Software Security Researcher / Engineer | Software Security Researcher / Engineer (m/f/x)
CISPA - Helmholtz-Zentrum für Informationssicherheit gGmbH
Job Summary
As a Software Security Researcher/Engineer at the CISPA Helmholtz Center for Information Security, you will join a research-driven team focused on building AI-native security systems. Your day-to-day work involves developing advanced vulnerability detection techniques, curating high-quality security datasets, and creating context-rich representations of vulnerabilities for AI agents. You will be responsible for maintaining security intelligence feeds (CVE, CWE) and integrating analysis pipelines into modern development workflows. The ideal candidate possesses a strong background in program analysis, secure coding practices, and vulnerability research. This role is unique because it offers the opportunity to work at the intersection of cutting-edge AI and software security within a prestigious federal research institution, providing significant ownership and the chance to shape the future of autonomous, intelligent security systems in a highly collaborative, international environment.
Required Skills
Education
Bachelor’s degree in Computer Science or a related field; Master’s degree or PhD preferred.
Experience
- Professional experience with program analysis techniques including static and dynamic analysis and taint tracking
- Professional experience with SAST and DAST tools
- Professional experience working with vulnerability datasets and security benchmarks
- Experience with real-world or CTF-based vulnerability research
- Experience with software architecture and modern development practices
Languages
Additional
- Fixed-term contract; Work permit required for Germany; Up to two days of remote work per week; Applications must be submitted via the career portal in PDF format.