לוח משרות דרושים אבטחת מידע / סייבר

Meta Security is looking for a Security Engineer with experience in threat modeling, TTP identification, and detection engineering. Youll work alongside Software Engineers and Offensive Security Engineers to identify critical assets, assess the top risks, and evaluate potential attacks against Meta systems. You will be working across engineering teams to develop detection and response automation leveraging both industry-standard and custom detection and response platforms. Youll generate detection ideas utilizing some of the worlds largest data sets and build on top of hyper-scale data pipelines.
Security Engineer - Surface Coverage, Detection Engineering Responsibilities
Lead cross-functional projects to improve our capabilities to effectively detect and respond to security incidents
Review security architecture of large-scale custom and commercial systems and independently propose logging, detection and prevention controls
Perform TTP-based Threat Modeling for a wide variety of assets including endpoints, mobile, servers, internal services, public & private cloud environments and networking equipment
Perform analysis against logs from a variety of sources (e.g., individual host logs, network traffic logs) to identify potential threats and detection ideas
Build response workflows and actions that auto-resolve false positives and provide context scaling our ability to investigate
Support security incident response in a cross-functional environment and drive incident resolution
Design and implement attack testing automation to validate detection coverage
Build logging pipelines using our custom datasets and infrastructure

In this role, you will work at the forefront of automated attack disruption, developing capabilities that detect and respond to advanced threats in real time, regardless of the attack workflow or stage in the kill chain. You will examine diverse and complex signals across on-premises, hybrid, and cloud environments, hunting for emerging adversary techniques, uncovering novel patterns of malicious behavior, and transforming research findings into practical, scalable protection. Your work will span from the earliest ideation stages to production-ready, customer-facing capabilities: researching and modeling attack techniques, identifying the necessary telemetry, designing robust detection logic, and ensuring that our automated disruption mechanisms can respond effectively in real-world conditions. This is an opportunity to have a direct impact on the security of organizations worldwide by building autonomous defense systems that stay ahead of evolving threats and protect customers at scale. You will collaborate closely with engineers, threat analysts, and product teams, bringing creativity and rigor to the challenge of stopping some of the most advanced attacks in the industry before they can cause harm. Our team values diversity and strives to hire individuals with varied experiences and perspectives. We understand that no candidate possesses every desired skill and experience, but together, we form a strong, effective team.



Responsibilities
Provide cybersecurity expertise as needed during security escalations and incidents to help protect Microsoft and our customers
Proactively hunt across diverse signal sources including on-premises, hybrid, and cloud environments
Stay current with the latest cyberattack trends and design robust, sophisticated detection logic across the full attacker kill-chain.
Build and implement innovative automated disruption capabilities that autonomously detect and mitigate attacks in real time.
Collaborate with engineering and product teams to design security sensors, validate protection ideas, and measure effectiveness using data-driven approaches.
Contribute to the broader security community by authoring technical blogs, sharing research findings, and presenting at leading security conferences.

We are seeking a security researcher, who enjoys unraveling the mysteries and unique patterns of corporate computing environments and attackers techniques in Microsofts enormous scale of signals and security mechanisms, to join our Israeli research team and help provide our customers with tools to improve their security posture. The job includes performing both low level and high-level research of attackers techniques, security mechanism and controls, and data analysis over various types of telemetries.

Responsibilities include:

Analyze and research security controls, attackers techniques and anomalous patterns
Explore massive amounts of data to come up with new security posture insights, which can then be translated into security recommendations for our customers
Work together with the different engineering teams to develop the code to support the research findings
Collaborate with multiple product teams to design sensors, implement discovery & detection logics and validate their effectiveness using a data-driven approach
Collaborate with data science teams to understand and identify detection gaps, capabilities, assumptions and improvements
Collaborate with other teams across Microsoft and come up with innovative ideas which should be part of future versions of the product

In this role, you will conduct technical research to analyze and break down identity-based attacks observed across the threat landscape including insights from security research, real-world incidents, customer reports, and emerging trends. Your work will directly guide product and engineering teams in building advanced visibility, high-confidence detections, and durable protections that safeguard Microsoft customers at scale.

.



Responsibilities
Analyze and deeply understand the internals of authentication and network protocols, independently reproducing identity-based attacks for investigation, exploration, and research purposes.

Become a subject-matter expert in identity-focused investigation, collection, analysis, and forensics including a deep understanding of emerging trends, evolving attack techniques, and the identity threat landscape.

Collaborate closely with multiple product and engineering teams to design next-generation sensors, implement innovative detection ideas, and validate their effectiveness using a data-driven approach.

Work hand-in-hand with engineering teams to deliver prototypes and production-ready code that support and operationalize research insights.

Provide cybersecurity expertise during security escalations and incidents to help protect Microsoft and our customers.

We are seeking a security researcher, who enjoys unraveling the mysteries and unique patterns of corporate computing environments and attackers techniques in Microsofts enormous scale of signals and security mechanisms, to join our Israeli research team and help provide our customers with tools to improve their security posture. The job includes performing both low level and high-level research of attackers techniques, security mechanism and controls and data analysis over various types of telemetries.

We value diversity and welcome candidates with different experiences and perspectives. If you are a team player who loves creating products for and with customers, come join us and be part of building a better world.



Responsibilities
Analyze and research security controls, attackers techniques and anomalous patterns
Explore massive amounts of data to come up with new security posture insights, which can then be translated into security findings for our customers
Work together with the different engineering teams to develop the code to support the research findings
Collaborate with multiple product teams to design sensors, implement discovery & detection logics and validate their effectiveness using a data-driven approach
Collaborate with other teams across Microsoft and come up with innovative ideas which should be part of future versions of the produc

As a Senior Security Researcher, you will lead proactive vulnerability research, developing novel proofs-of-concept and exploit chains that emulate real-world attackers. You will discover vulnerabilities across AI systems, validate exploitability, and work closely with engineering and product teams to drive remediation. The vulnerabilities you will find will impact hundreds of millions of users!



Responsibilities
Become a founding member of the AIAL group as part of Microsoft Red Team. Help shape the team culture and practices.
Research and discover zero-day vulnerabilities in AI applications, models, and AI service ecosystems. Work closely with Red Team operators and engineering teams to address findings and strengthen resilience of AI-driven systems.
Analyze a wide array of data sources to identify potential security weaknesses and breach points within Microsofts AI infrastructure.

Develop tools and techniques to scale and accelerate adversary emulation and vulnerability discovery.

Advocate for security change across the company through building partnerships and clearly communicating impact of risks.

we are looking for a researcher who can help us stay ahead of the curve. In this role, youll research and build defenses across AI systems, agentic protocols, Identity platforms, and SaaS applications. One day you might analyze a new class of AI prompt injection attacks or Agents abuse, the next youll be hunting through data or creating novel protection mechanisms for them. Youll work closely with product teams to turn research prototypes into real security features. Join our threat protection research team and be part of a team who contributes to Microsofts most advanced and innovative security solutions.

Responsibilities
Responsibilities - - Research and develop detection methods for new and advanced attack techniques - from exploits to implants. Build end-to-end PoCs, from offensive testing to scalable detection, across all our cloud and identity platforms. - Stay up to date on the latest attack trends and build strong detections across the kill chain - covering agentic AI & LLM threats, cloud and identity-based attacks. - Collaborate with multiple product and engineering teams to design the next iteration of security products, implement detection ideas and validate their effectiveness using a data-driven approach. - Collaborate with data science teams to drive ML based protections, understand, and identify detection gaps, capabilities, assumptions, and improvements - Provide cybersecurity expertise as needed during security escalations and incidents to help protect Microsoft and our customers

Proactively acts as the voice of the customer/partner and internal communities leveraging relevant insights from feedback tools and systems. Proactively identifies and/or translates customer/partner problems into industry solutions. Drives self and guides other team members to focus on customer/partner experience through efficient delivery and ensuring a seamless and connected customer experience. Anticipates, identifies, escalates, and mitigates blockers using appropriate tools. Delivers solutions in line with company methodologies, ensuring proven practices and patterns are followed. Proactively identifies and anticipates new cross-solution opportunities for Consumption, Usage & Unified expansion at scale. Operates according to required operational excellence and proven practice standards throughout all sales stages/activities/tools of record. Leverages market insights and demand signals. Leads, mentors, and may assemble virtual teams using knowledge of Microsoft architectures and their context in the competitive landscape. Proactively identifies and anticipates gaps that enable solutions to scale across customers.



Responsibilities
Delivers solutions in line with company methodologies (e.g., product offerings such as value-based deliverables [VBDs], advice, training, technical validation), ensuring proven practices and patterns are followed to prepare complex customers for operational readiness and achievement of their business goals and targets. Leveraging knowledge of change management proven practices and/or involving the change management team, proactively helps the customer deploy for long-term organizational adoption to increase customer satisfaction and drive consumption/usage. Guides complex customers/partners towards a well-architected (e.g., secure, resilient, artificial intelligence [AI]-enabled), and cost- and performance-optimized solution to increase retention and expansion opportunities. Articulates the value of Unified and supports sellers, partnering with account teams to build consumption plans aligned with appropriate services. Provides feedback to Unified Delivery Team on VBDs to refine and further develop content.

Proactively identifies and anticipates new cross-solution opportunities for Consumption, Usage & Unified expansion (especially Enhanced Solutions) at scale based on business value to customer/partner and clear understanding of the Microsoft value proposition for supported platforms to empower cloud success, foster and strengthen security and resiliency, and drive AI innovation. Strategically consults with, actively listens to, and respectfully challenges customers/partners, building trust to then advocate for alternative architectures/solutions/approaches that shape and/or enhance customer requirements. Identifies, anticipates, and evaluates industry trends (e.g., customer industry verticals, information technology [IT] industry), gathers customer/partner insights (e.g., feedback around technical preferences, environments, business needs, competitive landscape), and maps both existing and novel architecture and digital transformation solutions to customer/partner business outcomes. Proactively anticipates and captures opportunities in appropriate systems, processes, and tools, working collaboratively across the organization to execute on opportunities aligned with Microsoft's Customer Engagement Model.