דרושים » אבטחת מידע וסייבר » Senior Security Researcher- Microsoft Defender for Cloud

Are you looking for a challenge that puts you at the center of the worldwide Platform? Are you passionate about finding security breaches and vulnerabilities? Do you have Offensive mindset?

Azure Networking is one of the core organizations that build Azure, the worlds largest network, leading digital transformation, empowering, and connecting enterprises and individuals around the world. The team in Israel is specializing in Network security, developing services that protect the Azure platform, the users and apps running on top of it.

Responsibilities:
Manage the work of a security research team across multiple concurrent projects.
Be a subject matter expert, leveraging a broad and current understanding of security to devise new protections and exploit mitigations.
Collaborate with other security and product teams to improve security, and articulate the business value of security investments for designing and developing new security mitigations and defenses.
Identify security vulnerabilities in a wide variety of key services across Azure services, network protocols and architecture.
Interaction with the security ecosystem in and outside of us.

We are looking for a Principal Security Research Manager to lead a team dedicated to detecting attacks against Identity and Cloud Apps. The team is directly accountable for the security effectiveness of our Defender for Identify and our Defender for Cloud Apps and building the next Identity Detection and Response solution for our Security.  This person should have a deep understanding of what it means to run a large-scale, operational organization supporting millions of customers, and the accountability that comes with it. This team balances the fast-paced demand of on-call responsibilities and constant adjustment to adversaries with product innovation, team career growth, and work life balance. A successful leader in this role balances these competing demands while fostering cross-organizational collaboration to build and deliver on the strategic vision for protecting user identities and cloud apps that have access to critical company resources.  Are you up for this challenge? 

Responsibilities:

People Management:
Model our values and actively drive team culture improvements. 
Connect business objectives with the right talent on the team. Help the team set clear goals and adapt when the business or environmental factors change course. 
Attract and retain great people; Know each individuals capabilities and aspirations and invest in their growth. 

Strategy and Innovation: 
Develop the strategic vision for how we leverage all the tools at our disposal (including the latest developments in AI) to improve product effectiveness to meet business goals and influence product and business group decisions. 
Cultivate relationships between yourself and your team across the organization to champion the adoption of innovative solutions that deliver business impact. 

Operational Excellence:
Help team align work with business goals, document team plans, experimentation results, work in progress and completed. 
Ensure team members are ready for on-call rotation. 
Hold team accountable for quality monitoring, root cause analysis, and implementation of fixes, process or documentation improvements based on learnings. 

Other Requirements:
Ability to meet us, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: This position will be required to pass the company`s Cloud background check upon hire/transfer and every two years thereafter.

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Our Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The company`s Security organization accelerates our mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.

Come and be part of the team building one of our most exciting security products, our Defender for Endpoint (MDE). As cyber-attacks have become more sophisticated, MDE helps enterprises detect, investigate, and automatically disrupt advanced attacks and da

ta breaches on their networks.  From detecting and disrupting nation state actors to huge ransomware actors in action, our research team brings deep knowledge of the attacker landscape and tradecraft to create the innovations necessary to uncover and protect against even the most well-funded attacker.
We are seeking an experienced security researcher who is excited by finding new attacks to join our Israeli research team and focus on detecting and disrupting sophisticated enterprise attacks. The job includes researching novel attack techniques, big data analysis of our rich sensor data, identifying necessary optics for detecting malicious behaviour and crafting detection and protection logic to ensure compromise does not go undetected.

Responsibilities:
Conduct in-depth investigation and research of data across multiple endpoints and additional sources, to identify threats and sophisticated attack incidents.
Keep up-to-date with latest trends in cyber attacks and create robust, sophisticated detection logics across the entire kill-chain.
Collaborate with product management, security and engineering teams across the company to design innovative solutions and new disruption capabilities, and validate their effectiveness using a data-driven approach.
Collaborate with data science teams to understand, identify and implement detection gaps, capabilities, assumptions, and improvements
Demonstrate thought leadership, be able to engage and enlighten others through compelling meaningful content and informative sessions.

A SaaS platform delivers AI-powered recommendations to eliminate detection coverage gaps in the organization's existing security stack.
Our platform is not yet another security monitoring product, but an innovative solution that uses AI and automation to maximize the value of the existing security tools and systems.
Among our clients are some of the top 10 private equity firms; top 10 consumer packaged goods manufacturers; top 10 cable operators; top 10 US law firms; top 10 money transfer firms; and top 15 MDR/MSSP.
was founded in early 2020 by serial entrepreneurs whose previous companies were acquired by Palo Alto Networks, HP, Microsoft Security, IBM Security, and others.

We are looking for a Security Researcher to join our Cyber Security team
This role involves conducting research on the cybersecurity landscape, leveraging intelligence feeds to map existing threat actors, attack vectors, and TTPs, and analyzing complex data to detect advanced threats using knowledge of the current threat landscape.
This role will also help to identify and build strategies to correct gaps and issues in customers' environment, including defining new detection content or use cases and working with the engineering team to deploy them.

RESPONSIBILITIES
Discover, analyse and track advanced cyber-attack campaigns
Conduct proactive research to define new use cases/detection rules
Conduct research (OSINT, labs etc.) to generate threat intelligence
Maintain current knowledge of adversaries tactics, techniques, procedures, malware attacks, and other cyber security threats
Curate knowledge based on APT groups, monitoring and detection tools
Interact with customers orally and in writing
Proactively identify cyber security improvements and recommend appropriate control improvements

Deep Instinct, the first cyber security company to apply Deep Learning to cyber security is looking for a Threat Researcher . Deep Instinct is an innovative company that has a unique and game-changing software solution to protect Fortune 500 End-Point users against Zero Day & APT cyber-attacks. This is an incredible opportunity to get in a Pre-IPO Cyber Security company that is poised to do huge things! We're on a mission to disrupt the cyber security market and the time is NOW! The successful candidate will be responsible to identify, analyze and collect cyber malware samples and campaigns. Perform research on threat actors, new attack vectors and techniques, develop POCs and analysis tools, and prepare research publications. The role involves hands-on responsibilities, working closely with security researchers and Deep-Learning engineers. It requires multitasking in a fast-paced environment with high-quality, accurate, and timely deliverables.

Office Location:
TLV Office

Region:
Israel

Responsibilities::

* Research and analyze emerging cyber threats: Identifying new malware strains, large-scale campaigns, and advanced persistent threats (APTs). Analyze their behavior, capabilities, and techniques for evading detection and achieving their goal.
* Collaborate with other members of the research department: Work closely with security researchers, ML engineers, and other team members to develop and implement defense strategies for the current and future threat landscape.
* Document the findings of threat research and publication reports that can be shared with internal and external stakeholders.
* Stay up-to-date with the latest developments in the cyber security field: including the latest trends, techniques, and threats in the cyber security field.
* Uncover and develop new cyber-attack vectors, techniques and POCs.

Why Work With Us::
At Deep Instinct we are committed to creating an excellent employee experience. We offer competitive salaries, a generous benefits package among great culture. We have some of the most forward-thinking and talented people in the world working for us. If you're creative and autonomous with a real passion for technology, we want to hear from you. About Deep Instinct: Deep Instinct , is the first cyber security company to apply Deep Learning as a platform. We are the only cyber security company harnessing the the power of deep learning to prevent 99% of known and unknown attacks from malware and zero-day threats.

Required Gen AI Security Researcher
ABOUT THE POSITION
As a Red Team Specialist focused on Generative AI Models, you will play a critical role in enhancing the security and integrity of our cutting-edge AI technologies. Your primary responsibility will be to conduct simulated cyber attacks and penetration testing on our generative AI systems, including but not limited to language models, image generation models, and any related infrastructure. The goal is to identify vulnerabilities, assess risks, and provide actionable insights to fortify our AI models against potential threats.
Key Responsibilities:
Simulated Cyber Attacks: Conduct sophisticated and comprehensive simulated attacks on generative AI models and their operating environments to uncover vulnerabilities.
Vulnerability Assessment: Evaluate the security posture of AI models and infrastructure, identifying weaknesses and potential threats.
Risk Analysis: Perform thorough risk analysis to determine the impact of identified vulnerabilities and prioritize mitigation efforts.
Mitigation Strategies: Collaborate with development and security teams to develop effective strategies to mitigate identified risks and enhance model resilience.
Security Protocols Development: Aid in the creation and refinement of security protocols and best practices for the development and deployment of generative AI models.
Research and Innovation: Stay abreast of the latest trends and developments in AI security, ethical hacking, and cyber threats. Apply innovative testing methodologies to ensure cutting-edge security practices.
Documentation and Reporting: Maintain detailed documentation of all red team activities, findings, and recommendations. Prepare and present reports to senior management and relevant stakeholders.
Training and Awareness: Provide guidance and training to technical and non-technical teams on security awareness and best practices related to generative AI.

We are looking for a Security and ML/AI Principal Researcher to work alongside product owners, designers, and technical writers within the broader Product Management Group. As a Principal Researcher, you are responsible for doing research in Cyber and ML/AI applictions to assist in refining and executing the vision of Identity Threat Detection and Response (ITDR), Cloud infrastructure Entitlement Management (CIEM), Behavioral Analytics, Secret Server and other company`s solutions, by working closely with cross functional teams in the research, planning, development, and release of new products. You will be working in a highly dynamic, fast-paced environment, interacting regularly with internal stakeholders in the development of our products.

The ideal candidate will have the tenacity, focus, and creativity to thrive in a fast-paced security startup, where initiative is expected, oversight is minimal, and where results are the only
outcome that matters.

This position is based in Tel Aviv and will require being on-site in the office two to three days per business week.

Key Responsibilities:
Research areas may include, but are not limited to the following.
Security research such as: identity threats, account takeover methods, AuthZ security, app permission mechanisms and privilege escalation paths, AuthN weaknesses, IAM mechanisms, automated provisioning abuse, configuration weaknesses, access related supplychain attacks, and protocol weaknesses and attacks on SAML, SCIM, OAuth2, OIDC, and similas. (it is unlikely but not impossible that work will include binary level exploitation / RE as well).
ML/AI applications research such as: ML/AI discovery of TTPs and anomalies, using LLMs and foundation models for security applications (may include fine tuning, RAG, and other
applications), quantifying risk, graph analysis and graph algorithms.

In this role you may also:
Help refine and articulate the product vision and strategy of selected our solutions.
Collaborate with customers, prospects, partners as well as external/internal stakeholders to understand client needs to define and validate product requirements.
Work closely with Engineering and PM teams to solve complex problems affecting our customers through research applications.

Be a part of the team that is instrumental in constructing one of Microsoft's most exciting security solutions. In an era of increasingly sophisticated cyber-attacks, the Microsoft 365 Defender security suite has emerged as a vital tool for enterprises, enabling them to identify, scrutinize, counter advanced breaches and data intrusions within their networks and manage their security posture.

Our Israeli research team is looking for a security researcher who can help our customers, of all sizes, improve their security and protect them from cyber threats.

We value diversity and welcome candidates with different experiences and perspectives. If you are a team player who loves creating products for and with customers, come join us and be part of building a better world.

Responsibilities:
Performing attacker tradecraft research and threat landscape investigation across on-prem & cloud-based attacks spanning identities and applications.
Threat hunting to discover real-world advanced attacks and designing and implementing automated detection and disruption actions based on alerts and signals.
Contributing to active engagement with the security ecosystem through papers, presentations, and blogs.
Providing subject matter expertise to customers based on industry attack trends and product capabilities. 

We are looking for a Threat Researcher.
we are an innovative company that has a unique and game-changing software solution to protect Fortune 500 End-Point users against Zero Day & APT cyber-attacks. This is an incredible opportunity to get in a Pre-IPO Cyber Security company that is poised to do huge things! We're on a mission to disrupt the cyber security market and the time is NOW!
The successful candidate will be responsible to identify, analyze and collect cyber malware samples and campaigns. Perform research on threat actors, new attack vectors and techniques, develop POCs and analysis tools, and prepare research publications.
The role involves hands-on responsibilities, working closely with security researchers and Deep-Learning engineers. It requires multitasking in a fast-paced environment with high-quality, accurate, and timely deliverables.
RESPONSIBILITIES:
Research and analyze emerging cyber threats: Identifying new malware strains, large-scale campaigns, and advanced persistent threats (APTs). Analyze their behavior, capabilities, and techniques for evading detection and achieving their goal.
Collaborate with other members of the research department: Work closely with security researchers, ML engineers, and other team members to develop and implement defense strategies for the current and future threat landscape.
Document the findings of threat research and publication reports that can be shared with internal and external stakeholders.
Stay up-to-date with the latest developments in the cyber security field: including the latest trends, techniques, and threats in the cyber security field.
Uncover and develop new cyber-attack vectors, techniques and POCs.

We are looking for a researcher to help us harness the power of our trillions of security signals to rapidly diagnose and alert the latest attacker behaviors, drive critical context-rich signals, construct new tools and automations to support customers, identify threats, and detect advanced attacker techniques.
Responsibilities:
Research innovative network attack vectors and lateral movement techniques in diverse environments & technologies, including Windows, cloud, virtualization frameworks, OT and more.
Study security mechanisms, implementation details and internals of various identity & access management technologies, identify potential security flaws of products and protocols
Perform comprehensive risk assessments of customers infrastructure to identify security issues and lateral movement paths
Develop new red-team techniques, tools and frameworks to discover and simulate attack scenarios
Demonstrate POCs based on your ideas and knowledge and lead the implementation process
Work closely with other internal engineering and AI teams to integrate new capabilities into our platform and guide cross-product architectural decisions
Act as a security subject matter expert for multidisciplinary teams