דרושים » אבטחת מידע וסייבר » Research Engineer (Cyber security)

We are on an expedition to find you, someone who is passionate about creating intuitive, out-of-this-world security research. You'll help us harness the power of our companys trillions of security signals to rapidly diagnose and alert the latest attacker behaviors, drive critical context-rich signals, construct new tools and automations to support customers, identify threats, and detect advanced attacker techniques.
Responsibilities
Analyze various network devices, configurations and security products
Implement methods and algorithms to discover network topology, relationships between devices and potential lateral movement paths
Conduct network security assessments to identify weaknesses in customers network infrastructure, and recommend mitigations to monitor and limit unauthorized access
Develop research tools and frameworks to perform automatic analysis of network devices and security products
Research and analyze network-related cybersecurity threats and trends
Work closely with other internal engineering and AI teams to integrate new capabilities into our platform and guide cross-product architectural decisions
Act as a security subject matter expert for multidisciplinary teams.

We are seeking an experienced Security Engineer to join our team and take ownership of our enterprise security infrastructure. In this role, you will be responsible for managing, monitoring, and optimizing our security stack to protect the organization against evolving cyber threats. You will play a critical role in ensuring the security and integrity of our network, endpoints, cloud services, and email communications.
What youll do:
Manage and maintain FortiGate firewalls, including policy configuration, VPN setup, traffic monitoring, and firmware updates to ensure robust network perimeter security, Hands-on experience with next-generation firewalls, preferably FortiGate
Administer Cisco Meraki cloud-managed networking infrastructure, including security appliances, access points, and network segmentation policies
Oversee Netskope CASB and SASE solutions to enforce cloud security policies, manage data loss prevention (DLP), and ensure secure access to cloud applications
Monitor and respond to security incidents using CrowdStrike EDR, including threat hunting, investigation, containment, and remediation of endpoint threats
Manage Abnormal Security platform to detect and respond to advanced email threats, including business email compromise (BEC), phishing, and account takeover attacks
Administer Kandji MDM solution for Apple device management, ensuring endpoint compliance, software deployment, and security policy enforcement across the Mac and iOS fleet
Secure and manage Google Workspace environment, including user access controls, security configurations, and audit log monitoring
Develop and maintain security documentation, playbooks, and incident response procedures
Collaborate with IT and DevOps / R&D teams to implement security best practices across the organization
Conduct regular security assessments, vulnerability scans, and risk analyses
Stay current with emerging threats and security trends to continuously improve the organization's security posture
Experience managing cloud-based networking solutions such as Cisco Meraki

Were looking for a Threat Engineer to assess and develop our state-of-the-art detection solution. In this role, you will own the security coverage of our detection platform and guide development to strengthen our customers' resilience to emerging unknown threats. Your expertise in cyber security will drive our true AI-driven detection platform.
Responsibilities
Work closely with developers and data scientists to produce AI detection models.
Design and shape AI-driven security agents by encoding expert attacker and defender reasoning into agentic flows, prompts, decision logic, and investigative strategies.
Act as a domain expert partner for product and engineering teams, ensuring AI-driven security decisions remain grounded in real attacker tradecraft and operational reality.
Apply your cyber expertise to investigate emerging threats and define technical requirements to mitigate them.
Architect and build scalable solutions for evaluating the platform security metrics.

Were looking for a top-notch Threat Detection Researcher to join our team and spread the power of our company. In this role, you will further develop the company Runtime Sensor as part of our threat research team.
WHAT YOULL DO
Develop detections and tools to protect customers from cloud threats
Investigate attacks on cloud environments and malware targeting cloud workloads
Hunt and analyze real-world attacks and emerging cloud threats
Collaborate closely with the R&D team to transform research insights into product features
Work with customers in response to requests related to suspicious activity or potential incidents
Create best practices and security policies based on research findings
Deliver external-facing content (blog posts and talks at security conferences) based on security insights and novel research.

we are looking for a Lead Security Researcher - AI Threat Intelligence. This key position within the threat intelligence group will be in charge of analyzing the vast amount of data that is managed by our company, develop threat intelligence on adversarial TTPs (tactics, techniques and procedures) and generate reports, presentations and blogs on anomalies and tools identified.
This role goes beyond the analyst role, as a key member of the team the threat intelligence researcher will work with internal security teams, network data, underground intelligence teams and much more, performing cutting edge research followed by presenting the research externally via various mediums.
Responsibilities:
Lead threat intelligence research focused on AI-related threats, threat actors, attack techniques, and emerging cybersecurity trends
Analyze internal and external security data to identify attack patterns, campaigns, and actionable intelligence
Explore large-scale datasets using SQL and other data analysis methods to generate research insights
Build tools, workflows, and agentic systems to automate research, investigation, and intelligence production
Research how attackers use AI and how AI can improve threat detection, investigation, and response
Publish high-quality research, including blogs, reports, threat intelligence summaries, and customer-facing insights
Present research at cybersecurity conferences, webinars, company events, and customer-facing sessions
Collaborate with product, data, engineering, and research teams to improve detections and product intelligence
Independently lead research initiatives from idea and data exploration to publication and presentation.
Travel internationally for company events and cybersecurity conferences at least six times per year.

You will work firsthand with our valued customers to address their complex post-sales concerns where analysis of situations or data requires an in-depth evaluation of many factors. Youre a critical thinker in understanding the methods, techniques, and evaluation criteria for obtaining results. Youll enjoy networking with key contacts outside your own area of expertise, with a strong capability of detailing difficult technical issues to both non-technical and technical professionals.
You will regularly participate in technical discussions with multi-functional teams, creating an environment of transparency that ultimately leads to better products, better working environments, and better cybersecurity. Your quick thinking and support to our clients provides the fast assistance they need to keep their environments secure - which means youll need to move quickly, thoughtfully, and provide technical assistance as needed (often, in high pressure situations).
Your Impact
Provide customers on-site support, deployment and implementation, knowledge transfer, configurations, troubleshooting, and standard methodologies to customers via phone, e-mail, and web.
Use fault isolation and root cause analysis skills to diagnose and tackle complicated technical issues
Provide post sales technical support, while handling support cases to ensure issues are recorded, tracked, resolved, and follow-ups finished in a timely manner
Work to reproduce customer issues and qualify critical issues
Publish Technical Support Bulletins and other user documentation in the Knowledge Base
Build a positive customer experience by working closely with Development, Sales, Quality Assurance, and Marketing
Responsible for reviewing user documentation for training materials, technical marketing collateral, manuals, problem solving guides, etc.
Provide on-call support 24x7 on an as needed basis
Travel may be required to customer sites in the event of a critical situation to expedite resolution
Work shoulder to shoulder with the Sales and Sales Engineering Teams.

Are you passionate about using cutting-edge technology to help protect the world against cyber threats? Do you live and breathe the cyber security world? Do you want to take part in an innovative and disruptive AI security group that has an impact on many customers?
You will be part of a strong security research and data science team who solve highly complex security challenges using disruptive technologies, AI & ML algorithms and a lot of data.
As part of that, you will take part in the design and development of new groundbreaking AI security solutions which make a direct impact on many customers.
At our company we value diverse viewpoints and experiences, as we are solving complex cyber security challenges. We are committed to a safe and inclusive workspace.
Key Responsibilities
Be at the forefront of security innovation, building next-gen detection capabilities powered by AI, deep-learning, machine learning, big data, and deep threat intelligence.
Dive deep into low-level systems, reverse engineering, and file-type behavior to uncover novel attack vectors - and then turn that insight into scalable, ML-driven protections.
Work hand-in-hand with rockstar data scientists, engineers, and PMs in a fast-paced, collaborative environment where ideas move quickly from whiteboard to production.
Lead high-impact research initiatives that fuse classic security expertise with modern data science - shaping models, influencing pipelines, and driving real-world protection outcomes.
Be a key player in a multidisciplinary team where your deep security expertise will directly influence AI/ML model design, data pipeline strategy, and real-world product impact.

We are looking for a Windows Malware Security Researcher for our Tel Aviv R&D center. You will be part of a team that is responsible for researching the most recent and advanced cybersecurity threats, as well as designing, developing, and improving Anti-Malware capabilities to protect against them. The position includes researching OS internals, picking apart malware samples, delving into the internals of Windows kernel and user-mode code, and finding ways to mitigate new attack vectors.
The proposed role will be part of the research team of the Cortex XDR endpoint protection solution.
We are seeking a highly skilled and experienced Windows Malware Security Researcher to join our growing Windows malware research team of the Cortex XDR agent group. In this role, you will play a key part in enhancing our Endpoint Detection and Response (EDR) agent by prototyping new protection components and techniques and developing advanced malware prevention strategies. You will work on identifying, analyzing, and mitigating sophisticated threats, working closely with various teams to drive innovation. A deep understanding of the Windows operating system is essential.
Key Responsibilities
Playing a pivotal role in shaping the future of our security solutions.
Enhance the effectiveness of our EDR product by designing cutting-edge protection components and developing sophisticated prevention rules.
Researching OS internals and how Windows works under the hood - leveraging this knowledge to develop and improve our anti-malware mechanisms and capabilities.
Research and lead novel protection ideas to production-grade level, serving as the feature subject matter expert.
Research new malware and APT mitigation techniques and develop corresponding capabilities (POC level), or improve existing mitigation capabilities.
Respond to malware-based security events at clients' networks.
Stay up to date with current malware and APT techniques.
Provide feedback to the product management team on new feature requests and product enhancements from our customer base.
Find new malware techniques and APT attacks, including analysis of caught-in-the-wild malware.
Operate independently end-to-end - from initial threat idea, through research and POC, to handing off a production-ready design to core agent engineering with clear specs, test cases, and edge-case analysis.
Be a team player who lifts others up - happy to jump in when a teammate is stuck on a tricky Windows internals or RE question, share what you've figured out, and generally make the people around you better.

As an innovator at heart, you will rethink the way SOCs do security. Join the analytics research group to build our analytics module by defining detection use cases, data, and content. You will collaborate with an amazing team of researchers to protect our customers across multiple domains such as Cloud, Kubernetes, SAAS, and Email security while working on a startup-level product within the biggest security company to revolutionize the security market.
Key Responsibilities
Build a startup-level security product within a corporate environment, blending agility with enterprise resources to deliver cutting-edge solutions.
Explore how email threats evolve into Cloud, SaaS, Endpoint, and Network domains, developing detection mechanisms to counter complex attack vectors.
Gain expertise across diverse domains, including endpoint, cloud, and SaaS security, to foster a comprehensive understanding of the threat landscape.
Design advanced detection systems using machine learning and LLMs to identify and mitigate threats.
Simulate and analyze sophisticated attacks to anticipate and counter evolving threats.
Share insights with the security community through blogs, white papers, and conferences.
Collaborate with a skilled team to innovate and enhance security offerings across various domains.

Were looking for a Pentest Product Associate to join our Product team and help expand the power of our company.
In this pivotal role, you will be the primary operator of our cutting-edge AI-driven Dynamic Application Security Testing (DAST) agent while simultaneously innovating detection mechanisms for cloud-native technologies.
You will bridge the gap between automated AI testing and cloud infrastructure, defining the "rules of engagement" for our agents to ensure they effectively simulate sophisticated attacks and accurately classify the modern attack surface.
WHAT YOULL DO
Engineer Detection & Attack Logic: Develop advanced detection algorithms to classify cloud technologies while fine-tuning the attack policies that define how our agents identify and exploit vulnerabilities.
Validate Complex Findings: Analyze cloud services, APIs, and log payloads to review complex attack paths, reducing false positives and ensuring compliance with industry standards.
Research Novel Threats: Stay at the forefront of novel attack vectors and emerging cloud/API threats, translating new techniques into executable behaviors for the company DAST engine.
Drive Product Evolution: Collaborate directly with Research, Backend, and R&D teams to turn operational insights into feature requests, positioning our company as the market leader in vulnerability management.