דרושים Ai Security Solutions Architect ב-Palo Alto

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

You will create statistics-based classification algorithms detecting everything from new malware through process behavior and attackers operating in enterprise-scale networks using data from multiple Windows endpoints; from analyzing attack patterns, finding statistical anomalies, and validating that you detect real attacks and APTs on real customer data.

Your Impact

• Research new methods to detect various attack techniques by utilizing enormous amounts and varied types of data
• Use and develop statistical algorithms and techniques to create and improve our analytics detection capabilities
• Take an active role in our collection modules by improving the ones that are already available and investigating new collection modules that will improve the quality of our detections
• Simulate attacks in the lab and conduct a deep analysis of the behavior
• Be part of a diverse research group, improving our research processes and leading us to be a better team, creating a better product
• Stay up to date with APTs, attacker methodologies, and TTPs

Your Experience

• In-depth knowledge of the inner-workings of operating systems (Especially Windows)
• Intimate knowledge and understanding of attack methods and techniques over endpoints and enterprise
• Vast experience and interest in malware research or development
• Python software development experience
• Comfortable conducting research and gathering insights by querying large databases
• Ability to drive and own projects
• Independent and team player, critical thinker

Advantages:

• Experience in machine learning or data analysis
• Reverse engineering knowledge and experience
• Advanced knowledge of Microsoft AD infrastructure
• Exploitation knowledge and experience

We define the industry instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of a challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment.

All your information will be kept confidential according to EEO guidelines.

Your Career

You will be part of a strong security research and data science team who solve highly complex security challenges using disruptive technologies, ML algorithms and a lot of data.

As part of that, you will take part in the design and development of new groundbreaking AI security solutions which make a direct impact on many customers.

Your Impact

• Transform Data into Defense: Take the lead in creating high-fidelity security incidents from a massive stream of alerts generated by our industry-leading advanced security solutions
• Innovate with AI : Actively participate in cutting-edge research projects focused on creating novel prevention content at scale using state-of-the-art AI and Large Language Models (LLMs)
• Drive Security Efficacy: Analyze complex threat data to identify attacker patterns, develop new prevention methodologies, and enhance automated flows to rapidly protect Cortex platform customers
• Collaborate and Lead: Work side-by-side with top-tier data scientists, engineers, and product managers to translate research ideas into tangible, customer-facing security protections

Your Experience

• 8+ years of hands-on experience in the cybersecurity research field
• Proven expertise in detecting threats by analyzing and correlating security data across hybrid environments, from on-premise tools (EDR, SIEM, NDR) to major cloud platforms (AWS, GCP, Azure)
• Proven ability to investigate and contextualize disparate security alerts to construct a full attack narrative
• Strong proficiency in a scripting language, with Python being highly preferred for data analysis and prototyping
• Hands-on experience with query languages and databases (e.g., SQL , KQL)
• A scientific, data-driven approach to problem-solving, with experience running research projects from ideation to production
• Excellent communication skills, with the ability to clearly articulate complex technical concepts and research findings to diverse audiences

We define the industry instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of a challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment.

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• Build and launch enterprise class products throughout the entire product lifecycle - collect customers’ feedback and hear their need, prioritize features and trade offs, write the product requirements and work closely with engineering group to deliver the roadmap

• Lead core pillars within Cortex cloud DSPM and grow them to new horizons by bringing innovative and disruptive approaches, and ensure that they can be effectively launched

• Working effectively with all areas of the organization in a global company, from engineering to sales

• Understand cloud and data security practitioners, often being able to directly relate to and understand use cases

• Work closely with our customer success, marketing and sales teams on supporting existing customers, identifying common user problems and taking the solutions you define to market

Your Experience

• 5+ years in product management with at least 3+ working on SaaS products

• 3+ years working in cloud security

• Proven technical background in a development or research role

• Inherent passion for cybersecurity and solving problems

• Great communication skills and a passion for telling stories to different audiences

• Drive to design new, innovative and disruptive solutions

• Strong desire to take ownership of new technology products and their full life cycle

• Team player with a can do approach

• BS/MS in Computer Science, Other engineering/technical degree or equivalent military experience required

All your information will be kept confidential according to EEO guidelines.

Key Responsibilities

In this role, you’ll have the opportunity to:

• Drive Strategic Vision - Define and execute the long-term strategy for our identity solution, ensuring alignment with overall business goals and industry best practices
• Lead Innovation - Spearhead groundbreaking projects and research in identity, developing advanced technologies and methodologies that set new industry standards
• Architect Solutions - Design and oversee the implementation of robust, scalable, and secure architectures, solving the most complex challenges with innovative solutions
• Mentor and Develop - Provide thought leadership and mentorship to engineering teams, fostering a culture of continuous learning, professional growth, and technical excellence
• Collaborate Across Teams - Work closely with cross-functional teams, including product management, platform, and other stakeholders, to ensure cohesive and effective development strategies
• Advance Your Career - Engage in high-impact initiatives and leadership opportunities, with access to advanced professional development resources and strategic projects that shape the future of identity security

Your Experience

• 8+ years of hands-on experience in Software Engineering
• Experience in Go/Python/Java or similar languages
• Experience in building and managing distributed cloud-based SaaS applications
• Proficiency in at least one cloud provider (AWS, GCP, Azure)
• Experienced with a variety of database technologies (Mysql / Cassandra / Google BigQuery / Amazon Redshift / ElasticSearch)
• Experienced with monitoring, profiling and enhancing system performance
• You are proactive and a system thinker who always strives to push the product forward - Ability to lead POCs and incorporate new technologies
• Mentor team members, provide guidance and support in both design and development phases
• Excellent written and verbal communication skills
• Advantage - Experience with IDP providers (OKTA, Entra, AD, etc)

Preferred Qualifications

• B.Sc. or M.Sc. in Computer Science, Software and Computer Engineering, or equivalent military experience

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

We are looking for a Principal Linux Security Researcher for our Tel Aviv R&D center, to work on cortex-xdr for linux, which provides runtime protection to servers and cloud workloads.
You will be part of a team that is in charge of researching, developing and improving Anti-Exploit capabilities, Anti-malware capabilities. The position includes researching OS internals, exploits, malware, delving into cloud security, and finding ways to mitigate new attack vectors.

Your Impact

• Research, develop, and improve anti-exploitation mitigations and anti-malware modules - ranging from low-level mitigations up to tackling application-level security vulnerabilities
• Work on the design, evaluation, and implementation of new security technologies
• Research Linux OS internals, kernel, application codebases, vulnerabilities and exploits (both for internal usage and for PR)
• Analyze customer issues to help with detecting and preventing malicious activities in our customers networks

Your Experience

• In-depth knowledge of some operating system internals is a must - Knowledge of Linux is an advantage
• Development experience in C/C++/Rust is a must, 2 years at least
• Experience in reverse engineering - both static and dynamic, is a must (x86/64 architectures), 3 years at least
• Development knowledge in some scripting languages is a must - Experience with Python is an advantage
• Exploitation experience is an advantage (either application-level security or memory corruption)
• Experience with Kubernetes and cloud workloads is an advantage
• Ability to work independently and as a part of a team
• Strong attention to detail
• Ability to take initiative

We define the industry instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of a challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment.

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

You will work firsthand with our valued customers to address their complex post-sales concerns where analysis of situations or data requires an in-depth evaluation of many factors. You’re a critical thinker in understanding the methods, techniques, and evaluation criteria for obtaining results. You’ll enjoy networking with key contacts outside your own area of expertise, with a strong capability of detailing difficult technical issues to both non-technical and technical professionals.

You will regularly participate in technical discussions with multi-functional teams, creating an environment of transparency that ultimately leads to better products, better working environments, and better cybersecurity. Your quick thinking and support to our clients provides the fast assistance they need to keep their environments secure – which means you’ll need to move quickly, thoughtfully, and provide technical assistance as needed (often, in high pressure situations).

Your Impact

• Provide customers on-site support, deployment and implementation, knowledge transfer, configurations, troubleshooting, and standard methodologies to customers via phone, e-mail, and web
• Use fault isolation and root cause analysis skills to diagnose and tackle complicated technical issues
• Provide post sales technical support, while handling support cases to ensure issues are recorded, tracked, resolved, and follow-ups finished in a timely manner
• Work to reproduce customer issues and qualify critical issues
• Publish Technical Support Bulletins and other user documentation in the Knowledge Base
• Build a positive customer experience by working closely with Development, Sales, Quality Assurance, and Marketing
• Responsible for reviewing user documentation for training materials, technical marketing collateral, manuals, problem solving guides, etc
• Provide on-call support 24x7 on an as-needed basis, including travel to customer sites for critical situations to expedite resolution
• Work shoulder to shoulder with the Sales and Sales Engineering Teams

Your Experience

• 5+ years of hands-on technical knowledge in support, troubleshooting, and customer-facing environments
• Experience as a Professional Services engineer, handling deployment, implementation, and integration projects for customers
• Solid understanding of cloud infrastructure, security processes, and core concepts across AWS, Azure, and GCP
• Strong knowledge of operating systems, virtual machines, and containers
• Solid understanding of networking fundamentals: TCP/IP, DNS, IP routing, and security protocols/procedures (HTTP/HTTPS, IPSec, NAT)
• Experience with containers and orchestrators (Openshift, Kubernetes, Docker), CI/CD pipelines, Terraform, Ansible, container registries, serverless environments
• Basic to intermediate Linux skills, including filesystem navigation, user and permission management, log analysis, networking commands (curl, wget, tcpdump), system monitoring, and basic shell scripting
• Familiarity with scripting and configuration formats: Python, JSON, YAML, and Bash
• Strong consulting, project management, time management, and organizational skills
• Proven ability to act as a trusted advisor, delivering business value and interacting effectively with technical and non-technical stakeholders
• Full professional fluency (written and verbal) in both English and Hebrew
• Strong problem-solving, critical thinking, teamwork, and relationship-building abilities
• Prior experience with IDF computer units - a plus
• Active Israeli MOD security clearance - a plus

Bonus Skills

• Prior experience in similar vendor Technical Support Centers
• Knowledge of CNAPP, CSPM, cloud security certifications, or cloud compliance tools
• SaaS experience, CI/CD processes, and Infrastructure as Code familiarity

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• Conduct ongoing research to identify and develop new detection techniques for both agent-based and agentless cloud technologies
• Stay ahead of Advanced Threats, attacker methodologies, and Tactics, Techniques, and Procedures (TTPs) to ensure our solutions remain proactive and effective against emerging threats
• Simulate real-world attack scenarios in lab settings, performing in-depth analysis of adversarial behaviors and their implications for cloud security
• Foster a collaborative atmosphere within an experienced, diverse, and supportive research team, driving forward new and innovative ideas in cloud detection and response

Your Experience

• 3+ years of experience in leading security research teams or projects, with a proven track record in managing complex security research initiatives, particularly in cloud environments
• At least 5 years of hands-on experience in cybersecurity research, with extensive knowledge of cloud security principles, attack vectors, and defense strategies
• Strong proficiency in programming (e.g., Python) and experience with cloud platforms (e.g., AWS, Azure, Google Cloud) to develop detection and analysis tools
• Data Analysis - Proficient in SQL or similar query languages for analyzing large datasets and identifying attack patterns specific to cloud services
• Communication - Excellent verbal and written communication skills, with the ability to present complex research findings, processes, and concepts clearly to both technical and non-technical audiences
• A demonstrated history of developing novel security solutions or contributing innovative ideas to the cybersecurity community, especially in the realm of cloud detection and response
• Bonus Points
  • Experience with both agent-based and agentless security technologies, including EDR, XDR, or similar tools for cloud environments
  • Prior work in threat intelligence, APT research, or incident response focused on cloud services

We define the industry instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of a challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment.

All your information will be kept confidential according to EEO guidelines.