About Us Astra is a cybersecurity SaaS company that makes otherwise chaotic pentests a breeze with its one-of-a-kind AI-led offensive Pentest Platform Astra's continuous vulnerability scanner emulates hacker behavior to scan applications for 13,000+ security tests CTOs and CISOs love Astra because it helps them to achieve continuous security at scale, fix vulnerabilities in record time, and seamlessly transition from DevOps to DevSecOps with Astra's powerful CI/CD integrations Astra is loved by 800+ companies across 70+ countries In 2024 Astra uncovered 2 5 million+ vulnerabilities for its customers, saving customers $110M+ in potential losses due to security vulnerabilities We've been awarded by the President of France Mr Fran?ois Hollande at the La French Tech program and Prime Minister of India Shri Narendra Modi at the Global Conference on Cyber Security Loom, MamaEarth, Muthoot Finance, Canara Robeco, Dream 11, OLX Autos etc are a few of Astras customers Job Description: This is a remote position Role Overview: As a SDE II (Vulnerability Detection), you will be at the forefront of vulnerability research and detection engineering for our cloud-based SaaS security platform Your primary focus will be on identifying new attack techniques, researching emerging threats, and developing high-fidelity detection rules to enhance our offensive security engine This role requires a deep understanding of web, cloud, and API security, along with hands-on experience in exploiting vulnerabilities, writing detection logic, and optimizing scanning strategies You will work closely with security researchers, engineers, and product teams to ensure our platform remains ahead of evolving threats If you're passionate about offensive security, love breaking things to make them more secure, and want to shape the future of automated vulnerability detection, wed love to have you on board Roles & Responsibilities: Work in our Attack Engine Team to create vulnerability detection rules that identify exploits in web applications, cloud environments, and APIs Conduct security research on vulnerabilities, CVEs, and zero-days impacting web technologies, cloud infrastructure, and API ecosystems Develop and maintain JavaScript/GoLang-based detection logic, leveraging your programming skills to automate security analysis and exploit identification Collaborate with security researchers and engineering teams to design and implement detection modules, APIs, and automation frameworks Work in an agile development environment, contributing to the architecture, design, and implementation of Astras web security engine Research, design, develop, and troubleshoot?what you build, you own Write secure, modular, testable, and well-documented code to maintain high-quality engineering standards Adhere to strict code review and security best practices, ensuring high-quality and maintainable code Ensure timely delivery of features, maintaining transparency with technical managers regarding development progress What we are looking for: Strong analytical mindset with a passion for security research and offensive security 3-4 years' experience involving security & development experience in JavaScript (preferred) or any curly-bracket language such as C, C++, PHP Understanding of security concepts and experience with vulnerability research for Web, API, and Cloud environments Excellent problem-solving skills and strong attention to detail Strong communication and collaboration skills, with the ability to work effectively in a remote team environment Eagerness to learn and adapt to new technologies, methodologies, and evolving security threats Hands-on experience with Git for version control and collaboration Good to have: Experience using security tools such as Burp Suite, OWASP ZAP, or similar vulnerability assessment tools Understanding of Software Architecture and Design Patterns, with the ability to write scalable and maintainable code Prior experience working in a remote role, with strong self-management and collaboration skills What we offer: Adrenaline rush of being a part of a fast-growing company and working on hard problems that matter Fully remote, agile working environment Good engineering culture with full ownership in design, development, and release lifecycle A wholesome opportunity where you get to build things from scratch, improve, and ship code to production in hours, not weeks Holistic understanding of the SaaS and security industry Annual trips to beaches or mountains (last one was to Wayanad!) Open and supportive culture Health insurance & other benefits for you and your spouse (maternity benefits included)

About us: Astra is a cyber security SaaS company that makes otherwise chaotic pentests a breeze with its one-of-a-kind Pentest Platform Astra's continuous vulnerability scanner emulates hacker behavior to scan applications for 8300+ security tests CTOs & CISOs love Astra because it helps them fix vulnerabilities in record time and move from DevOps to DevSecOps with Astra's CI/CD integrations, Astra is loved by 650+ companies across the globe In 2024 Astra uncovered 2 5 million+ vulnerabilities for its customers, saving customers $110M+ in potential losses due to security vulnerabilities, We've been awarded by the President of France Mr Fran?ois Hollande at the La French Tech program and Prime Minister of India Shri Narendra Modi at the Global Conference on Cyber Security Loom, MamaEarth, Muthoot Finance, Canara Robeco, ScripBox etc are a few of Astras customers, Role Overview Are you a motivated and technically curious Software Development Engineer (Python/JavaScript) with a growing interest in cybersecurityDo you enjoy building robust and scalable systems and are you intrigued by the challenge of automating pentesting Your primary focus will be on identifying new attack techniques and developing high-fidelity detection rules to enhance our offensive security engine and Attack AI You will work closely with security researchers, engineers, and product teams to ensure our platform remains ahead of evolving threats, If you're passionate about offensive security, love breaking things to make them more secure, and want to shape the future of automated vulnerability detection, wed love to have you on board, Roles & Responsibilities: Work within our dynamic Attack AI team to design, develop, and maintain software components for vulnerability detection in web applications, cloud environments, and APIs, Collaborate with security researchers to understand their findings and translate them into robust and efficient detection logic and automated processes, Develop and maintain Python and/or JavaScript-based detection logic, leveraging your strong programming skills to automate security analysis and exploit identification, Design and implement APIs and automation frameworks that facilitate the integration of new detection modules and enhance the scalability of our security engine, Work in an agile development environment, actively contributing to the architecture, design, and implementation of Astra's scanning engine, Research, design, develop, and troubleshoot?you will be instrumental in building and owning the core components you work on, Write secure, modular, testable, and well-documented code to maintain high-quality engineering standards across our detection engine, Adhere to strict code review and security best practices, ensuring high-quality and maintainable code within the security context, Ensure timely delivery of features and components, maintaining transparency with technical managers regarding development progress, Basic Qualifications Strong analytical mindset with a passion for security research and offensive security, ~1 year experience involving security & development experience in JavaScript (preferred) or Python, A foundational understanding of security principles and a strong desire to learn how they apply to Web, API, and Cloud environments, Excellent problem-solving and debugging skills with a keen eye for detail in developing reliable software solutions, Strong communication and collaboration skills, with the ability to work effectively in a remote team environment and interact with both engineering and research team members, A strong eagerness to learn and apply new technologies and development methodologies, particularly within the context of security engineering using Python and JavaScript, Familiarity with Git for version control and collaboration is essential, Good to have Experience using security tools such as Burp Suite, OWASP ZAP, or similar vulnerability assessment tools, Understanding of HTTP request lifecycle, HTTP methods, REST APIs etc Experience with bash scripting Prior experience working in a remote role, with strong self-management and collaboration skills, We Offer: Adrenaline rush of being a part of a fast-growing company and working on hard problems that matter, Fully remote, agile working environment, Good engineering culture with full ownership in design, development, and release lifecycle, A wholesome opportunity where you get to build things from scratch, improve, and ship code to production in hours, not weeks, Holistic understanding of the SaaS and security industry, Annual trips to beaches or mountains (last one was to Wayanad!), Open and supportive culture, Health insurance & other benefits for you and your spouse (maternity benefits included),

About Us Astra is a cybersecurity SaaS company that makes otherwise chaotic pentests a breeze with its one-of-a-kind AI-led offensive Pentest Platform. Astra's continuous vulnerability scanner emulates hacker behavior to scan applications for 13,000+ security tests. CTOs and CISOs love Astra because it helps them to achieve continuous security at scale, fix vulnerabilities in record time, and seamlessly transition from DevOps to DevSecOps with Astra's powerful CI/CD integrations. Astra is loved by 800+ companies across 70+ countries. In 2024 Astra uncovered 2.5 million+ vulnerabilities for its customers, saving customers $110M+ in potential losses due to security vulnerabilities. We've been awarded by the President of France Mr. François Hollande at the La French Tech program and Prime Minister of India Shri Narendra Modi at the Global Conference on Cyber Security. Loom, MamaEarth, Muthoot Finance, Canara Robeco, Dream 11, OLX Autos etc. are a few of Astra’s customers Role Overview: If penguins and pandas make you think of Google and not wildlife then this role is for you. We at Astra are obsessed with SEO, analytics and inbound marketing. If these keep you up at night then you've finally found a place you can call paradise (read work, we have an amazing culture too!). We're looking to hire a SEO Specialist to join the Rocketship. Your mission (Should you choose to accept it) Develop and execute SEO strategies to meet monthly/yearly MQL goals, with a focus on ranking, driving organic traffic and conversions.​ Review and analyze the website and web pages regularly for detailed SEO checks & content optimization. Lead and mentor other SEO folks on the team. Expertise in Complete On-Page Optimization, from Title CTR to suggesting content changes and coordinating with content team on the requirements. Link building: Managing outreach team and developing effective strategies for acquiring relevant backlinks and partnerships. Actively tracking rank of the keyword portfolio and creating detailed report. Keyword research and prioritizing the keywords based on the goals and search intent. Implementing SEO A/B Testing: Analyze, Optimize, Test, and Repeat. You would be a great fit, if you have: 2-3 years of experience in SEO, experience with MQLs as a KPI is preferred.​ A strong understanding of NLP, clustering, and EAT concepts, along with technical SEO knowledge, is a plus. Expertise with Ahrefs, SEMrush, Moz, GSC & other SEO tools. Experience in GA4 to generate comprehensive reports is a plus. Quickly grasp complex topics and initiate keyword research, mapping, and clustering. Analytical mind for traffic analysis & decision-making. Excellent written and verbal communication skills. Technical knowledge required to work in a cyber security organization. Ability to build rapport with the stakeholders. Experience with SaaS marketing. Benefits of being an Astra-naut: Embrace the cozy remote work lifestyle. Health Insurance cover for you and your spouse. Feel the startup adrenaline pumping through your veins. Revel in our open, growth-centric ambiance; it's like a digital playground. Dive deep into the captivating world of cybersecurity. And yes, get ready for some unforgettable workcations—think Chikmagalur & Jim Corbett, Wayanad. P.s: This is a remote position. So come along if you love ranking the numbers in ;) Show more Show less