Senior Security Researcher - ITDR Cortex
صاحب العمل نشط
حالة تأهب وظيفة
سيتم تحديثك بأحدث تنبيهات الوظائف عبر البريد الإلكتروني
شارك هذه الوظيفة
حالة تأهب وظيفة
سيتم تحديثك بأحدث تنبيهات الوظائف عبر البريد الإلكتروني
الوصف الوظيفي
Your Career
We are looking for a Senior Security Researcher to join our Identity Threat Detection and Response team.
In this role you will research the evolving threat landscape and develop advanced detections to protect SAAS Cloud onpremises and hybrid identities. You will focus on identifying and mitigating identityrelated threats across networks endpoints and cloud environments using statistical classification methods to build effective detection models and protecting customers at scale. Additionally you will collaborate with crossfunctional teams validate detection concepts on realworld data and continuously enhance detection capabilities to stay ahead of emerging threats.
Your Impact
- Research innovative methods for detecting targeted attackers operating in endpoints networks cloud and SAAS environments.
- Simulate realworld attacks in lab environments and conduct a deep analysis of the behavior.
- Develop and refine statisticsbased classification algorithms and techniques to create and improve detection models.
- Research specific scenarios to enhance our models capabilities.
- Collaborate within a diverse research group improving our research processes and leading us to be a better team creating a better product.
- Stay informed on the latest APTs attacker methodologies and TTPs to ensure our models stay ahead of emerging threats.
Qualifications :
Your Experience
- At least 5 years experience with Active Directory security and identity related attacks.
- 2 years of experience with Entra ID (formerly Azure AD) OR SAAS application Advantage
- Indepth knowledge of the innerworkings of operating systems
- Indepth Knowledge of network protocols including but not limited to Kerberos RPC SMB HTTP SMTP DNS DHCP etc.
- Indepth knowledge of enterprise infrastructure including Active Directory FW VPN Security products etc.
- Experience with redteaming / pentest of Entra ID Advantage
- At least 2 Years of experience coding Python Advantage
- Strong knowledge of SQL language Advantage
- Experience with machine learning / data analysis / cloud infrastructure / security Advantage
- Ability to drive and own projects from start to finish.
- Independent and a team player a critical thinker.
Additional Information :
The Team
Cyber threats are adapting fast in a new XDR reality changing their shape volumes and sophistication. Every day SecOps put more and more time and humanpower into handling new cybersecurity challenges. The UEBA team is exactly here to address these areas. We leverage the Palo Alto Networks rich cloudpower and visibility to build up datadriven technologies which can save invaluable hours in customers day to day security challenges.
Our Commitment
Were problem solvers that take risks and challenge cybersecuritys status quo. Its simple: we cant accomplish our mission without diverse teams innovating together.
We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need please contact us at .
Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace and all qualified applicants will receive consideration for employment without regard to age ancestry color family or medical care leave gender identity or expression genetic information marital status medical condition national origin physical or mental disability political affiliation protected veteran status race religion sex (including pregnancy) sexual orientation or other legally protected characteristics.
All your information will be kept confidential according to EEO guidelines.
Remote Work :
No
Employment Type :
Fulltime
نوع التوظيف
دوام كامل
