Datadog as part of your application will be processed in accordance with Datadog’s Applicant and Candidate Privacy Notice.