Senior Researcher

Herzliya · Full-time

About The Position

XM Cyber is the leader in hybrid-cloud security posture management, using the attacker’s perspective to find and remediate critical attack paths across on-premises and multi-cloud networks.

At XM Cyber, you’ll be faced with complex security challenges and hands-on opportunities, simulating real-world targeted attacks, through the perspective of an advanced threat actor. Our main goal is to help our customers protect their environments through comprehensive real world automated testing. You are expected to quickly grasp new information and investigate new attack vectors. You will be expected to deep dive into new security tactics, techniques and procedures (TTPs) and properly assess their value to the product. You will get to work with some of the best security experts in the industry, motivating you to develop new skills as you progress through your career.

Your Day To Day Will Be:

  • Research and analyze n-day vulnerabilities
  • Research attack vectors on different operating systems
  • Research IaaS and SaaS attack vectors on multiple cloud providers
  • Define mitigation steps for attack techniques
  • Collaborate with the development team to implement identified attacks and techniques



  • 3+ years of software PT/red team/research or adjacent fields experience
  • Strong knowledge of current adversary techniques, tactics, and procedures
  • Knowledge of common protocols such as HTTP, LDAP, KERBEROS, RPC, SSL, SSH etc.
  • Deep and practical Windows, Linux or macOS internals knowledge
  • Experience with developing in C/C++/Python/C#/NodeJS
  • Ability to drive and own projects
  • Autodidact, self-motivated, independent and team player

Great To Have:

  • B.Sc. in Computer Science or equivalent military background
  • Experience with AWS/GCP/Azure/Kubernetes
  • Experience in developing, extending, or modifying exploits, shellcode or exploit tools
  • Source code review for control flow and security flaws
  • Reverse Engineering skills: familiar with debuggers, disassemblers, protocols and file formats
  • OSCP/OSCE/OSWE course graduate

Apply for this position