Threat Hunting & Incident Response Expert

Description

Silverfort is a cyber-security startup that develops a revolutionary identity protection platform. Using patented technology, our product enables strong authentication across entire corporate networks and cloud environments, without any modifications to endpoints and servers. In addition, we use advanced behavior analytics to apply adaptive authentication policies and prevent cyber-attacks in real time.

Our mission is to provide industry-leading unified identity protection solutions for hybrid and multi-cloud environments. We develop cutting-edge cybersecurity technology that solves urgent customer needs today and is also a game changer for years to come.

Silverfort’s team includes exceptional researchers, engineers, and technology experts who successfully tackle some of the most complex challenges in cyber-security. Silverfort has happy customers worldwide, strong market validation (including several industry awards), strategic partnerships with the largest security vendors in the world, and significant funding from leading VCs.

Silverfort, a leader in Identity Security, is expanding its offering into security services and is looking for top-tier Threat Hunters and Incident Response (IR) experts. This is a unique opportunity to conduct high-impact security work, combating sophisticated and emerging identity threats targeting global organizations.

Responsibilities

• Conduct threat hunting based on identity behavioral anomalies detected by Silverfort’s platform
• Lead incident response investigations, focusing on identity threats across authentication and authorization processes in cloud and on-premises environments
• Develop and enhance detection and investigation capabilities over large amounts of data and security logic: Investigate with SQL, Python/Pandas, and data infra based on Snowflake to support automation and analysis
• Design and execute attack simulations to assess security readiness and demonstrate Silverfort’s capabilities
• Research and present identity-based threat intelligence, publishing findings and speaking at industry conferences

Requirements

• 3+ years of experience in Incident Response, including attack analysis, threat containment, and mitigation
• Proofed Expertise in Identity Security, focusing on Active Directory security or Cloud Identity (IdPs, SaaS, IAM) authentication and authorization processes
• Deep knowledge of adversary TTPs, the MITRE ATT&CK framework, and IR methodologies
• Strong proficiency in data analysis for threat detection and investigation
• Excellent communication skills, with fluency in English and Hebrew