Let your talent run free

With many open positions worldwide, find the right position in the right location for you!

Senior Security Researcher

Ramat-Gan, Israel · Full Time · Full-time

About The Position

We are looking for an exceptional Security Researcher to join Aqua’s world-class security research organization. Looking for an experienced researcher in the cybersecurity world with depth, and excellence in cloud-native security research.

As a Security Researcher, you will work on deep technical research on several areas – working with other researchers, and transforming advanced offensive insights into scalable defensive capabilities.

What You Will Do

  • Research and analyze sophisticated attack techniques targeting Linux-based cloud-native systems, including Kubernetes, containers, and serverless environments.
  • Reverse engineer Linux malware families to extract behavioral patterns, execution flows, and persistence mechanisms.
  • Study real-world threat actor techniques and translate findings into actionable detection, prevention, and hardening strategies.
  • Design and prototype advanced detection logic and observability mechanisms, including kernel- and runtime-level approaches (e.g., eBPF).
  • Influence Aqua’s security strategy by turning research insights into capabilities that protect large-scale production environments.
  • Collaborate closely with engineering and product teams to ensure research outcomes are impactful and scalable.

Requirements

  • 4+ years of experience in security research with a strong focus on Linux-based systems.
  • B.Sc. in Computer Science or equivalent experience from a military, academic, or advanced technical background.
  • Deep, practical understanding of Linux internals (processes, syscalls, memory, networking, filesystems).
  • Strong experience with malware analysis and reverse engineering in Linux environments.
  • Proficiency in C and Python for low-level research, tooling, and prototyping.
  • Proven ability to analyze attacker behavior and design corresponding detection or mitigation strategies.
  • Strong familiarity with cloud-native technologies, including containers, Kubernetes, and container runtimes.
  • Excellent communication skills, with the ability to explain complex technical findings clearly and influence stakeholders.