Palo Alto Senior Security Researcher - Autonomous EDR Cortex 

Israel, Tel Aviv District, Tel Aviv-Yafo 

827228729

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

As a core member of the team, you'll go beyond research: you’ll research, design, and develop investigation modules that allow Autopilot to autonomously detect, investigate, and respond to advanced threats at a massive scale.

You’ll analyze everything from new malware behaviors to attacker techniques and process activity in enterprise-scale networks, using data collected from across millions of endpoints. Your work will span identifying attack patterns and uncovering statistical anomalies, as well as validating that the system responds effectively to real-world attacks and APT campaigns using production data.

Your Impact

• Research and implement new autonomous methods for investigating and responding to targeted attackers, using large-scale, diverse security datasets
• Develop and design the graph-based algorithms that power Autopilot’s investigation and decision-making capabilities
• Design generic, reusable heuristics and logic to automate incident response, fusing alerts and raw telemetry into accurate, explainable conclusions
• Leverage graph algorithms, AI techniques, and statistical methods to mimic and scale human security analyst workflows
• Conduct deep, hands-on investigations into modern malware, APTs, and complex attack flows to inform detection and response logic
• Stay up to date with attacker methodologies, tools, and techniques (TTPs), ensuring Autopilot remains effective against evolving threats
• Contribute to a collaborative, fast-paced research team, helping shape our research strategy, improve processes, and continuously enhance the product

Your Experience

• 5+ years of experience in security or threat research, in which you conducted deep research with actionable insights and real-world impact.
• Proven experience as part of an R&D/development team, along with strong proficiency in Python programming
• Intimate knowledge and understanding of attack methods and techniques over endpoints and enterprise networks
• Experience and interest in at least one of the following: incident response, red team, advanced threat hunting, detection research, advanced detection engineering
• Comfortable working with large-scale datasets to extract meaningful insights through advanced querying
• Strong sense of ownership and ability to independently drive projects from concept to execution
• Critical thinker who thrives both independently and in collaborative team environments
• Excellent verbal and written communication skills

Advantage

• In-depth knowledge of the inner workings of operating systems (especially Windows)
• Experience working with graph DB and algorithms
• Experience in statistics, advanced data studies, or machine learning.

We define the industry instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of a challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment.

All your information will be kept confidential according to EEO guidelines.