דרושים » אבטחת מידע וסייבר » Offensive Security Researcher

We are looking for a Threat Security Researcher to join our team; an enthusiastic, autodidact who is passionate about analyzing vulnerabilities and malware techniques. He/she will build offensive breach scenarios, integrating the latest security knowledge into the platform of threats and 1-day exploits.

The Impact You Will Have:
Research in rich environments: Work across Windows, Linux, Mac, Docker, and advanced cloud environments (AWS, Azure, GCP).
Research and implement a huge variety of cyber tactics (privilege escalation, defense evasion, lateral movement, OS persistence, credential access, etc)
Exploit complex 1-days on apps & native OS.
Innovate & Build: Work with a wide variety of technologies to simulate real-world adversarial behavior.

Were looking for a hands-on AI Cyber Intelligence Engineer - in the domain of attack surface. Someone who lives and breathes cyber security, loves exploring how attackers move through real environments, and is excited to shape how AI can automate and extend that process.
In this role, youll analyze real-world environments, identify potential attack vectors, and work closely with our AI engineering teams to translate your domain expertise into actionable, intelligent workflows. Youll play a key role in guiding how our platform learns to think and act like a top-tier security analyst.
Responsibilities
Design and shape AI-driven security agents by encoding expert attacker and defender reasoning into agentic flows, prompts, decision logic, and investigative strategies.
Translate offensive security and red-team expertise into structured knowledge that enables AI systems to identify, prioritize, and reason about real-world attack paths in complex enterprise environments.
Model attacker behavior and multi-step attack scenarios, focusing on lateral movement, privilege escalation, and cross-domain exploitation - and guide how AI agents simulate and evaluate these scenarios.
Act as a domain expert partner for product and engineering teams, ensuring AI-driven security decisions remain grounded in real attacker tradecraft and operational reality.

Were looking for a Pentest Product Associate to join our Product team and help expand the power of our company.
In this pivotal role, you will be the primary operator of our cutting-edge AI-driven Dynamic Application Security Testing (DAST) agent while simultaneously innovating detection mechanisms for cloud-native technologies.
You will bridge the gap between automated AI testing and cloud infrastructure, defining the "rules of engagement" for our agents to ensure they effectively simulate sophisticated attacks and accurately classify the modern attack surface.
WHAT YOULL DO
Engineer Detection & Attack Logic: Develop advanced detection algorithms to classify cloud technologies while fine-tuning the attack policies that define how our agents identify and exploit vulnerabilities.
Validate Complex Findings: Analyze cloud services, APIs, and log payloads to review complex attack paths, reducing false positives and ensuring compliance with industry standards.
Research Novel Threats: Stay at the forefront of novel attack vectors and emerging cloud/API threats, translating new techniques into executable behaviors for the company DAST engine.
Drive Product Evolution: Collaborate directly with Research, Backend, and R&D teams to turn operational insights into feature requests, positioning our company as the market leader in vulnerability management.

We're looking for a Principal Cloud Security Researcher to serve as a senior technical leader within our Research team. This is a high-impact individual contributor role -- you won't manage people, but you'll shape the direction of our entire research function, mentor researchers, and act as a force multiplier across the organization.
You'll be the person who takes a vague threat signal and turns it into a detection strategy, a published finding, or a product capability. You'll operate as a trusted deputy to the research team lead, owning the most complex and ambiguous research challenges while raising the technical bar for the team.
What You'll Do
Drive Groundbreaking Research
Own and drive our most critical research initiatives end-to-end - from initial threat hypothesis through detection logic, product integration, and external publication.
Set the technical direction for cloud threat research across AWS, Azure, and GCP, identifying emerging attack surfaces and novel techniques before they become mainstream threats.
Investigate real-world cloud and SaaS security incidents, dissecting attacker tradecraft and extracting insights that evolve our detection capabilities.
Pioneer new forensic investigation techniques and detection methodologies for cloud-native and SaaS environments - pushing the state of the art, not just following it.
Be a Voice in the Community

Represent our company as a thought leader through high-quality research publications, conference presentations (BlackHat, DEF CON, RSA, fwd:cloudsec, and similar venues), and open-source contributions.
Build and maintain our reputation as a research-driven company that advances the field - not just a vendor with a blog.
Engage with the broader security research community, fostering relationships and collaborative knowledge-sharing.
Shape the Product

Bridge research and product - translate threat findings into actionable product requirements, working closely with engineering and product teams to ensure our CDR platform stays ahead of evolving threats.
Design and develop advanced detection algorithms that directly feed into our platform, closing the gap between research insight and customer protection.
Elevate the Team
Act as the team's go-to technical authority. When researchers hit a wall on complex cloud attack chains, IAM edge cases, or detection gaps - you're who they turn to.
Mentor and grow other researchers through research reviews, pair investigations, code reviews, and by setting quality standards and methodology best practices.
Influence technical decisions org-wide - contributing to architecture, tooling, and strategic research priorities.
Step in as the research team lead's deputy when needed - driving prioritization, representing research cross-functionally, and ensuring continuity.

We are looking for a versatile and innovative Attack-oriented Cyber Researcher to join our R&D team and become part of the revolution. You will conduct state-of-the-art research across multiple environments, ranging from Windows internals and kernel-level security to cloud platforms like AWS, Azure, Web technologies, etc' to stay one step ahead of real threat actors.
Your findings, your code and attack tools will feed directly into our automated attack platform, enhancing its capabilities with new offensive techniques and AI-powered decision-making algorithms.
Roles and Responsibilities:
Perform in-depth research in multiple areas such from AV/EDR evasion, binary exploitation, vulnerability discovery, and subversion of communication channels across both OS-level, domains, cloud-native domains, external surfaces.
Integrate research outputs into production-grade attack functionalities within our automation ecosystem.
Architect and develop AI-driven decision-making modules that enable the platform to mimic experienced attackers, making real-time choices during automated operations.
Develop production-ready attack capabilities using whatever technologies are necessary, Python, C/C++, C#, Java, Office Macros, Bash, PowerShell, Go, Ruby, Assembly, etc.
Mentor and collaborate with fellow R&D team members, fostering a culture of innovation and continuous learning.

Were looking for a top-notch Threat Detection Researcher to join our team and spread the power of our company. In this role, you will further develop the company Runtime Sensor as part of our threat research team.
WHAT YOULL DO
Develop detections and tools to protect customers from cloud threats
Investigate attacks on cloud environments and malware targeting cloud workloads
Hunt and analyze real-world attacks and emerging cloud threats
Collaborate closely with the R&D team to transform research insights into product features
Work with customers in response to requests related to suspicious activity or potential incidents
Create best practices and security policies based on research findings
Deliver external-facing content (blog posts and talks at security conferences) based on security insights and novel research.

Your Opportunity:
Investigate and analyze the multi-cloud stack and AI models to find 0-day vulnerabilities, security holes, weaknesses, and design flaws.
Follow emerging security threats, author blogs about novel research, publish content, and speak at conferences.
Conduct technical research on cloud and AI platforms to yield new insights, theories, analyses, TTPs.
Serve as a technical leader and contributor for a research team exploring emerging cloud and AI technologies and services.

As a Security Researcher, you will play a crucial role in researching, building, and enhancing our cutting-edge technology to address the evolving cybersecurity challenges faced by the world's largest enterprises.

Responsibilities:
Research, develop, and implement new offensive security capabilities that push the boundaries of the EASM category, including exploit development and PoC creation across web applications, AI/LLM assets, network infrastructure, cloud environments, and supply chain dependencies.
Drive innovation by conceptualizing, implementing, and adopting AI-driven initiatives and offensive security expertise to enhance our detection, validation, and automation capabilities at scale.
Conduct in-depth research to continuously expand platform coverage.
Develop exploitability tests to uncover critical, real-world findings across enterprise attack surfaces - directly demonstrating the power of the platform.
Collaborate with global enterprises as design partners to understand their security needs and design solutions accordingly.
Take ownership of key research projects, addressing security and scalability challenges from concept through to delivery.

We are looking for a Senior Security Researcher to join our Identity Threat Detection and Response team. In this role, you will research the evolving threat landscape and develop advanced detections to protect SAAS, Cloud, on-premises, and hybrid identities. You will focus on identifying and mitigating identity-related threats across networks, endpoints, and cloud environments, using statistical classification methods to build effective detection models and protecting customers at scale. Additionally, you will collaborate with cross-functional teams, validate detection concepts on real-world data, and continuously enhance detection capabilities to stay ahead of emerging threats.
Key Responsibilities
Research innovative methods for detecting targeted attackers operating in endpoints, networks, cloud and SAAS environments.
Simulate real-world attacks in lab environments and conduct a deep analysis of the behavior.
Develop and refine statistics-based classification algorithms and techniques to create and improve detection models.
Research specific scenarios to enhance our model's capabilities.
Collaborate within a diverse research group, improving our research processes and leading us to be a better team creating a better product.
Stay informed on the latest APTs, attacker methodologies, and TTPs to ensure our models stay ahead of emerging threats.

We are hiring an AI Researcher to join the research team building the next generation of AI-native security systems. You will work alongside security and threat researchers to build large-scale AI agents that reason over software, code, endpoint activity, and security signals to detect malicious behavior, uncover vulnerabilities, assess risk, and make autonomous security decisions in real-world production environments. We are entering the Mythos era - where attackers operate at machine speed using autonomous systems and AI-generated software, and defenders must evolve the same way. We use state-of-the-art frontier models, including access to Mythos, to build reliable AI-native security systems at global scale. You will help design the evaluations, harnesses, and reliability infrastructure that make autonomous agents dependable under real customer load, while collaborating with leading AI organizations including Anthropic on initiatives such as Glasswing. This is an opportunity to work at the frontier of AI, autonomous systems, and cybersecurity while helping define how the next generation of security systems will operate.
Key Responsibilities
Build AI agents and autonomous security systems that reason over software, code, endpoint activity, MCPs, and security signals to detect malicious behavior, uncover vulnerabilities, and assess risk at production scale.
Develop systems, tooling, and infrastructure that enable agents to autonomously investigate threats, hunt for malware in massive datasets, and operate reliably in complex security environments.
Design and run experiments to evaluate frontier-model and agent capabilities in realistic adversarial scenarios, including benchmark creation, large-scale datasets, automated evaluations, and human-in-the-loop review systems.
Build the evaluation harnesses, observability systems, and reliability infrastructure required to make autonomous agents accurate, scalable, and dependable under real customer load.
Engineer for scale and performance across large distributed AI systems, including inference optimization, orchestration, batching, caching, cost controls, and graceful degradation under high demand.
Continuously evaluate emerging models, agent architectures, prompting techniques, and research directions to ensure our systems remain at the frontier of AI-native cybersecurity.
Rapidly prototype and test new approaches across reasoning, autonomy, evaluations, and security workflows as the AI landscape evolves.
Partner closely with threat and security researchers to extract domain expertise, translate analyst reasoning into AI workflows, and enable new forms of automation and autonomous investigation.
Collaborate with leading AI and security researchers to shape the future of AI-native cybersecurity as the industry transitions into the Mythos era.
Senior candidates will help define research direction, shape technical strategy, identify high-leverage problems, and influence how autonomous AI systems are deployed across the organization.