דרושים » מחשבים ורשתות » Principal/Senior Linux Security Researcher (Cortex)

We are looking for a Linux Internals Software Engineer for our Tel Aviv R&D center. You will be part of a team that designs and develops the Linux internals components of our revolutionary endpoint security product for the Linux platform
More information about Cortex XDR product can be found here.
Key Responsibilities
Design and implement innovative capabilities for a market-leading product, deployed on a range of platforms from bare-metal to the cloud.
Develop critical components in the Linux internals parts of the product, including user and kernel-mode OS-related infrastructures in both C and C++.
Utilize cutting-edge Linux technologies for real-time event collection, anti-malware, anti-exploitation, and network filtering.
Lead features by collaborating and coordinating with other development and QA teams to ensure alignment on shared objectives.
Uphold and contribute to a team culture that values software development best practices and high standards for quality.

Were looking for people who are relentlessly curious and committed to continuous learning. AI is reshaping every function across our business, and we enable every team member, regardless of role or level, to build fluency in AI tools and concepts. Those who thrive here actively seek out new solutions, experiment thoughtfully, and apply what they learn to drive better, faster, smarter outcomes.
As a Senior Software Engineer, you will be tasked with exploring new technologies to design and develop innovative ideas from scratch in the Linux security domain. You will drive new detection capabilities and infrastructure at scale for our products, leveraging your deep technical expertise. We are looking for a talented individual who can turn complex security challenges into scalable, high-impact solutions.
What will you do?
Primary responsibilities include:
End-to-end responsibility for new detection capabilities, from researching Linux/Containers security landscapes to designing detection strategies and algorithms.
Designing and delivering innovative security solutions at scale.
Working on diverse technical challenges, ranging from low-level Kernel hooks to complex detection engines and pure system engineering.
Enhancing the security of various Linux and cloud workload platforms protected by our product.
Supporting a global impact, serving thousands of users, including enterprise, public sector clients, and some of the largest companies worldwide
Software Development (70-80% of time)
Conduct low level research and Design of new features
Peer code reviews; Participate in teams design review
Learn new technologies in the Linux and Cloud workloads security domain
Architect end-to-end security solutions for complex features with loose problem definition
Modeling and POC of solutions for complex problems
Support customers with issues and requests within the teams domain.

The Security & Information team is looking for someone who is passionate about technology and has a roll-up-their-sleeves mentality to join our global team. Youll play a crucial role in enhancing our security infrastructure, improving networking, ensuring scalability, and maintaining strong security as we continue to grow. If you want to be an industry leader, on a team experiencing hyper-growth, look no further!
Responsibilities :
Lead the design and implementation of AI-driven detection and response strategies to automate complex security investigations.
Operates as the primary escalation point for critical security alerts, performing deep-dive DFIR investigations, analyzing attacker techniques and vectors, proactively hunting threats, and directing incident response activities.
Lead SecOps projects from inception to execution, ensuring effective implementation and ongoing maintenance
Research how to leverage security telemetry and existing security solutions to improve triage and automated response.
Work cross-functionally to refine and evolve agentic workflows that drive automated security operations.
Coordinate investigation, containment, and other response activities with business stakeholders and groups.
Perform hands-on forensic investigations, log reviews, cloud investigations, and root-cause analysis
Develop incident analysis and findings reports for management, including gap identification and recommendations for improvement.

We are seeking a highly skilled and experienced Head of Application Security to join our dynamic team. This role is pivotal in driving the security of our software development lifecycle and ensuring the robustness of our applications against potential threats. The ideal candidate will have a strong background in secure software development practices, including SSDLC implementation, and a deep understanding of security risks & tools. This position reports directly to an R&D VP.
Key Responsibilities
Lead the application security team, providing strategic direction and mentorship.
Develop and implement a comprehensive Secure Software Development Lifecycle (SSDLC) framework.
Oversee the integration of security practices into all phases of the software development lifecycle, including CI/CD guardrails.
Conduct risk assessments and threat modeling to identify and mitigate potential security vulnerabilities.
Collaborate with development teams to ensure secure coding practices and adherence to security standards, while maintaining developer productivity.
Implement and manage security automation tools and processes to enhance the efficiency of security operations.
Stay up-to-date on the latest security trends, vulnerabilities, and technologies to continuously improve our security posture.
Provide expert guidance on security architecture and design for new and existing applications.
Lead incident response efforts related to application security breaches and vulnerabilities.
Foster a culture of security awareness and continuous improvement within the organization.

we are looking for highly capable Incident Response Expert. The Incident Response Expert role includes conducting in-depth forensic analysis, investigation and response to real-world cyber threats. A significant part of our investigations is performed onsite at the client location, in collaboration with the clients IT and security teams.
Main Responsibilities:
Participate in forensic and incident response investigations, including large scale sophisticated attacks, conduct log analysis, host and network-based forensics and malware analysis.
Participate in threat hunting: proactively hunt for targeted attacks and new emerging threats in clients networks; as well as security assessments and simulations.
Identify indicators of compromise (IOCs) and tools, tactics, and procedures (TTPs) to help ascertain whether and how breaches have occurred.
Utilize and develop tools and methodologies to improve existing investigative and hunting technological stack.
Collaborate with IT and Security teams during investigations.
Generate and present a comprehensive and professional report of findings from investigations.

As an Embedded Linux & Security Engineer , your daily mission involves crafting custom Linux images tailored for our embedded platform, which plays a crucial role in unlocking phones and extracting forensic evidence for law enforcement agencies. Your expertise will also be pivotal in developing and enhancing the Board Support Package (BSP) layer, ensuring the highest level of security for our platform. This position, nested within our security research department, requires close collaboration with research teams to tackle and anticipate the security challenges of tomorrow to bypass security mechanisms of modern phones.
You'll thrive in a role that blends technical challenges with a profound impact on society. You'll contribute to product that play a vital role in law enforcement and public safety. Our collaborative environment offers endless opportunities for professional growth, letting you work side by side with some of the brightest minds in security research and embedded systems development. This position is not just a job; it's a mission to make the world a safer place, with innovative challenges and the chance to solve complex problems daily.
Key responsibilities:
Develop and maintain custom Linux images for our embedded platform, optimizing performance and security.
Design and implement the BSP layer, ensuring compatibility and efficiency across different hardware configurations.
Identify, analyze, and mitigate potential security vulnerabilities.
Engage in innovative problem-solving activities, contributing to the development of new technologies and methodologies.
Maintain up-to-date knowledge of the latest security threats, trends, and technologies.

As a talented researcher, you will be joining the industrys leading digital intelligence Security Research Labs group. In this position you will be taking part and leading new projects in little-explored vulnerability research territories, producing world-unique capabilities to extract evidence from phones and other embedded devices. Recent phones (from burner phones to the latest flagships) are increasingly challenging from a forensics perspective, and involve hardware-backed encryption (FDE/FBE), secure boot chains (Verified Boot/dm-verity), evolving hardened SELinux policies, as well as adventures in ARM TrustZone secure worlds.
Key Responsibilities:
You will join Cellebrites digital intelligence Security Research Labs Group and be a part of a team of passionate researchers, dedicated to solving modern digital intelligence challenges, years ahead of others in the industry. Our world-class research results assist law enforcement by enabling lawful evidence extraction, and putting criminals behind bars, every day.
You are a security researcher who cares about the ethical use case for his/her work, and if the art of engineering and crafting a platform-wide native payload in a fragmented ecosystem of gaping variance is the kind of challenge you appreciate, you belong with us. We need your help to make the world a safer place.

The secret to our success lies in our connectivity, while operating with a high degree of flexibility. Work-life balance remains our priority while feeling connected is important to maintain our strong culture, achieve our goals, and thrive as One.
This role is offered as a hybrid with expectations to come to the office in the Tel Aviv office in Israel at least 3 days per week. We are only able to accept applications for those based in Israel and have sponsorship to live and work in Israel.
What you'll do:
At our company, we empower people to be their best selves and do their best work. The Security Analyst role strengthens our ability to detect and respond to emerging mobile threats. With increasing mobile attacks and zero-day exploits, we need dedicated analysts to proactively protect our customers and expand detection coverage. As the analysts team has grown, this role now allows for broader coverage of emerging mobile threats and enables analysts to take on more diverse responsibilities. The expanded scope supports comprehensive threat research, detection development, and incident response, ensuring work is thorough,
prioritized, and aligned with evolving security challenges.
What you can expect to do in this role:
Research new ways to detect malicious activity on using a wide variety of custom-built tooling.
Participate on research how to protect users from 0-day attacks.
Perform analysis of detections according to the assignment to determine accuracy and precisions and tune detections accordingly based on results.
Stay up to date on the latest malware trends and design detections accordingly.
Support sales and marketing by timely information about emerging threats and trends.
Analyze device logs and search for malicious signs.
Write and manage detection patterns and algorithms to detect malicious mobile threats in Android and iOS devices.
Perform other duties and special projects as assigned.

We're seeking a Senior Security Researcher & Team Lead to own and drive Zenity's security research domain from the ground up. This is a leadership-first role - you'll build and guide a research team, define a new frontier in AI and agentic security, and shape the methodologies and standards that don't yet exist in the industry. If you thrive in ambiguity, love creating structure where there is none, and want to leave a real mark on an emerging security domain, this role is for you.
You'll investigate emerging attack surfaces, architect and implement detection mechanisms, and validate your findings in production environments protecting Fortune 500 customers. It's a high-ownership position that blends deep technical research with strategic thinking and team leadership - with a real sense of urgency to shape the AI security landscape not just for Zenity, but for the entire security community.
Responsibilities:
Lead and mentor a security research team, driving vulnerability and threat research that generates product value and protects Fortune 500 customers in production environments.
Take end-to-end ownership of detection mechanism design for agentic AI applications - from initial hypothesis through experimentation to production-grade implementation.
Apply expertise across cloud, identity, web, and API security to map and address the evolving AI threat landscape.
Apply LLMs, Agentic AI, and machine learning models to detect security vulnerabilities.
Collaborate closely with engineering and product teams to translate research into actionable, shippable security capabilities.

we are looking for a talented team leader to join the industrys leading digital intelligence Labs group. In this role, you will lead and participate in innovative projects to implement and productize groundbreaking, world-unique capabilities for extracting evidence from Android or iOS devices.
Modern Android and iOS platforms present increasing challenges from a forensics perspective, incorporating robust protection mechanisms such as File-Based Encryption, Secure Element, and mitigations like Pointer Authentication Codes.
our Labs is a team of passionate researchers and developers dedicated to solving cutting-edge digital intelligence challenges, staying years ahead of others in the industry.
Our world-class R&D efforts assist law enforcement agencies by enabling lawful evidence extraction, helping to bring criminals to justice every day.
Key Responsibilities:
Oversee Vulnerability Research Projects: Lead and manage projects focused on discovering and exploiting vulnerabilities in mobile platforms.
Mentor and Guide Team Members: Provide mentorship and guidance to researchers, helping them navigate complex technological challenges.
Deliver Comprehensive Solutions: Develop complete solutions, moving beyond proof-of-concept demonstrations to fully implementable exploits.
Recruit and Develop Talent: Identify and recruit new researchers as needed, building a skilled and dynamic team to enhance the department's capabilities.