Security Researcher (Threat Research)

Silverfort is a cyber-security startup that develops a revolutionary identity protection platform. Using patented technology, our product enables strong authentication across entire corporate networks and cloud environments without any modifications to endpoints and servers. In addition, we use advanced behavior analytics to apply adaptive authentication policies and prevent cyber-attacks in real-time.  

Our mission is to provide industry-leading unified identity protection solutions for hybrid and multi-cloud environments. We develop cutting-edge cybersecurity technology that solves urgent customer needs today and is also a game changer for years to come. 

Silverfort has happy customers worldwide, strong market validation (including several industry awards), strategic partnerships with the largest security vendors in the world, and significant funding from leading VCs. 

As a Security Researcher (Threat Research), you’ll explore how attackers abuse authentication mechanisms and identity infrastructures - from Active Directory to modern cloud identity providers - and turn your findings into real product capabilities that protect our customers. You’ll work closely with our R&D, data, and product teams to design detections, enrich our risk models, and help protecting Silverfort's customers from identity-based threats.

Responsibilities

• Research and analyze identity-based attack techniques, and design new detection logic to strengthen Silverfort’s ITDR (Identity Threat Detection and Response) engine
• Perform data analysis on large datasets to uncover behavioral patterns, validate detections, and identify new opportunities for visibility and protection
• Prototype advanced features and technologies, experimenting with emerging standards, API designs, and cloud-native architecture
• Collaborate closely with R&D engineers to translate research deliverables into product features - ensuring findings are implemented effectively
• Continuously monitor and evaluate security content deployed in the field, refining and enhancing Silverfort’s detection capabilities based on real-world insights
• Explore and assess new data sources to broaden Silverfort’s visibility and protection across both cloud and on-prem environments
• Create in-depth technical documentation and research blogs to share findings, methodologies, and best practices with internal teams and the wider security community
• Contribute to the company’s initiative to integrate AI-driven capabilities into the product, with a focus on improving detection precision and automation

Requirements

• 3+ years of experience in security research, security engineering, or incident response /threat hunting, with a focus on identity and cloud environments
• Experience with cloud platforms ( AWS / GCP / Azure) and identity providers (Entra ID, Okta, Google Workspace)
• Knowledge of SaaS authentication protocols (SAML, OIDC, OAuth)
• Experience with Active Directory, on-premises infrastructure, and related protocols (Kerberos, NTLM, SMB, LDAP)
• Programming skills (Python preferred), including the ability to develop research tools and understand production code
• Familiarity with data analysis tools and processes (SQL, Python) and platforms such as Snowflake, Splunk, or Wireshark
• Ability to work cross-functionally with Product and R&D teams