Security Researcher

Title: Security Researcher

Location: Gurgaon, India

Type of job: Full-time

THIS IS NOT A 100% REMOTE ROLE; CANDIDATE MUST BE WILLING TO WORK FROM OFFICE (GURGAON) WHEN REQUIRED

About The Position
Our client is a cybersecurity technology innovator with a vision to empower organizations across the globe to quickly, efficiently, and cost-effectively ready themselves to address omnipresent cyber risk. Built off years of Israeli cybersecurity experience, we are looking to offer the broadest managed detection and response offering available today.

We are looking for accomplished, passionate, and self-driven Security Researchers with a zeal for revolutionizing the enterprise cybersecurity domain to come and join our client Security Research Group.

This is a team of experts with vast cybersecurity experience focused on research on cloud and enterprise systems to identify emerging threat trends/vectors as well as gaps and opportunities within existing enterprise cybersecurity frameworks.

Joining this team provides a unique opportunity to both benefit from the best of Israeli cybersecurity talent and influence the direction of a new world-class offering in the cybersecurity domain.

What Will you do?

• Research emerging technologies, threats, vulnerabilities in SaaS and enterprise products and create actionable alerting scenarios.
• Investigate logs from security systems to detect intrusions or misconfigurations and create detections based on your findings.
• Write detection rules documentation with actionable recommendations for mitigations.
• Publish your findings internally for customers and externally for blog / marketing needs.
• Work with our customers to investigate anomalies and incidents and create custom detections and next step recommendations.

Responsibilities will include

• On-going research on known and new attack vectors, including identification, with respect to novel attack vectors including their iteration/evolution and related mitigations across the enterprise IT landscape
• Collaborate with Product and Engineering to leverage research findings to evolve product and knowledge base.
• Participate in security escalations support. Create security guidance and documentation.
• Evaluate & recommend new security technologies and help shape the product going forward with your insights and expertise.
• Regular updates to internal teams and customers on research findings.
• Active participation in public cybersecurity media/forums/events.

Requirements

• 5+ years of experience in security research in large, complex or security organizations
• Experience in Managing and securing enterprise IT environments with emphasis on cloud environments (AWS, Azure, GCP).
• Experience in securing cloud and SaaS environments and familiarity with cloud and SaaS attack vectors and misconfigurations.
• Experience in enterprise security, in offensive or defensive approaches, hands on experience with attacking or defending enterprise systems.
• Experience in threat modeling (Attack kill chain, MITRE ATT&CK/D3FEND), identifying security vulnerabilities, common attacker exploit techniques, and related mitigations and remediations.
• Hands-on experience with query languages (Kibana/KQL/Lucene, Splunk), working with JSON files and writing complex queries and rules.
• An innovative mind with keen attention to detail and the ability to set goals and parameters for success, investigate and implement solutions to catch threats according to defined goals.

Preferred Requirements

• Writing abilities (Former publications for blogs / comprehensive report writing)
• Deep knowledge of Cloud security principles
• Experience with Regex or additional query languages
• Knowledge is script writing, programming language (Python, JS etc).