דרושים » אבטחת מידע וסייבר » Application Security Researcher

Requirements:
2+ years in a leadership or management role, including mentoring researchers and setting research strategy.
5+ years in security research with a proven track record of driving impactful projects.
Deep expertise in cloud-native security, with strong focus on Kubernetes, containers, and major cloud providers (AWS, Azure, GCP, OCI).
Experience developing or working with detection and response products, such as XDR, EDR, or cloud workload protection platforms.
Excellent communication skills, with the ability to articulate complex research findings and drive alignment across diverse teams.
Proficient in hands-on coding and scripting (e.g., Python).
Experience working with large-scale data pipelines and analytics (e.g., GCP BigQuery, Dataflow).
Preferred Qualifications
Familiarity with Kubernetes threat modeling frameworks (e.g., MITRE ATT&CK for Containers).

Requirements:
Required Qualifications
At least one year of management experience.
At least 5 years of security research experience.
At least 3 years of Linux security research experience.
At least 3 years of experience in Linux internals (both user and kernel) and research.
At least 3 years of experience with reverse engineering (both static and dynamic) as well as assembly.
At least 2 years of programming experience in C/C++/Rust.
Experience with leading projects, working with other teams, and meeting high-quality standards and deadlines.
High research and coding standards and ability to think ahead of possible pitfalls and issues.
Hands-on approach
Passion for working with people: recruiting, leading, mentoring, and helping them grow.
Excellent communication skills with the ability to present research results, processes, and ideas clearly and concisely.
The ability to work under pressure with strict deadlines and to prioritize projects.
Ability to take initiative and work under pressure.
Strong attention to detail.
A 'play-to-win' attitude.
Preferred Qualifications
Experience with writing eBPF applications.
Experience finding your own vulnerabilities and figuring out how to exploit them.

Requirements:
5+ years of experience in cybersecurity landscape
Deep understanding of networking technologies and protocols, network security principles, firewalls, network access controls and network-based attacks
Experience in monitoring or analyzing network topologies, captures and flows
Deep knowledge in security mechanisms, products, detection techniques
Strong coding skills, with ability to develop end-to-end POC for new security capabilities
Excellent communication and team collaboration skills
Fluency in English.

Requirements:
At least 1+ years of experience as a Senior/Group Manager with a proven track record of leading managers.
At least 4 years of overall management experience.
At least 5 years of security research experience.
At least 3 years of Linux security research experience.
At least 3 years of experience in Linux internals (both user and kernel) and research.
At least 3 years of experience with reverse engineering (both static and dynamic) as well as assembly.
At least 2 years of programming experience in C/C++/Rust.
Experience with leading projects, working with other teams, and meeting high-quality standards and deadlines.
High research and coding standards and ability to think ahead of possible pitfalls and issues.
Hands-on approach
Passion for working with people: recruiting, leading, mentoring, and helping them grow.
Excellent communication skills with the ability to present research results, processes, and ideas clearly and concisely.
The ability to work under pressure with strict deadlines and to prioritize projects.
Ability to take initiative and work under pressure.
Strong attention to detail.
A 'play-to-win' attitude.
Preferred Qualifications
Experience with writing eBPF applications.
Experience finding your own vulnerabilities and figuring out how to exploit them.

Requirements:
1+ years of hands-on experience in AppSec or penetration testing, including proficiency with enterprise tools like Burp Suite, OWASP ZAP, or Acunetix.
Solid knowledge of networking concepts, the OSI model, and cloud infrastructure (AWS, Azure, or GCP).
Hands-on experience with Linux, Windows, Docker, Kubernetes, and a strong command of web protocols (HTTP/S, REST, GraphQL) and auth mechanisms (OAuth, SAML).
Proficiency in scripting languages such as Python, Bash, or Go to automate security tasks and interact directly with the codebase.
An analytical mindset with the ability to diagnose complex logs and scans to distinguish between tool failures, configuration issues, and valid security findings.
Self-motivated with the ability to work collaboratively and communicate high-stakes security concepts effectively across teams.
BONUS POINTS
Knowledge of AI/ML and how LLMs or reinforcement learning agents operate within a cybersecurity context.
SaaS and cloud experience with familiarity in AWS, Azure, or GCP environments and modern cloud-native architectures.
A red teaming background with experience in simulated adversarial attacks and bypassing standard WAF or security controls.

Requirements:
What You'll Need:
7+ years of experience in cybersecurity research, vulnerability research, or offensive security.
Previous work experience in finding vulnerabilities and publishing research findings.
Experience with and knowledge of high-level systems, web applications, and application security.
Highly motivated, great self-learner, curious, responsible and independent
Strong communication skills - written and verbal.

And Ideally:
Previous experience in presenting your work at industry conferences.
Experience with Kubernetes and container technology.
Solid programming skills in at least one language (C, C++, Python, GO, Rust).
B.Sc. or higher in Computer Science, Software Engineering, Mathematics, or equivalent professional background.
Experience with data/security analysis.
Experience with and knowledge of cloud environment architecture (AWS, Azure, GCP).

Requirements:
6+ years of experience in security or threat research in which you conducted deep research with actionable conclusions and impacts
Intimate knowledge of OS internals (Windows/Linux) and networking
Familiarity with cloud services, Kubernetes, cloud environment architecture, and the major cloud providers (AWS, GCP, Azure)
Experience delivering security detections in customer-facing product(s)
The ability to learn independently, to be self-driven and goal-oriented
Excellent communication and teamwork skills
ADVANTAGE
Hands-on experience with malware analysis/reverse engineering/vulnerability research
Familiarity with notable threat actors and threat intelligence analysis
IR/red-team/threat-hunting experience.

Requirements:
Required Qualifications
5+ years of experience in cybersecurity research, with a proven track record of impactful projects.
Good knowledge of Linux OS internals, including both user and kernel space.
Solid knowledge of the cyber threat landscape, modern malware techniques, and APTs.
Hands-on experience in real-world threat hunting, incident response, or detection engineering.
Proficiency in programming languages such as Python, C, and/or C++, with a strong understanding of system-level programming and APIs.
Excellent problem-solving skills and a passion for cybersecurity innovation.
Ability to work independently, take initiative, and collaborate effectively in a team environment.
Preferred Qualifications
Background in EDR/XDR products or security solution development.
Experience in reverse engineering, including familiarity with debugging and disassembly tools such as GDB, IDA Pro, or Ghidra.
Experience in advanced data analysis, statistics, or machine learning for security applications.
Experience with Linux kernel development or vulnerability research.
Familiarity with virtualization platforms (e.g., ESXi/vCenter).

Requirements:
At least 5 years of hands-on experience in cybersecurity, threat intelligence, security research, or security analysis
Strong understanding of the cybersecurity threat landscape, including threat actors, malware, phishing, C&C, exploitation, cloud threats, and attacker behavior
Proven experience in threat intelligence research, including IOCs, TTPs, MITRE ATT&CK, campaign tracking, and threat actor profiling
Strong data exploration skills, with practical experience using SQL to analyze large-scale security datasets
Experience using AI tools, AI coding assistants, and agentic workflows for research, automation, and data analysis
Ability to build scripts, internal tools, or agentic systems to support threat research and intelligence workflows
Strong technical writing skills, with experience publishing blogs, reports, whitepapers, or public research
Strong presentation skills, with the ability to represent the company at conferences and external events
Self-learner with high curiosity, strong ownership, and the ability to manage complex research independently
Ability to collaborate effectively with cross-functional teams, including product, engineering, and data teams
Fluent English with excellent written and verbal communication skills
Willingness to travel abroad for conferences, customer events, and company events at least six times per year
Advantageous:
Experience researching AI threats, LLM abuse, AI-assisted attacks, or AI-powered detection
Experience building agentic systems, automation frameworks, or AI-based research workflows
Background in engineering, backend systems, data infrastructure, or security platform development
Experience with data warehouses, BI tools, notebooks, or large-scale telemetry analysis
Experience with XDR, MDR, SIEM, EDR, NDR, SASE, or cloud security products.

Requirements:
Required Qualifications
At least 5 years of experience in security research.
Excellent communication skills with the ability to present research results, processes, and ideas clearly and concisely.
Proficient hands-on coding skills (e.g., Python).
Experience with SQL or related query languages.
Preferred Qualifications
Experience with big data platforms (e.g., GCP).
Experience with XDR/EDR/NDR/CDR products.
Experience in email security.