Cloud Security Researcher - UEBA

Summary:

Data has never been more valuable and vulnerable. As cybercriminals become more sophisticated and regulations become stricter, organizations struggle to answer one key question: “Is my data safe?”

At Varonis, we see the world of cybersecurity differently. Instead of chasing threats, we believe that the most practical approach is to protect data from the inside out. We’ve building the industry’s first fully autonomous data security platform to help our customers dramatically reduce risk with minimal human effort.

 

At Varonis, we move fast. We’re an ultra-collaborative company with brilliant people who care deeply about the details. Together, we’re solving interesting and complex puzzles to keep the world’s data safe.

We work in a flexible, hybrid model, so you can choose the home-office balance that works best for you.

We are looking for an elite security researcher to pioneer advanced User and Entity Behavioral Analytics (UEBA) detections for our cloud offering. This role goes beyond detection engineering — you’ll be shaping the future of how organizations identify, understand, and neutralize complex threats in multi‑cloud and hybrid environments.

Responsibilities   

• Design, research, and implement cutting‑edge UEBA detections across cloud, cross‑cloud, and hybrid ecosystems, delivering high‑value security capabilities at scale.
• Leverage Databricks and Pyspark to analyze logs and behavior in Cloud Environments & SaaS Applications, proactively hunt for evolving threats, and engineer detections from concept to deployment.
• Partner closely with other research teams, incident responders, and customer stakeholders to deploy your insights into production defenses, and present research in technical blog posts or conference talks.
• Stay up-to-date with emerging trends, attack vectors, and industry best practices in the cloud and hybrid threat landscapes to enhance detection capabilities.
• Collaborate with product and engineering teams to ensure security is seamlessly integrated into platform architecture from concept to deployment.
  
  

• 5+ years, or equivalent depth, of background in advanced security detection, threat hunting, red teaming, or security research, ideally with a focus on cloud and SaaS environments.
• Deep understanding of enterprise attack surfaces, cloud architectures, and the evolving threat landscape across the entire perimeter and beyond.
• Experience with identifying, reproducing, and analyzing trends or patterns related to security incidents and abnormal behaviors.
• Proven track record in designing and operationalizing advanced threat detections that intelligently minimize false positives through precision analytics, contextual enrichment, and continuous tuning.
• Strong proficiency in using Python and SQL to analyze large data sets, develop detections, and reduce false positives in a cybersecurity context.
• Exceptional interpersonal skills with the ability to communicate effectively and collaborate with diverse teams.
• Self-discipline and strong development skills to effectively transform raw research into repeatable, production‑grade security capabilities.
  
  

• Hands‑on experience with major IaaS providers like AWS, Azure, and GCP, with deep familiarity with their native security controls.
• Knowledge and experience protecting SaaS and IDP platforms.
• Experience with Databricks or similar technologies, and data science toolkits such as Pandas and PySpark for querying and analyzing large datasets.
• Significant experience in proactive threat hunting operations.