דרושים Principal Malware Windows Researcher ב-Palo Alto ב-Israel, Tel Aviv-yafo

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

You will create statistics-based classification algorithms detecting everything from new malware through process behavior and attackers operating in enterprise-scale networks using data from multiple Windows endpoints; from analyzing attack patterns, finding statistical anomalies, and validating that you detect real attacks and APTs on real customer data.

Your Impact

• Research new methods to detect various attack techniques by utilizing enormous amounts and varied types of data
• Use and develop statistical algorithms and techniques to create and improve our analytics detection capabilities
• Take an active role in our collection modules by improving the ones that are already available and investigating new collection modules that will improve the quality of our detections
• Simulate attacks in the lab and conduct a deep analysis of the behavior
• Be part of a diverse research group, improving our research processes and leading us to be a better team, creating a better product
• Stay up to date with APTs, attacker methodologies, and TTPs

Your Experience

• In-depth knowledge of the inner-workings of operating systems (Especially Windows)
• Intimate knowledge and understanding of attack methods and techniques over endpoints and enterprise
• Vast experience and interest in malware research or development
• Python software development experience
• Comfortable conducting research and gathering insights by querying large databases
• Ability to drive and own projects
• Independent and team player, critical thinker

Advantages:

• Experience in machine learning or data analysis
• Reverse engineering knowledge and experience
• Advanced knowledge of Microsoft AD infrastructure
• Exploitation knowledge and experience

We define the industry instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of a challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment.

All your information will be kept confidential according to EEO guidelines.

Key Responsibilities

• You will be responsible for the complete software development life cycle including requirement analysis, design, development and deployment
• Take part in integrating the newest features and technologies, automate workflows, and create user friendly tools and frameworks for researchers.
• Produce elegant, generic, modular and extendable code
• Actively influence the processes and methods for researchers, affecting their day to day life

Required Qualifications

• BS in Computer Science or equivalent knowledge or equivalent military experience required
• 5+ years of software engineering experience
• Expertise in Python and Python internals
• Experience in designing, building and maintaining a user facing application/API
• Experience with Git or other source controls
• Good communication skills
• Self-driven with the ability to work independently, take initiative, and drive processes end-to-end

Advantages

• Experience with Kubernetes/Docker
• Experience with cloud infrastructure (GCP specifically)
• Knowledge of the cyber field
• Experienced with a variety of database technologies (Mysql / RocksDB / Google BigQuery)

We define the industry instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of a challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment.

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• Join the fastest growing team where experience meets cutting-edge solutions

• Build and cultivate strong customer relationships, driving business growth within the region.

• Partner with the core sales team to align customer strategies and engagements with Cortex and Cloud business objectives.

• Take full ownership of leading strategic sales campaigns, sales forecasting, utilizing in-depth knowledge of sales cycles from initial contact through procurement.

• Engage in deep technical discussions beyond standard sales presentations and pitches; while translating complex technical cybersecurity solutions into clear business value propositions for customers.

• Collaborate closely with cross-functional teams, including sales engineers, to provide tailored customer-centric solutions.

• Partner with Alliances to develop joint strategies, enhance customer engagement and deliver innovative solutions for existing and prospective clients.

• Travel domestically as needed to meet with customers and attend key business events.

Your Experience

• 5+ years of field sales experience focusing on key customer accounts and delivering value to Enterprise or Major-level accounts in the cybersecurity industry.

• Extensive platform selling experience in complex sales with multiple buying centers.

• Experience selling SIEM, EDR, XDR, SOC and SOAR solutions is highly preferred.

• Established trusted relationships with CIOs and CISOs with the ability to influence and drive strategic conversations

• Expertise in applying complex solution sales methodologies to drive results.

• Experience working with channel partners and a deep understanding of a channel-centric go-to-market strategy.

• Demonstrated ability to thrive in a fast-paced, high-growth startup environment while collaborating effectively with sales engineers and cross-functional teams.

• Experience operating in a continuous adoption, expansion, and upsell sales motion within a matrixed sales organization is preferred

• Willingness to travel domestically as necessary to meet business needs.

Compensation Disclosure

The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/commissioned roles) is expected to be between. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found .

All your information will be kept confidential according to EEO guidelines.

This role may require travel to and from Palo Alto Networks, Inc. business meetings and events and requires reliable transportation to do so. If a hire chooses to drive in connection with company business, the hire for this role must maintain a valid driver’s license.

Job Summary

We are looking for a Senior Windows Internals Engineer for our Tel Aviv R&D center. You will be part of a team that designs and develops the windows internals components of our revolutionary endpoint security product for the windows platform.

More information about the Cortex XDR product can be found .

Key Responsibilities

• Contribute to the research and development of Windows drivers, services and other system components for Windows
• Find and implement innovative solutions to counter cyberattacks
• Use diverse tools and technologies – IDA/python/rust/gcc/assembly
• Work closely with teams of experienced engineers, security researchers and product managers, leading projects, features, and initiatives

Preferred Qualifications

• 4+ years of experience in software development
• 3+ years of experience with system programming for any major OS (Windows/Linux/Android/Mac)
• Motivated to understand how things work
• Bachelor's degree or equivalent military experience required

Skills & Competencies

• Modern C++ development
• Experience with one or more of the following skills/technologies – User–mode internals, Windows security model, PE format, hooking, injection, etc., x86 / x64 assembly, Security technologies (ASLR, DEP, etc.), Reverse engineering with IDA Pro, Python
• Contributions to open source projects or a complex hobby project

All your information will be kept confidential according to EEO guidelines.

Your Career

You will be part of a strong security research and data science team who solve highly complex security challenges using disruptive technologies, ML algorithms and a lot of data.

As part of that, you will take part in the design and development of new groundbreaking AI security solutions which make a direct impact on many customers.

Your Impact

• Transform Data into Defense: Take the lead in creating high-fidelity security incidents from a massive stream of alerts generated by our industry-leading advanced security solutions
• Innovate with AI : Actively participate in cutting-edge research projects focused on creating novel prevention content at scale using state-of-the-art AI and Large Language Models (LLMs)
• Drive Security Efficacy: Analyze complex threat data to identify attacker patterns, develop new prevention methodologies, and enhance automated flows to rapidly protect Cortex platform customers
• Collaborate and Lead: Work side-by-side with top-tier data scientists, engineers, and product managers to translate research ideas into tangible, customer-facing security protections

Your Experience

• 8+ years of hands-on experience in the cybersecurity research field
• Proven expertise in detecting threats by analyzing and correlating security data across hybrid environments, from on-premise tools (EDR, SIEM, NDR) to major cloud platforms (AWS, GCP, Azure)
• Proven ability to investigate and contextualize disparate security alerts to construct a full attack narrative
• Strong proficiency in a scripting language, with Python being highly preferred for data analysis and prototyping
• Hands-on experience with query languages and databases (e.g., SQL , KQL)
• A scientific, data-driven approach to problem-solving, with experience running research projects from ideation to production
• Excellent communication skills, with the ability to clearly articulate complex technical concepts and research findings to diverse audiences

We define the industry instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of a challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment.

All your information will be kept confidential according to EEO guidelines.

Key Responsibilities

In this role, you’ll have the opportunity to:

• Drive Strategic Vision - Define and execute the long-term strategy for our identity solution, ensuring alignment with overall business goals and industry best practices
• Lead Innovation - Spearhead groundbreaking projects and research in identity, developing advanced technologies and methodologies that set new industry standards
• Architect Solutions - Design and oversee the implementation of robust, scalable, and secure architectures, solving the most complex challenges with innovative solutions
• Mentor and Develop - Provide thought leadership and mentorship to engineering teams, fostering a culture of continuous learning, professional growth, and technical excellence
• Collaborate Across Teams - Work closely with cross-functional teams, including product management, platform, and other stakeholders, to ensure cohesive and effective development strategies
• Advance Your Career - Engage in high-impact initiatives and leadership opportunities, with access to advanced professional development resources and strategic projects that shape the future of identity security

Your Experience

• 8+ years of hands-on experience in Software Engineering
• Experience in Go/Python/Java or similar languages
• Experience in building and managing distributed cloud-based SaaS applications
• Proficiency in at least one cloud provider (AWS, GCP, Azure)
• Experienced with a variety of database technologies (Mysql / Cassandra / Google BigQuery / Amazon Redshift / ElasticSearch)
• Experienced with monitoring, profiling and enhancing system performance
• You are proactive and a system thinker who always strives to push the product forward - Ability to lead POCs and incorporate new technologies
• Mentor team members, provide guidance and support in both design and development phases
• Excellent written and verbal communication skills
• Advantage - Experience with IDP providers (OKTA, Entra, AD, etc)

Preferred Qualifications

• B.Sc. or M.Sc. in Computer Science, Software and Computer Engineering, or equivalent military experience

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

We are looking for a Principal Linux Security Researcher for our Tel Aviv R&D center, to work on cortex-xdr for linux, which provides runtime protection to servers and cloud workloads.
You will be part of a team that is in charge of researching, developing and improving Anti-Exploit capabilities, Anti-malware capabilities. The position includes researching OS internals, exploits, malware, delving into cloud security, and finding ways to mitigate new attack vectors.

Your Impact

• Research, develop, and improve anti-exploitation mitigations and anti-malware modules - ranging from low-level mitigations up to tackling application-level security vulnerabilities
• Work on the design, evaluation, and implementation of new security technologies
• Research Linux OS internals, kernel, application codebases, vulnerabilities and exploits (both for internal usage and for PR)
• Analyze customer issues to help with detecting and preventing malicious activities in our customers networks

Your Experience

• In-depth knowledge of some operating system internals is a must - Knowledge of Linux is an advantage
• Development experience in C/C++/Rust is a must, 2 years at least
• Experience in reverse engineering - both static and dynamic, is a must (x86/64 architectures), 3 years at least
• Development knowledge in some scripting languages is a must - Experience with Python is an advantage
• Exploitation experience is an advantage (either application-level security or memory corruption)
• Experience with Kubernetes and cloud workloads is an advantage
• Ability to work independently and as a part of a team
• Strong attention to detail
• Ability to take initiative

We define the industry instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of a challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment.

All your information will be kept confidential according to EEO guidelines.