דרושים Security Analyst

Job Summary

You’ll not only support investigations and incident triage, but also help onboard customers, answer technical questions about reports, alerts, and the service, and manage ongoing communications to ensure clarity, alignment, and satisfaction.

Key Responsibilities

• Be part of a customer-focused sub-function of the Unit 42 MDR team, dedicated to proactive communication and technical guidance
• Support onboarding activities for new customers
• Monitor incoming communication from customers (e.g., via email, comments), triage and route issues as needed, and answer technical questions around reports, alerts, and recommendations
• Collaborate with MDR analysts to ensure the customer’s technical questions about incidents or threats are fully addressed
• Own the customer communication lifecycle during ongoing incidents — ensure timely updates, clarity, and alignment on next steps
• Help drive consistency and quality in how incidents and threat intelligence are communicated externally
• Escalate and advocate for customer issues internally across Product, Engineering, and the broader Unit 42 team

Preferred Qualifications

• 1+ years of experience in a customer-facing cybersecurity role such as professional services, customer success, or customer support — must, Tier 1/2 SOC analyst experience
• Hands-on experience with tools such as EDR, SIEM, SOAR, or XDR
• Strong customer communication skills — verbal and written — with the ability to explain complex technical details clearly
• Experience reviewing, drafting, or presenting incident reports and security findings
• Familiarity with Cortex XDR or Cortex XSOAR
• Experience onboarding new security services or clients
  

This role includes participation in our weekend coverage rotation supporting global MDR operations:

• 3 weekends per month Tuesday - Saturday schedule)

• 1 week per month with a Monday– Friday schedule

• May require evening and night shifts aligned to operational needs

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

You will create statistics-based classification algorithms detecting everything from new malware through process behavior and attackers operating in enterprise-scale networks using data from multiple Windows endpoints; from analyzing attack patterns, finding statistical anomalies, and validating that you detect real attacks and APTs on real customer data.

Your Impact

• Research new methods to detect various attack techniques by utilizing enormous amounts and varied types of data
• Use and develop statistical algorithms and techniques to create and improve our analytics detection capabilities
• Take an active role in our collection modules by improving the ones that are already available and investigating new collection modules that will improve the quality of our detections
• Simulate attacks in the lab and conduct a deep analysis of the behavior
• Be part of a diverse research group, improving our research processes and leading us to be a better team, creating a better product
• Stay up to date with APTs, attacker methodologies, and TTPs

Your Experience

• In-depth knowledge of the inner-workings of operating systems (Especially Windows)
• Intimate knowledge and understanding of attack methods and techniques over endpoints and enterprise
• Vast experience and interest in malware research or development
• Python software development experience
• Comfortable conducting research and gathering insights by querying large databases
• Ability to drive and own projects
• Independent and team player, critical thinker

Advantages:

• Experience in machine learning or data analysis
• Reverse engineering knowledge and experience
• Advanced knowledge of Microsoft AD infrastructure
• Exploitation knowledge and experience

We define the industry instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of a challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment.

All your information will be kept confidential according to EEO guidelines.

Your Career

You will be part of a strong security research and data science team who solve highly complex security challenges using disruptive technologies, ML algorithms and a lot of data.

As part of that, you will take part in the design and development of new groundbreaking AI security solutions which make a direct impact on many customers.

Your Impact

• Transform Data into Defense: Take the lead in creating high-fidelity security incidents from a massive stream of alerts generated by our industry-leading advanced security solutions
• Innovate with AI : Actively participate in cutting-edge research projects focused on creating novel prevention content at scale using state-of-the-art AI and Large Language Models (LLMs)
• Drive Security Efficacy: Analyze complex threat data to identify attacker patterns, develop new prevention methodologies, and enhance automated flows to rapidly protect Cortex platform customers
• Collaborate and Lead: Work side-by-side with top-tier data scientists, engineers, and product managers to translate research ideas into tangible, customer-facing security protections

Your Experience

• 8+ years of hands-on experience in the cybersecurity research field
• Proven expertise in detecting threats by analyzing and correlating security data across hybrid environments, from on-premise tools (EDR, SIEM, NDR) to major cloud platforms (AWS, GCP, Azure)
• Proven ability to investigate and contextualize disparate security alerts to construct a full attack narrative
• Strong proficiency in a scripting language, with Python being highly preferred for data analysis and prototyping
• Hands-on experience with query languages and databases (e.g., SQL , KQL)
• A scientific, data-driven approach to problem-solving, with experience running research projects from ideation to production
• Excellent communication skills, with the ability to clearly articulate complex technical concepts and research findings to diverse audiences

We define the industry instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of a challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment.

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• Build and launch enterprise class products throughout the entire product lifecycle - collect customers’ feedback and hear their need, prioritize features and trade offs, write the product requirements and work closely with engineering group to deliver the roadmap

• Lead core pillars within Cortex cloud DSPM and grow them to new horizons by bringing innovative and disruptive approaches, and ensure that they can be effectively launched

• Working effectively with all areas of the organization in a global company, from engineering to sales

• Understand cloud and data security practitioners, often being able to directly relate to and understand use cases

• Work closely with our customer success, marketing and sales teams on supporting existing customers, identifying common user problems and taking the solutions you define to market

Your Experience

• 5+ years in product management with at least 3+ working on SaaS products

• 3+ years working in cloud security

• Proven technical background in a development or research role

• Inherent passion for cybersecurity and solving problems

• Great communication skills and a passion for telling stories to different audiences

• Drive to design new, innovative and disruptive solutions

• Strong desire to take ownership of new technology products and their full life cycle

• Team player with a can do approach

• BS/MS in Computer Science, Other engineering/technical degree or equivalent military experience required

All your information will be kept confidential according to EEO guidelines.

Key Responsibilities

In this role, you’ll have the opportunity to:

• Drive Strategic Vision - Define and execute the long-term strategy for our identity solution, ensuring alignment with overall business goals and industry best practices
• Lead Innovation - Spearhead groundbreaking projects and research in identity, developing advanced technologies and methodologies that set new industry standards
• Architect Solutions - Design and oversee the implementation of robust, scalable, and secure architectures, solving the most complex challenges with innovative solutions
• Mentor and Develop - Provide thought leadership and mentorship to engineering teams, fostering a culture of continuous learning, professional growth, and technical excellence
• Collaborate Across Teams - Work closely with cross-functional teams, including product management, platform, and other stakeholders, to ensure cohesive and effective development strategies
• Advance Your Career - Engage in high-impact initiatives and leadership opportunities, with access to advanced professional development resources and strategic projects that shape the future of identity security

Your Experience

• 8+ years of hands-on experience in Software Engineering
• Experience in Go/Python/Java or similar languages
• Experience in building and managing distributed cloud-based SaaS applications
• Proficiency in at least one cloud provider (AWS, GCP, Azure)
• Experienced with a variety of database technologies (Mysql / Cassandra / Google BigQuery / Amazon Redshift / ElasticSearch)
• Experienced with monitoring, profiling and enhancing system performance
• You are proactive and a system thinker who always strives to push the product forward - Ability to lead POCs and incorporate new technologies
• Mentor team members, provide guidance and support in both design and development phases
• Excellent written and verbal communication skills
• Advantage - Experience with IDP providers (OKTA, Entra, AD, etc)

Preferred Qualifications

• B.Sc. or M.Sc. in Computer Science, Software and Computer Engineering, or equivalent military experience

All your information will be kept confidential according to EEO guidelines.