דרושים » אבטחת מידע וסייבר » Senior Director, Research and Detection

The Fraud Lead is the principal technical authority for fraud detection and response engine. You own the professional logic that powers our product, ensuring that the "Brain" of our platform is technically cohesive, scientifically rigorous, and market-leading.
You act as a System Architect for the fraud domain, connecting the dots between Research, Data Science, and Analytics. Crucially, you serve as the primary technical consultant for our customers, helping them understand, integrate, and optimize the fraud logic that protects their environments. You work alongside a separate Product group (who defines the roadmap) and a Platform Engineering group (who builds the infrastructure).
What youll do:
Technical Domain Architecture
Logic Blueprinting: Design the end-to-end technical logic for detection features-from telemetry ingestion to real-time response actions.
Cross-Team "Glue": Ensure that Fraud Research insights are effectively operationalized by the Data Science team and surfaced correctly by the Analytics team.
Architecture Governance: Set the technical standards for how detection logic is built, ensuring it is scalable and compatible with the Platform Engineering teams infrastructure.
Customer Fronting & Technical Advisory
Technical Subject Matter Expert: Act as the lead technical consultant for high-value customers. You will lead "deep-dive" sessions with client-side engineers and fraud experts to explain our detection methodologies and data requirements.
Integration Strategy: Advise customers on how to best leverage our technical logic within their specific business contexts.
Feedback Loop: Translate complex customer technical needs and "edge case" fraud patterns back into technical requirements for the internal fraud group.
Expert Implementation
Hands-on Prototyping: Remain an expert practitioner in Python and SQL. You will prototype new detection methodologies and perform technical validation of production models.
Quality & Observability: Design the technical frameworks that ensure our detection logic remains performant and observable in live customer environments.

We are looking for a hands-on security researcher who combines an attacker mindset, fraud-domain curiosity, strong technical depth, and data analysis skills. You will investigate real-world fraud patterns, reproduce attacker techniques, analyze telemetry, enrich our data collection capabilities, discover new security signals, and work closely with product, data, and engineering teams to turn research insights into production-grade detection and prevention mechanisms.
This role is especially relevant for researchers with experience in browser technologies, mobile-native applications, or both. You may work on desktop and mobile browsers, browser APIs, browser automation, client-side signals, native mobile applications, Android/iOS behavior, mobile security, emulators, device signals, and mobile automation.
You will help expand our visibility into new signals and patterns that improve fraud detection, model performance, and customer protection.
If you are a talented researcher who enjoys solving complex problems, working with messy real-world data, and building practical defenses against modern fraud and abuse, we want you to join our team.

Why GeoEdge? GeoEdge is the global leader in ad security and quality, trusted by hundreds of the world's top ad platforms, publishers, and app developers. Our mission is simple: make the internet safer by stopping malicious, deceptive, and low-quality ads before they ever reach a user. For over a decade, we've protected the integrity of the digital advertising ecosystem with real-time technology that empowers our partners to deliver clean, trustworthy user experiences.
The Role We're looking for a Security Research Team Lead to join a team of security researchers, operations analysts, and data scientists who continuously hunt for threats, evaluate emerging attack vectors, and develop innovative detection techniques in the field of malvertising. This is a hands-on leadership role. You'll drive detection innovation, mentor researchers, and deliver work that has a direct and measurable impact on protecting users and customers from malicious advertising at scale.
?Responsibilities
* Design and implement new methodologies to identify and stop malvertising attacks before they reach end users
* Research and develop signal-collection strategies across mobile and desktop environments to strengthen detection
* Map adversary tactics, techniques, and procedures employed by malvertisers and related threat actors
* Translate customer-specific security requirements into actionable research that consistently exceeds expectations
* Publish findings through blog posts, conference presentations, and industry engagements
* Hunt threats proactively across the internet, reverse-engineer attack execution, and produce thorough technical documentation
* Build scripts and tooling to streamline workflows and amplify the team's productivity
* Mentor and lead junior researchers, contributing to team-level metrics and a strong research culture
* Stay ahead of emerging threats and developments across the cybersecurity landscape

Were looking for driven and talented people like you to join our team and our mission to change the future of cloud security. Ready to dive in and swim with our pod?
As the Head of Research, you will lead Securitys threat-research, security-innovation, and vulnerability-discovery efforts. You will define the strategy for how we uncover threats, identify novel attack vectors, influence product direction, and contribute thought leadership to the cybersecurity community. You will manage and grow a team of world-class researchers, work closely with product, engineering and go-to-market teams, and ensure our research remains cutting-edge, rigorous and impactful. This role emphasizes strong people leadership and cross-functional execution, alongside technical depth and hands-on research judgment.
What youll do :
Develop, own and evolve the research strategy by defining high value focus areas (for example misconfigurations, identity threats, workload vulnerabilities, and emerging attack techniques), and ensure alignment with product roadmap and business objectives.
Lead, coach, and mentor a multidisciplinary research team (researchers, threat analysts, and engineers).
Build a healthy, high-performing org, including hiring, onboarding, and performance management.
Partner closely with product and engineering leadership to turn research insights into concrete roadmap items, detection logic, and customer value.
Drive discovery of new vulnerabilities, attack techniques, or adversary behaviors across cloud and modern infrastructure environments (for example containers, serverless, data stores, IAM).
Define metrics for research impact (for example vulnerabilities discovered, time to validate and operationalize new findings, research-driven product improvements, external reach).
Establish and maintain external partnerships (industry peers, academic groups, independent researchers) to expand capabilities and pipeline.
Publish and present research findings (blog posts, white papers, conference talks).
Lead vulnerability disclosure and responsible communications.
Ensure the research function has the right infrastructure and processes (tooling, sandboxes, repeatable experimentation, documentation standards).
Stay current with the threat landscape, emerging technologies, attacker tradecraft, and relevant compliance or regulatory shifts.

As the Senior Knowledge Engineer, you will be the designer of a system that treats global infrastructure as a formal graph, where every node and edge is traced back to a versioned source of truth. This role is a part of the Product CTO organisation that includes a team of Technical Strategy leaders that bring outstanding ideas, the ability to execute cross functionally, and teamwork to a strategic, high future impact organisation.

The Vision:

The security industry is drowning in observed symptoms while starving for attestable truth. At CrowdStrike, we are building a high integrity infrastructure fabric - a platform that doesnt just scan for risks, but proves them through a deterministic digital twin of the enterprise.

The Challenge Youll Solve: How do you build a robust extensible framework that can connect to hundreds of different APIs, from mainstream cloud providers to niche security tools? How do you write the code that can parse and normalise their widely different schemas and data formats, and then efficiently map them into a canonical graph model? This is your build.

What You'll Do:
Build our Universal Translator Framework: You will be the primary builder of our data ingestion and semantic transformation pipelines. You will design and implement the core framework and specific connectors to parse API schemas and transform raw data into our canonical model.

Architect the Knowledge Construction Engine: You will implement the systems that turn data into knowledge. This includes building the code generators that compile our team's high level mapping configurations into low level artifacts, and developing the software for our entity resolution engine to fuse disparate data into unified conceptual entities.

Data Quality & Validation Strategy: You will contribute to a multi-backend graph architecture optimized for both real time temporal state and deep multihop path analysis.

Work Crossfunctionally: Work closely with the Principal Ontologist, Asset Platform, Risk Platform, Ingest, and Design Teams.

Lead, Mentor, and Align: Guide a diverse team of engineers, taxonomists, and subject matter experts in distilling vendor specific noise into a unified topography of risk.

Provide support to the wider CTO organization including the Falcon Fund, Privacy & Cyber Policy, Data Science and Detection Architecture teams, as well as the broader CrowdStrike organization as needed.

Work with industry analysts to provide product updates, briefings, and demonstrations.

We're seeking a Senior Security Researcher & Team Lead to own and drive Zenity's security research domain from the ground up. This is a leadership-first role - you'll build and guide a research team, define a new frontier in AI and agentic security, and shape the methodologies and standards that don't yet exist in the industry. If you thrive in ambiguity, love creating structure where there is none, and want to leave a real mark on an emerging security domain, this role is for you.
You'll investigate emerging attack surfaces, architect and implement detection mechanisms, and validate your findings in production environments protecting Fortune 500 customers. It's a high-ownership position that blends deep technical research with strategic thinking and team leadership - with a real sense of urgency to shape the AI security landscape not just for Zenity, but for the entire security community.
Responsibilities:
Lead and mentor a security research team, driving vulnerability and threat research that generates product value and protects Fortune 500 customers in production environments.
Take end-to-end ownership of detection mechanism design for agentic AI applications - from initial hypothesis through experimentation to production-grade implementation.
Apply expertise across cloud, identity, web, and API security to map and address the evolving AI threat landscape.
Apply LLMs, Agentic AI, and machine learning models to detect security vulnerabilities.
Collaborate closely with engineering and product teams to translate research into actionable, shippable security capabilities.

We're looking for a security practitioner who wants to go deeper than monitoring dashboards and triaging alerts. Someone who understands what good detection looks like, knows their way around a SIEM, and isn't afraid to roll up their sleeves with APIs and automation. You'll be the bridge between the security products our customers already trust and the our company platform that validates whether those products are actually doing their job.

Opportunity Highlights
Our integrations team is responsible for connecting our company with the security products that make up enterprise defense stacks worldwide - EDR and XDR platforms, SIEMs, vulnerability management tools, threat intelligence platforms, email security products, and cloud security solutions.

You'll own the full lifecycle of these integrations: building new ones, keeping existing ones healthy, and setting up realistic lab environments that mirror what our customers actually run. When something breaks in the field (or can't be reproduced internally) you'll be the one figuring it out.

You won't be doing this alone. You'll work closely with our Product, Engineering, and Security teams, and you'll have access to modern AI-powered development tools that let you move fast without sacrificing quality.

The Impact You Will Have

Design, build, and maintain integrations with leading third-party security products
Own the full lifecycle of existing integrations - maintenance, bug fixes, upgrades, and reliability improvements
Research vendor APIs, authentication flows, event schemas, and product capabilities to unlock new integrations
Translate complex security telemetry into normalized, actionable data
Build and maintain lab environments that mirror real enterprise security deployments
Reproduce field scenarios, validate detections, and troubleshoot integration behavior end-to-end
Investigate issues in customer-like environments when they can't be reproduced internally
Continuously evaluate new security technologies and identify integration opportunities
Use modern AI-driven development tools to accelerate delivery and improve quality

We're looking for a Threat Detection Researcher to join the Threat Research team and spread the power of our company. In this role, you will further develop the Cloud-native Threat Detection domain.
WHAT YOULL DO
Design behavioral baselines for complex cloud environments using diverse signals, and develop high-fidelity detections based on those baselines.
Expand our company's detection engine with novel and high-impact telemetry sources, pushing the boundaries of what can be detected in modern cloud environments.
Conduct deep technical research into complex cloud services to uncover novel attack vectors.
Investigate real-world attacks across cloud environments, identity providers (IDPs), and infrastructure-as-a-service (IaaS) platforms.
Hunt and analyze emerging threats and active campaigns targeting cloud ecosystems.

We are looking for a hands-on Security Research Team Lead to own and scale our Security Research domain.
This is a foundational role in a small, highly technical team, focused on deep security research, algorithmic thinking, and leveraging AI to turn complex data into accurate, actionable security insights.
This role is not about people management by default - it is about technical leadership, ownership, and building scalable research capabilities that directly impact product and customer security.
Responsibilities:
Own and lead the Security Research domain through hands-on technical work.
Research security risks in SaaS and business applications, including permissions, identities, and access models.
Design and apply algorithmic approaches to analyze complex data structures and security risk surfaces.
Leverage AI-based techniques to work with large-scale data, improve accuracy, and automate research workflows.
Detect security flaws, misconfigurations, and systemic risks in SaaS environments.
Lead and support complex security investigations and customer-facing incident research.
Work closely with Product and Engineering to translate research findings into scalable product capabilities.
Technically mentor and support a small and growing research team.
Define research priorities and help shape how the team scales over time.

We are looking for a Security Engineer to join our Security Operations team and grow into our SOAR and automation specialist.

The team is responsible for monitoring our environments, identifying and responding to security alerts, and continuously improving how we detect and respond to threats. This role focuses on the automation side of the function: building the workflows that make the rest of the team faster, from automated alert triage to enrichment pipelines to response playbooks.

You will work closely with senior engineers on the team to build and maintain SOAR content, integrate our security tools, and support detection deployment efforts. This role offers a strong opportunity to grow professionally in the security field, with direct exposure to detection engineering, incident response, and a modern enterprise security stack.

How Will You Make an Impact?

Own day-to-day operation of our SOAR platform.

Build and maintain automation playbooks for alert triage, enrichment, ticketing, and notifications.

Build and maintain integrations between SOAR and the broader security stack via APIs.

Monitor integration health, API connections, and credential rotation across automated workflows.

Measure and report on automation impact: alerts auto-resolved, analyst time saved, and MTTR reduction.

Support detection engineering on testing, deployment, and rollout of new content.

Write small scripts to support ad-hoc threat hunting and IR work.

Create and maintain technical documentation for playbooks and integrations.