Mdr Analyst- Shift Position Unit jobs at Palo Alto in Israel, Tel Aviv-yafo

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• Hire for and lead a team of MDR Analysts working globally, guide the team, create and improve processes, methodologies and capabilities that the team requires to work effectively
• Lead a team that analyzes incidents from real customer environments to identify ongoing threats to customer environments
• Provide critical feedback to the different product, research and engineering and threat hunting teams to help improve the products for the entire Palo Alto Networks’ customer base
• Work closely with Security Research, Threat Intelligence and Threat Hunting teams to remediate and detect new emerging threats

Your Experience

• Great interpersonal skills and a proven experience collaborating with customers
• Understanding of the threat landscape in terms of the tools, tactics, and techniques of attacks, as well as networking and security fundamentals
• Basic hands-on coding skills (e.g. Python)
• Excellent written and oral communication skills in English
• Experience investigating targeted, sophisticated or hidden threats
  • Background in forensic analysis and incident and response tools to identify a threat and determine the extent and scope of a compromise
  • Experience with investigative technologies such as SIEM, packet capture analysis, host forensics, and Endpoint Detection and Response tools
  • Understanding of how APTs operate and the attack cycle – different attack vectors, propagation and data exfiltration, lateral movement, persistence mechanism, etc.
  • Understanding of how organizations protect themselves from cyber-attacks, what tools are used and what remediation techniques are leveraged
• Advantages
  • Having worked in SOC analysis or an investigation environment
  • Having worked in Incident Response environment

All your information will be kept confidential according to EEO guidelines.

Job Summary

You’ll not only support investigations and incident triage, but also help onboard customers, answer technical questions about reports, alerts, and the service, and manage ongoing communications to ensure clarity, alignment, and satisfaction.

Key Responsibilities

• Be part of a customer-focused sub-function of the Unit 42 MDR team, dedicated to proactive communication and technical guidance
• Support onboarding activities for new customers
• Monitor incoming communication from customers (e.g., via email, comments), triage and route issues as needed, and answer technical questions around reports, alerts, and recommendations
• Collaborate with MDR analysts to ensure the customer’s technical questions about incidents or threats are fully addressed
• Own the customer communication lifecycle during ongoing incidents — ensure timely updates, clarity, and alignment on next steps
• Help drive consistency and quality in how incidents and threat intelligence are communicated externally
• Escalate and advocate for customer issues internally across Product, Engineering, and the broader Unit 42 team

Preferred Qualifications

• 1+ years of experience in a customer-facing cybersecurity role such as professional services, customer success, or customer support — must, Tier 1/2 SOC analyst experience
• Hands-on experience with tools such as EDR, SIEM, SOAR, or XDR
• Strong customer communication skills — verbal and written — with the ability to explain complex technical details clearly
• Experience reviewing, drafting, or presenting incident reports and security findings
• Familiarity with Cortex XDR or Cortex XSOAR
• Experience onboarding new security services or clients
  

This role includes participation in our weekend coverage rotation supporting global MDR operations:

• 3 weekends per month Tuesday - Saturday schedule)

• 1 week per month with a Monday– Friday schedule

• May require evening and night shifts aligned to operational needs

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• Develop information security and incident response workflows, procedures and deploy them as Cortex XSOAR playbooks
• Work with MDR analysts to understand their specific workflows to help automate procedures & responses on a large scale
• Develop Python scripts to automate repetitive tasks
• Integrate APIs from various security and IT tools
• Analyze metrics and trends to identify areas for improvement in detection and response

Your Experience

• 5+ years of hands-on extensive experience with various information security tools such as SIEMs, FWs, EDR, Sandboxes, Vulnerability Management, etc.
• A self-motivated and proactive individual with tech/team leadership experience - as this is a newly created position, the ideal candidate will be someone who thrives in an entrepreneurial environment, has the ability to work independently, and is comfortable taking initiative to shape the role as it evolves
• 2+ years of hands-on, extensive experience in incident response and malware analysis
• Software development experience, preferably Python
• Good understanding of SOC and information security management workflows in enterprise organizations
• Great communication skills, both in Hebrew and English

Nice to have

• Previous experience with Cortex XSOAR or other SOAR products
• Previous experience with Cortex XSIAM

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

As the Director of QA, you will play a crucial role in ensuring our Cloud platform's reliability, effectiveness, and stability. Your strategic leadership and technical expertise will enhance our commitment to delivering innovative and robust security software. Our XSIAM product simplifies security operations and accelerates incident remediation with a platform designed to address today’s threats as well as those of the future.

More information about the product we develop can be found at: .

Your Impact

• Leadership and Strategy
  • Develop and implement a comprehensive QA strategy aligned with the company's overall goals and vision
  • Lead and mentor a team of QA engineers, fostering a culture of collaboration, innovation, and continuous improvement
  • Collaborate closely with cross-functional teams, including software development, product management, and customer support, to ensure QA initiatives are integrated seamlessly throughout the product lifecycle
• Quality Assurance
  • Establish and enforce QA processes and standards that adhere to industry best practices and compliance requirements
  • Design, implement, and maintain test plans, test cases, and test scripts to thoroughly validate the functionality, performance, and security of our product
  • Conduct risk assessments and develop mitigation strategies to identify and address potential product quality issues
• Quality Metrics and Reporting
  • Define and track key quality metrics and key performance indicators (KPIs) to measure the effectiveness of QA efforts
  • Prepare and present regular quality status reports to senior management, highlighting achievements, challenges, and action plans
• Innovation and Learning
  • Stay current with industry trends, emerging technologies, and security threats to drive innovation in QA processes and methodologies
  • Encourage a culture of continuous learning and professional development within the QA team

Your Experience

• Proven experience (5+ years) in a senior QA Leadership Roles, in Cloud-native products environment
• Extensive knowledge of software QA methodologies, tools, and processes
• Strong experience with test automation frameworks and practices
• Excellent communication and leadership skills, with the ability to collaborate effectively across teams
• Strong problem-solving and critical-thinking abilities
• Experience leading and managing a QA guild or similar cross-functional quality assurance team - Advantage
• Bachelor's or Master's degree in Computer Science, Engineering, or a related field or equivalent military experience
• by recruiter and audited by recruiting specialist]

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• Develop code for detecting sensitive information directly on the scanning engine
• Research data types - How they are defined, how people manage them and how to detect them
• Analyze performance of the data classification solution
• Develop data-driven reports and presentations
• Maintain up-to-date datasets in a rich cloud environment
• Provide data-driven recommendations to team members

Your Experience

• Minimum of 2 years of experience working as a data analyst or in a similar role
• Advanced proficiency in Python scripting
• Strong data analysis skills, with hands-on experience using tools (e.g. Pandas)
• Familiarity with regular expressions (Regex)
• Experience querying databases using a query language (e.g. SQL)
• Strong analytical skills and attention to detail

Advantages:

• Academic degree in a quantitative field (Industrial Engineering, Statistics, Math, CS or equivalent)
• Experience in big data research and analysis
• Experience with cloud service providers (AWS, GCP, Azure)
• Experience working with noSQL databases (e.g. MongoDB)
• Experience with LLMs, including designing effective prompts and utilizing agents for data tasks

We define the industry instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of a challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment.

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• Hire for and lead a team of MDR Analysts working globally, guide the team, create and improve processes, methodologies and capabilities that the team requires to work effectively

• Lead a team that analyzes incidents from real customer environments to identify ongoing threats to customer environments

• Provide critical feedback to the different product, research and engineering and threat hunting teams to help improve the products for the entire Palo Alto Networks’ customer base

• Work closely with Security Research, Threat Intelligence and Threat Hunting teams to remediate and detect new emerging threats

Your Experience

• At least 3 years of team management experience, global management experience (world-wide team) is a plus

• Great interpersonal skills and a proven experience collaborating with customers

• Understanding of the threat landscape in terms of the tools, tactics, and techniques of attacks, as well as networking and security fundamentals

• Basic hands-on coding skills (e.g. Python)

• Excellent written and oral communication skills in English

• Experience investigating targeted, sophisticated or hidden threats

  • Background in forensic analysis and incident and response tools to identify a threat and determine the extent and scope of a compromise

  • Experience with investigative technologies such as SIEM, packet capture analysis, host forensics, and Endpoint Detection and Response tools

  • Understanding of how APTs operate and the attack cycle – different attack vectors, propagation and data exfiltration, lateral movement, persistence mechanism, etc.

  • Understanding of how organizations protect themselves from cyber-attacks, what tools are used and what remediation techniques are leveraged

• Advantages

  • Having worked in SOC analysis or an investigation environment

  • Having worked in Incident Response environment

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• Join a new emerging team who is going to be part of Palo Alto’s Unit 42, Working closely with global customers providing the best security in the market
• Own an incident lifecycle from outbreak to full remediation
• Provide critical feedback to the different product, research and engineering and threat hunting teams to help improve the products for the entire Palo Alto Networks’ customer base
• Work closely with Security Research, Threat Intelligence and Threat Hunting teams to remediate and detect new emerging threats
• This position is a Shift Position (Sunday - Friday Evening & Saturday Evening)

Your Experience

• 1+ years of experience in a multi tiered SOC/IR is a must
• Experienced with Technologies such as EDR, SIEM, SOAR, FW
• A well established familiarity with attack trends and vectors
• Excellent written and oral communication skills in English
• Some degree of Malware Analysis - An advantage
• CEH / CompTIA CYSA+ certifications - An advantage
• Hands-on experience with Cortex XSOAR or Cortex XDR - An advantage

All your information will be kept confidential according to EEO guidelines.