AI Security Researcher

Summary

We're looking for a talented AI Security Researcher to join our team and play a critical role in Wiz's foundational, risk-driven approach to cloud security. This role requires deep technical research into complex cloud- and AI-native environments to identify the most significant, unaddressed risks.

What You'll Do

• Conduct deep technical research to discover and report novel risks and attack vectors specific to modern cloud and AI-native architectures and systems.
• Discover and articulate the highest unaddressed risk areas, working with Product and Engineering teams to translate research into product capabilities.
• Define necessary foundational product capabilities by delivering both compelling proofs of risk (demonstrating impact) and technical POCs (showing how to solve it).
• Work closely with Product and Engineering teams to ensure comprehensive risk coverage and support the investigation of new and complex product scope.

What You'll Bring

• 5+ years of hands-on experience in security or security research, specifically relevant to modern cloud environments (AWS, GCP, Azure, Kubernetes, etc.).
• Strong hands-on skills with scripting languages (e.g., Python, Go) for automation and research, as well as query languages (e.g., KQL, SQL) for efficient data analysis of security telemetry.
• Proven ability to work independently, prioritize effectively, and drive complex, multi-quarter research projects from initial concept through to clear, delivered impact.
• Excellent written and verbal communication skills, with a track record of successfully collaborating with cross-functional teams (e.g Product, Engineering, Marketing) to achieve shared goals.

Advantage

• Specialized knowledge or research experience in AI security, focusing on risks to AI as deployed in the enterprise.
• Experience in public-facing work, such as presenting at recognized industry conferences, authoring technical blog posts, or publishing research.
• Experience conducting data-driven research and working with large-scale security telemetry to derive statistically significant or high-impact findings.