דרושים » תוכנה » Principal/Senior Windows Exploit Researcher (Cortex)

As a Vulnerability Research Team Lead , you will lead a world-class group of vulnerability researchers in analyzing complex cyber-physical systems. You will balance hands-on technical excellence with people management, guiding your team through deep-dive disassembly, code audits, and exploit development. You will be responsible for the team's research roadmap, ensuring we stay ahead of emerging threats while fostering a culture of innovation and professional growth.

Responsibilities
As a Vulnerability Research Team Lead, your impact will be:

Leadership & Mentorship: Lead, hire, and develop a team of high-performing Vulnerability Researchers, fostering a collaborative and high-standard environment.
Research Strategy: Define and execute the team's research roadmap, prioritizing targets that provide the highest value to customers and products.
Technical Oversight: Provide expert guidance on static/dynamic analysis, reverse engineering, and exploit development projects.
Cross-Functional Collaboration: Work closely with R&D, Product Management, and Threat Intelligence teams to translate research findings into actionable security features.
Thought Leadership: Represent research in the industry through blogs, whitepapers, or conference presentations (BlackHat, DEF CON, etc.).

Were looking for a top-notch Threat Detection Researcher to join our team and spread the power of our company. In this role, you will further develop the company Runtime Sensor as part of our threat research team.
WHAT YOULL DO
Develop detections and tools to protect customers from cloud threats
Investigate attacks on cloud environments and malware targeting cloud workloads
Hunt and analyze real-world attacks and emerging cloud threats
Collaborate closely with the R&D team to transform research insights into product features
Work with customers in response to requests related to suspicious activity or potential incidents
Create best practices and security policies based on research findings
Deliver external-facing content (blog posts and talks at security conferences) based on security insights and novel research.

We are looking for a versatile and innovative Attack-oriented Cyber Researcher to join our R&D team and become part of the revolution. You will conduct state-of-the-art research across multiple environments, ranging from Windows internals and kernel-level security to cloud platforms like AWS, Azure, Web technologies, etc' to stay one step ahead of real threat actors.
Your findings, your code and attack tools will feed directly into our automated attack platform, enhancing its capabilities with new offensive techniques and AI-powered decision-making algorithms.
Roles and Responsibilities:
Perform in-depth research in multiple areas such from AV/EDR evasion, binary exploitation, vulnerability discovery, and subversion of communication channels across both OS-level, domains, cloud-native domains, external surfaces.
Integrate research outputs into production-grade attack functionalities within our automation ecosystem.
Architect and develop AI-driven decision-making modules that enable the platform to mimic experienced attackers, making real-time choices during automated operations.
Develop production-ready attack capabilities using whatever technologies are necessary, Python, C/C++, C#, Java, Office Macros, Bash, PowerShell, Go, Ruby, Assembly, etc.
Mentor and collaborate with fellow R&D team members, fostering a culture of innovation and continuous learning.

As a Senior Malware Researcher, you will analyze and reverse engineer malware and tooling used by advanced threat actors, particularly those targeting governments and critical infrastructure. You will apply deep expertise in binary and script analysis to uncover capabilities, configurations, and C2 infrastructure for threat actor attribution and mitigations.
Your work will power our companys malware catalog, strengthen our understanding of threat actors technical capabilities, and directly support the development of next-generation AI-driven "artificial cyber researchers".
Responsibilities
Perform in-depth static and dynamic analysis of malware, implants, loaders, and related tooling used by APTs and other sophisticated adversaries.
Reverse engineer binaries and scripts (e.g., PE, ELF, .NET, PowerShell, JavaScript/VBA) to determine capabilities, execution flow, persistence mechanisms, and evasion techniques.
Extract and document configuration data and C2 information, and map these to campaigns, infrastructure, and threat actors in collaboration with CTI researchers.
Develop and maintain detection and hunting artifacts such as YARA rules, VT LiveHunt queries, CAPA rules, and sandbox behavior signatures.
Work closely with CyberAI researchers on the development of next-generation artificial cyber researchers and AI-driven analysis capabilities.

Were looking for a Pentest Product Associate to join our Product team and help expand the power of our company.
In this pivotal role, you will be the primary operator of our cutting-edge AI-driven Dynamic Application Security Testing (DAST) agent while simultaneously innovating detection mechanisms for cloud-native technologies.
You will bridge the gap between automated AI testing and cloud infrastructure, defining the "rules of engagement" for our agents to ensure they effectively simulate sophisticated attacks and accurately classify the modern attack surface.
WHAT YOULL DO
Engineer Detection & Attack Logic: Develop advanced detection algorithms to classify cloud technologies while fine-tuning the attack policies that define how our agents identify and exploit vulnerabilities.
Validate Complex Findings: Analyze cloud services, APIs, and log payloads to review complex attack paths, reducing false positives and ensuring compliance with industry standards.
Research Novel Threats: Stay at the forefront of novel attack vectors and emerging cloud/API threats, translating new techniques into executable behaviors for the company DAST engine.
Drive Product Evolution: Collaborate directly with Research, Backend, and R&D teams to turn operational insights into feature requests, positioning our company as the market leader in vulnerability management.

Were looking for people who are relentlessly curious and committed to continuous learning. AI is reshaping every function across our business, and we enable every team member, regardless of role or level, to build fluency in AI tools and concepts. Those who thrive here actively seek out new solutions, experiment thoughtfully, and apply what they learn to drive better, faster, smarter outcomes.
As a Senior Software Engineer - C++ Endpoint Security, Collection Engineering (Data Protection Team), you will design and implement low-level C++ or Rust agent modules as a foundational member of our newly formed Data Protection unit. You will research and develop high-fidelity sensors and robust, scalable code to monitor and prevent sensitive data leakage across multiple operating systems. By building these mission-critical collection engines, you will play a key role in defining the technical architecture for our companys next generation of data-centric security.
What will you do?
Design and implement low-level agent modules (using C++ or Rust), capable of monitoring data access and movement with minimal performance overhead.
Research and evaluate technologies for building high-fidelity sensors that track data access.
Develop robust, scalable, and performant code that operates reliably across multiple operating systems and environments.
Collaborate closely with Core Agent, Backend, and Frontend teams to deliver a unified, user-facing, next-generation data protection product.

Were looking for people who are relentlessly curious and committed to continuous learning. AI is reshaping every function across our business, and we enable every team member, regardless of role or level, to build fluency in AI tools and concepts. Those who thrive here actively seek out new solutions, experiment thoughtfully, and apply what they learn to drive better, faster, smarter outcomes.
As a Senior Software Engineer, you will be tasked with exploring new technologies to design and develop innovative ideas from scratch in the Linux security domain. You will drive new detection capabilities and infrastructure at scale for our products, leveraging your deep technical expertise. We are looking for a talented individual who can turn complex security challenges into scalable, high-impact solutions.
What will you do?
Primary responsibilities include:
End-to-end responsibility for new detection capabilities, from researching Linux/Containers security landscapes to designing detection strategies and algorithms.
Designing and delivering innovative security solutions at scale.
Working on diverse technical challenges, ranging from low-level Kernel hooks to complex detection engines and pure system engineering.
Enhancing the security of various Linux and cloud workload platforms protected by our product.
Supporting a global impact, serving thousands of users, including enterprise, public sector clients, and some of the largest companies worldwide
Software Development (70-80% of time)
Conduct low level research and Design of new features
Peer code reviews; Participate in teams design review
Learn new technologies in the Linux and Cloud workloads security domain
Architect end-to-end security solutions for complex features with loose problem definition
Modeling and POC of solutions for complex problems
Support customers with issues and requests within the teams domain.

we are seeking talented researchers to join our industry-leading Digital Intelligence Security Research Labs.
As a security researcher on our team, you will focus on identifying vulnerabilities within Apples ecosystem and developing innovative exploit strategies to gain access to iPhones and other devices, enabling the extraction of crucial evidence for law enforcements.
Key responsibilities:
Research on territories with little-explored vulnerability
Work on the production of world-unique capabilities to extract evidence from phones and other embedded devices.
iPhones and other iOS devices present tough challenges from a forensics perspective and involve hardware-backed encryption (SiDP), secure crypto coprocessor (SEP), and secured boot chain (SecureROM).
New iPhones present state-of-the-art exploit mitigations such as PAC, KTRR, and PPL.
Become a member of Labs Group, focusing on Security Research for mobile devices.
Execute your own (shell) code on top-notch technology mobile platforms hardened with challenging mitigations
Collaborate with a team of passionate researchers dedicated to solving modern digital intelligence challenges, years ahead of others in the industry.
Take part in world-class research results, assisting law enforcement by enabling lawful evidence extraction, and putting criminals behind bars every day.

We are looking for a senior researcher to focus on vulnerability research and exploitation in embedded environments.

In this role, you will research proprietary technologies and analyze complex IoT and embedded devices.

You will be responsible for taking your research from initial discovery to a full end-to-end solution in production.

Were looking for people who are relentlessly curious and committed to continuous learning. AI is reshaping every function across our business, and we enable every team member, regardless of role or level, to build fluency in AI tools and concepts. Those who thrive here actively seek out new solutions, experiment thoughtfully, and apply what they learn to drive better, faster, smarter outcomes.
As a Staff Software Engineer - C++ Endpoint Security, Collection Engineering (Data Protection Team), you will be tasked with designing and implementing low-level C++ or Rust agent modules as a foundational member of our newly formed Data Protection unit. You will research and develop high-fidelity sensors and robust, scalable code to monitor and prevent sensitive data leakage across multiple operating systems. By building these mission-critical collection engines, you will play a key role in defining the technical architecture for our companys next generation of data-centric security.
What will you do?
Primary responsibilities include:
Lead, design and implement low-level agent modules (using C++ or Rust), capable of monitoring data access and movement with minimal performance overhead.
Research and evaluate technologies for building high-fidelity sensors that track data access.
Develop robust, scalable, and performant code that operates reliably across multiple operating systems and environments.
Collaborate closely with Core Agent, Backend, and Frontend teams to deliver a unified, user-facing, next-generation data protection product.