If you are an innovator at heart and passionate about redefining how organizations secure modern environments end-to-end, we're looking for you. This is an opportunity to join an exceptional group of researchers working on a startup-level product within the largest security company, helping revolutionize how organizations protect their Kubernetes and hybrid cloud environments.
Key Responsibilities
Contribute to a team of talented security researchers focused on defending organizations as they transition from on-premises data centers to modern cloud and Kubernetes infrastructure.
Drive the execution of research initiatives to uncover novel techniques for detecting and responding to sophisticated attacks targeting hybrid and cloud-native environments.
Define and prioritize detection use cases, relevant datasets, and innovative analytic approaches combining runtime visibility and posture management across diverse platforms.
Stay up to date with the latest attacker methodologies, APT campaigns, and TTPs to ensure our detection capabilities stay ahead of evolving threats in both legacy and cloud contexts.
Simulate real-world attacks and perform deep behavioral analysis to inform and validate detection content.
Collaborate across engineering, product management, and go-to-market teams to deliver impactful security solutions.
Share insights with the security community through blogs, conference talks, and publications.
Key Responsibilities
Contribute to a team of talented security researchers focused on defending organizations as they transition from on-premises data centers to modern cloud and Kubernetes infrastructure.
Drive the execution of research initiatives to uncover novel techniques for detecting and responding to sophisticated attacks targeting hybrid and cloud-native environments.
Define and prioritize detection use cases, relevant datasets, and innovative analytic approaches combining runtime visibility and posture management across diverse platforms.
Stay up to date with the latest attacker methodologies, APT campaigns, and TTPs to ensure our detection capabilities stay ahead of evolving threats in both legacy and cloud contexts.
Simulate real-world attacks and perform deep behavioral analysis to inform and validate detection content.
Collaborate across engineering, product management, and go-to-market teams to deliver impactful security solutions.
Share insights with the security community through blogs, conference talks, and publications.
Requirements:
Required Qualifications
5+ years in security research with a proven track record of driving impactful projects.
Deep expertise in cloud-native security, with strong focus on Kubernetes, containers or major cloud providers (AWS, Azure, GCP, OCI) or Linux internal.
Experience developing or working with detection and response products, such as XDR, EDR, or cloud workload protection platforms.
Excellent communication skills, with the ability to articulate complex research findings and drive alignment across diverse teams.
Proficient in hands-on coding and scripting (e.g., Python).
Preferred Qualifications
Experience working with large-scale data pipelines and analytics (e.g., GCP BigQuery, Dataflow).
Familiarity with Kubernetes threat modeling frameworks (e.g., MITRE ATT&CK for Containers).
Required Qualifications
5+ years in security research with a proven track record of driving impactful projects.
Deep expertise in cloud-native security, with strong focus on Kubernetes, containers or major cloud providers (AWS, Azure, GCP, OCI) or Linux internal.
Experience developing or working with detection and response products, such as XDR, EDR, or cloud workload protection platforms.
Excellent communication skills, with the ability to articulate complex research findings and drive alignment across diverse teams.
Proficient in hands-on coding and scripting (e.g., Python).
Preferred Qualifications
Experience working with large-scale data pipelines and analytics (e.g., GCP BigQuery, Dataflow).
Familiarity with Kubernetes threat modeling frameworks (e.g., MITRE ATT&CK for Containers).
This position is open to all candidates.
