Description
At Cycode, we’re revolutionizing Static Application Security Testing (SAST) with our Next-Gen product, part of Cycode’s Complete Application Security Posture Management (ASPM) suite. Our core engine is primarily built in Rust, complemented by C# wrappers, offering a cutting-edge foundation for application security.
We’re looking for an innovative engineer to join our team and help build, optimize, and expand the capabilities of our Rust-based SAST engine. This role involves close collaboration with a multidisciplinary team, contributing to the performance, functionality, and language support of the engine.
Key Responsibilities
- Develop & Optimize: Enhance and maintain the Rust-based SAST engine, ensuring high performance and reliability.
- Collaborate: Work closely with the SAST team to implement features and extend support for additional programming languages.
- Design & Architecture: Participate in technical discussions, contributing to architecture and design decisions for the SAST engine.
Why Join Us?
- New Product, Established Foundation: Work alongside domain experts to take Cycode’s native SAST scanner to the next level.
- Innovative Culture: Have a meaningful impact on product and technical decisions in a collaborative environment.
- Growth Opportunities: Expand your role and skillset in a fast-evolving domain with ample room for professional development.
Requirements
- 3+ years of experience, with proficiency in Rust or another low-level language and a strong willingness to quickly learn Rust.
- Experience designing CLI tools or low-level applications.
- A solid understanding of performance optimization for high-performance applications.
- Interest or experience in application security.
- Strong communication skills, with the ability to articulate and share complex ideas effectively in both written and spoken formats.
Nice-to-Have Skills
- Background in secure coding practices.
- Experience parsing Abstract Syntax Trees (ASTs) using tools like Tree Sitter.
- Passion for programming languages, considering yourself a polyglot.
- Familiarity with Foreign Function Interfaces (FFI).
- Experience using profiling tools to optimize performance.
- Some exposure to C#.
Top Skills
What We Do
Cycode is an application security software vendor. Our complete AppSec platform provides visibility across the SDLC, including tooling, configurations, activity, risk, and more. We prevent breaches with secrets scanning, code leak detection, SCA, and SAST. Our knowledge graph finds things missed by other tools by connecting and correlating data from across the entire SDLC. We are an RSA innovation sandbox finalist, a Gartner Cool Vendor, and a SINET16 winner.
Gallery
