דרושים » אבטחת מידע וסייבר » Threat Research Team Lead

We are looking for a Jr. Threat Security Researcher to join our team; an enthusiastic, autodidact who is passionate about analyzing vulnerabilities and malware techniques. He/she will build offensive breach scenarios, integrating the latest security knowledge into the platform of threats and 1-day exploits.

Research and development in rich environments - Windows, Linux, Mac, Docker and cloud environments
Research and implement a huge variety of cyber tactics (privilege escalation, defense evasion, lateral movement, OS persistence, credential access, etc)
Work with a wide variety of technologies

We are seeking a highly skilled and motivated Senior Security Researcher to join our dynamic team.
As a Senior Security Researcher, you will play a pivotal role in simulating real-world attack scenarios, identifying vulnerabilities, and contributing to the development of innovative security solutions. You will work alongside some of the best security experts in the industry, driving research initiatives and enhancing your knowledge of emerging threats and attack techniques.
Key Responsibilities:
Conduct in-depth research and analysis of n-day vulnerabilities to assess risk and potential impact.
Investigate attack vectors across various operating systems and cloud environments (IaaS/SaaS).
Define and document mitigation strategies for discovered attack techniques, collaborating with development teams for implementation.
Drive the integration of research findings into product features, ensuring enhanced security capabilities.
Stay abreast of the latest security trends, technologies, and best practices to maintain expertise in the field.
Collaborate with cross-functional teams to communicate and implement identified attacks, techniques, and solutions.
Contribute to public security research through blog posts and potentially present findings at industry conferences.

Were looking for an exceptional Senior Cloud Security Researcher to join our growing team.
We are looking for a Cloud Security Researcher who will join our mission to revolutionize cyber defense through innovative research and cutting-edge technology. As part of our research work, you'll investigate cyberattacks targeting cloud and SaaS (Software as a Service) environments, enhancing expertise and contributing directly to the evolution of our CDR (Cloud Detection and Response) platform. Youll collaborate with cross-functional teams, bridging knowledge and aligning efforts across the organization.

What You'll Do
Lead innovative research into cyber threats targeting cloud platforms, SaaS applications, Kubernetes, and emerging technologies by leveraging state-of-the-art tools and methodologies.
Develop and refine cutting-edge detection algorithms and forensic investigation techniques to uncover and mitigate sophisticated attacks in cloud and SaaS environments.
Conduct comprehensive investigations of real-world cloud security incidents, transforming insights into actionable strategies that continually evolve our threat detection capabilities.
Share your research accomplishments and innovative findings with the security community through blog posts, conference presentations, and other professional forums, enhancing our industry reputation and fostering collaborative growth.
Contribute your expertise to shape the strategic direction and ongoing development of CDR product suite, ensuring our offerings stay ahead of evolving cyber threats.
Work closely with cross-functional teams to identify novel techniques and implement robust defenses, uniting diverse expertise to secure cloud and SaaS infrastructures.

We are looking for an experienced, analytical, and collaborative Open Source Vulnerability Data Manager to join our team and help us build the best DB of open source and container vulnerabilities out there.

In modern software development, much of any project's code relies on open source packages. These packages - often distributed in Linux containers - are visible for anyone and have vulnerabilities lurking in their code. As part of our Open Source group, you'll join us on our mission to continually improve our ability to find these open source and container vulnerabilities in a programmatic way. Every day new vulnerabilities and updates are published that require processing and triage in order to be added to the Snyk Vulnerability DB.

Your role will be to take charge of a team of security analysts who carry out this work. Youll lead the effort of populating our DB, monitoring our workflows, and shaping our processes, to make sure we continue to have the most accurate, timely, innovative, and informative open source and container vulnerability DB in the market.

Youll spend your time:
Leading a dedicated team of security analysts that are responsible for the content and maintenance of our vulnerability DB.
Establishing metrics and improvement targets for data quality, depth, and timeliness of delivery, then tracking and driving toward those targets.
Setting high quality standards, ensuring the accuracy and consistency of our DB.
Exploring new sources of security intelligence from open source repositories, Linux distributions, and AI-based services, for integration into our data.
Supervising our industry-supporting participation as a verifier and facilitator of responsible vulnerability disclosures from 3rd parties and in-house researchers.
Establishing the new abilities we need to develop to further our mission.
Triaging and analyzing potential vulnerabilities discovered in open source dependencies.
Using research to verify or disqualify potential vulnerabilities.
Using data analysis techniques to answer research questions about vulnerabilities, and general threat intelligence trends.
Directing machine learning models to find where vulnerabilities are most likely to exist using our unique database of verified vulnerabilities, information about how the open source community operates, and the static code itself.
Collaborating closely with product managers to develop security intelligence data products to serve the needs of the Snyk platform.
Working with users and Support staff to diagnose, prioritize, and address the needs of existing or prospective users.
Guiding team members in developing specialized skills such as vulnerability analysis, exploit reproduction, data analysis, and responsible disclosure.

Ask a member of our team and theyll answer, Our people! We work together to build and innovate best-in-class cybersecurity solutions for our customers; all while creating a culture of belonging, respect, and excellence where we can be our best selves. When youre part of our team, you can expect to partner with some of the most talented and passionate people in the industry, and have the support and resources you need to do work that truly matters. We deliver results that exceed expectations and we win together!
Cloud Security was established through the acquisition of Ermetic, an innovative cloud-native application protection platform (CNAPP) company, and a leading provider of CIEM. This acquisition is a significant step in mission to shift organizations towards proactive security, offering market-leading contextual risk visibility, prioritization, and remediation across both on-premises and cloud infrastructures.
Your Opportunity:
Cloud Security is seeking a Senior Vulnerability Researcher. In this role, you will research various cloud assets, roles, relations, and configurations to uncover 0-day vulnerabilities in major cloud providers and technologies. You will lead innovation, solve complex problems, and develop strategies for both attacking and defending cloud environments.
Furthermore, you will be in charge of fostering and spreading Cloud Securitys technical expertise. You will present your novel work at conferences and author papers and blogs. You will also build open-source cloud security tools and solutions.
If youre a curious, creative, technical person with an attackers mindset, strong systemic thinking, and a passion for taking things apart and understanding how they work, we encourage you to apply.
Your Role:
Investigate and analyze the multi-cloud stack to find 0-day vulnerabilities, security holes, weaknesses, and design flaws
Follow emerging security threats, author blogs about novel research, publish content, and speak at conferences
Conduct technical research on cloud platforms to yield new insights, theories, analyses, TTPs
Serve as a technical leader and contributor for a research team exploring emerging cloud technologies and services

As a Security Researcher, you will be responsible for conduct in-depth research and analysis of new threats and vulnerabilities in the blockchain space and develop tools and systems to detect and mitigate security risks in real-time. Youll work closely with our engineering and product teams to develop security strategies, detect and mitigate exploits, and enhance our on-chain security platform. While prior Web3 experience is an advantage, we welcome applicants with a solid security research background looking to break into blockchain security.

Key Responsibilities:
Conduct in-depth security research on blockchain protocols, smart contracts, and decentralized applications.
Identify and analyze security vulnerabilities, exploits, and attack vectors in Web3 protocols.
Collaborate with the engineering team to integrate detection capabilities into our on-chain exploit detection system.
Create proof-of-concept (PoC) exploits and simulations to help test and validate threat scenarios.
Stay current with emerging threats, new technologies, and industry best practices in information security.

The Incident Response Team Leader will be key to the success of Incident Response projects worldwide, and should possess strong leadership skills, be highly technical and thrive in a fast-paced and dynamic environment.

Main Responsibilities

Lead a team of top-tier cyber security researchers and forensic experts conducting assessments and in-depth analysis in complex investigations, as well as security assessments.

Guide and empower team members, enhancing their technical and research skills.

Lead client-facing projects including incident response and hunting efforts for large-scale sophisticated attacks, to contain and defeat real-world cyber threats.

Collaborate and work with clients IT and Security teams during investigations.

Design and improve internal incident response technologies, methodologies, and processes.

We are looking for a Cyber Threat Intelligence Analyst to be an integral part of our Intelligence teams, combining both cutting-edge technology and advanced threat intelligence analysis methodologies to deliver high-impact briefings to our customers.

We are seeking a motivated cybersecurity professional with a solid foundation in networking and cybersecurity to join our team as a Security Analyst. In this dynamic role, you will engage in various security tasks, from conducting detailed network analysis to developing and validating network signatures and workflows.

You will have the opportunity to collaborate with experienced professionals, contributing to vulnerability assessments, threat detection, and enhancing Cyberints customers security posture.

This position is designed for individuals eager to apply their technical skills in real-world scenarios while growing their expertise in various aspects of cybersecurity. You'll play a key role in our mission to safeguard critical systems.

If you are passionate about cybersecurity, committed to continuous learning, and ready to take on diverse challenges, we encourage you to join our team.

Key Responsibilities
Network Analysis:
Conduct thorough research of network-based vulnerability traffic.
Development & Validation:
Develop, write, review, and validate signatures and templates used for scanning systems for security weaknesses.
Security Assessments:
Assist in performing vulnerability assessments and penetration testing to support ongoing security initiatives.
Collaboration & Reporting:
Work closely with team members to document findings, prepare detailed reports, and recommend actionable remediation steps.
Continuous Learning:
Stay updated on the latest cybersecurity trends, threats, vulnerabilities, and best practices.

As a Cyber Security Engineer in a fast-expanding operation team, you will be responsible for onboarding new global clients to the MXDR services, developing and maintaining detection scenarios and alerts, analysing the client's environment, and providing technical support and guidance to clients. To excel in this role, you will demonstrate strong technical aptitude, dedication to delivering high-quality work, and a cooperative approach to teamwork.



Main Responsibilities:

Lead the onboarding process for all new clients joining the MXDR services, working closely with the clients IT and security teams to ensure smooth implementations.
Develop detection scenarios and alerts for XDR solution (Velocity) to ensure effective threat detection and response.
Oversee Velocity KPIs and measurements set by the client, adjusting, analyzing and maintaining them according to their needs and tracking the impact of the platform on the client's networks, endpoints, applications, and cloud environments.
Continuously improve Velocity monitoring capabilities and keep up-to-date with the latest developments in the cyber threat landscape.
Provide technical support and guidance to clients on Velocity security-related issues, including implementing security best practices and ensuring compliance with industry standards.

You will join a team of motivated, independent & highly technical individuals and contribute the effort to protect customers and empower the brand.



Key Responsibilities
Identify, understand and monitor advanced campaigns using publicly available sources as well as internal telemetry.
Analyze malware and other hacking tools utilized by threat actors in active campaigns and intrusions.
Create technical research content for public and private intelligence reports.
Help build protections and detections based on deep understanding of advanced threat actors Tactics Techniques and Procedures (TTPs).
Collaborate with other security teams to assist threat intelligence and research tasks.