Senior Security Researcher (Prisma Cloud Compute)

Company Description

Our Mission

At Palo Alto Networks® everything starts and ends with our mission:

Being the cybersecurity partner of choice, protecting our digital way of life.

Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.

Our Approach to Work

We lead with flexibility and choice in all of our people programs. We have disrupted the traditional view that all employees have the same needs and wants. We offer personalization and offer our employees the opportunity to choose what works best for them as often as possible - from your wellbeing support to your growth and development, and beyond!

Job Description

Your Career

We are seeking a highly skilled and motivated Security Researcher to join our team, focusing on vulnerability management in the cloud and on open-source research.

You will play an integral role in shaping and enhancing Prisma Cloud’s vulnerability management capabilities, investigating and analyzing accuracy-related customer escalations, and designing and building new security mechanisms and strategies while collaborating with the engineering and product teams. You will handle the challenges of vulnerability management in all areas - how our customers find, prioritize and fix vulnerabilities with Prisma Cloud.

You will conduct thought leadership research such as analyzing software vulnerabilities, exploitation methods and attack vectors, analyzing supply chain risks, and researching security issues in open source projects particularly within cloud environments.

Your Impact

• Conduct research on various open-source technologies and projects to identify known and unknown vulnerabilities, threats, and attack techniques, particularly within cloud environments
• Collaborate with the product and development teams to improve the vulnerability detection and evaluation capabilities of Prisma Cloud products
• Work with all modules of Prisma Cloud (mostly CWP and CAS) to define innovative features for vulnerability management, including detection, prioritization, evaluation, and remediation
• Lead thought-leadership research on supply chain and cloud risks, showcasing your findings through blog publications and international conference presentations
• Analyze customer escalations to improve vulnerability detection accuracy
• Stay up-to-date with the latest developments in the field of cybersecurity, particularly in the areas of vulnerability management and open-source security
• Act as a subject matter expert, providing guidance and support to other team members and stakeholders
  
  

Qualifications

Your Experience

• Minimum of 4+ years of experience in security and vulnerability research/analysis
• In-depth understanding of different attack methods and vulnerabilities, preferably within cloud environments
• Familiarity with the open source ecosystem including programming experience with NPM, Python, Ruby, Go and/or other open source languages
• Experience working with cloud environments and understanding of cloud security best practices
• Strong passion for open-source and cloud security
• Excellent analytical, problem-solving, and communication skills, with strong attention to detail
• Ability to work both independently and collaboratively within a team
• Maturity and the ability to lead
• Excellent command of English, both written and verbal
• Major advantage if you have
• Experience in exploitation and cloud/Kubernetes vulnerability research
• Familiarity with vulnerability scanning tools and techniques
• Experience in contributing to open source projects or the broader security research community
• Previous experience in product development or enhancement, particularly in the area of vulnerability management
  

Additional Information

Our Commitment

We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together.

We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at accommodations@paloaltonetworks.com.

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.

All your information will be kept confidential according to EEO guidelines.

Is role eligible for Immigration Sponsorship?: No. Please note that we will not sponsor applicants for work visas for this position.