As a Sr. Threat Researcher in Ping Identity's Tel Aviv office, you'll play a crucial role in safeguarding our customers from evolving cyber threats. You'll leverage diverse data sources to identify, analyze, and contextualize threats, specifically focusing on cyber fraud and security. This position requires a proactive and analytical mind, with a passion for understanding adversarial tactics. You'll report to the Director of Threat Research and collaborate closely with product teams to translate your findings into actionable intelligence for our next-generation risk detection and management service.
Responsibilities
Drive the investigation and analysis of cyber threats, with a focus on fraud and security.
Partner with product teams to integrate threat intelligence into our risk detection platform.
Build and maintain a deep understanding of the current threat landscape, including Tactics, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs).
Leverage various data sources (e.g., Proofpoint, threat intelligence feeds, trust groups) to identify emerging threats.
Research attack methodologies and develop detection strategies on a day-to-day basis.
Communicate complex threat findings clearly and concisely to both technical and non-technical audiences.
Minimum Qualifications
B.Sc. in Computer Science or equivalent experience.
4+ years of experience in product-oriented data analytics, feature engineering, data science, or research definition.
Proven record in the cybersecurity or fraud fields, with familiarity with well-known attacks, TTPs, and IOCs.
Deep understanding of web architecture and design concepts (REST API, OSI / 7 Layers model, TLS, microservices, client-side JavaScript, DNS, PKI).
4+ years of experience in web development using OOP languages.
A "hacker's soul" – demonstrated experience in thinking like an adversary, breaking, and building.
Self-driven and capable of operating independently with minimal guidance.
Excellent interpersonal skills and the ability to work effectively in a dynamic group.
Fluent in verbal and written English.
Preferred Qualifications
Familiarity with the identity space and protocols (OAuth2/OIDC, WebAuthn, Kerberos).
Deep understanding of attacks and tactics such as New Account Fraud, Credential Stuffing, Account Take Over, Phishing, and MFA Fatigue.
Experience with web and mobile automation frameworks like Selenium and Playwright.
Knowledge of browser fingerprinting techniques and JavaScript APIs.
Formal education in the cybersecurity field.