Senior Security Researcher

Confiers.ai is a fast-growing cybersecurity startup transforming security operations centers (SOCs) with CognitiveSOC™, our AI SOC platform, helping enterprises and MSSPs to achieve SOC excellence. With teams in Tel Aviv and Dallas, we are building a global company that combines deep technical innovation with a sharp business focus.  

We are looking for an experienced Security Researcher to lead research into cloud-native and SaaS threats and design AI-powered capabilities to automatically analyze, enrich, and resolve alerts from Cloud XDR and SIEM platforms. Instead of building detections, your work will focus on reasoning over incoming alerts, validating them with context, and orchestrating accurate responses that replicate (and exceed) human analyst workflows. You’ll mentor the research team, collaborate closely with data science and engineering, and contribute to publications and patents. 

What You’ll Do 

• Research cloud and SaaS alert scenarios (IAM abuse, account takeover, privilege escalation, data exfiltration, misconfigurations) and design reasoning agentic systems to resolve them. 
• Build enrichment pipelines to pull context from cloud telemetry, identity providers (IdPs), and threat intelligence sources. 
• Apply LLMs and AI pipelines to mimic human investigation process for cloud and identity-related alerts. 
• Partner with engineering to productize research outputs into CognitiveSOC™ capabilities that integrate seamlessly with existing Cloud Security and SIEM platforms. 
• Continuously evaluate solution effectiveness against false positives/negatives and refine reasoning models. 
• Present findings internally and externally; publish whitepapers and contribute to patents on AI-driven SOC automation.

• 5+ years of experiance in Security Research
• Familiarity with Cloud XDR platforms (Microsoft Defender, Sentinel One, CrowdStrike Falcon, Palo Alto Cortex, etc.) 
• Strong understanding of cloud infrastructure (AWS, Azure, GCP) and SaaS security (O365, Google Workspace, Okta, etc.) 
• Experience analyzing alerts from cloud-native logs and APIs (CloudTrail, Azure Activity Logs, GCP Audit Logs, etc.) 
• Understanding of SOC workflows, triage processes, and incident investigation methods 
• Creative problem-solving and analytical skills 
• Excellent written and verbal communication skills 
• Ability to work independently and collaboratively in a research-driven environment 
• Full professional fluency (written and verbal) in both English and Hebrew. 

Nice to have: 

• Knowledge of identity security and IAM (IdPs, SSO, federation, privilege escalation paths)    
• Previous experience with AI/ML applied to security investigations
• Experience in SOC analysis or incident response

Our Commitment 

We are an equal opportunity employer and value diversity at our company. All qualified applicants will receive consideration without regard to race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.