Detection analyst (Endpoint Protection)

Engineering Tel Aviv, Israel


Description

Our Mission

At Palo Alto Networks® everything starts and ends with our mission:

Being the cybersecurity partner of choice, protecting our digital way of life.

We have the vision of a world where each day is safer and more secure than the one before. These aren’t easy goals to accomplish – but we’re not here for easy. We’re here for better. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.

Your Career

The team is responsible for developing and improving our anti malware detection. This includes having top-notch knowledge about the latest malware families in the wild, OS internals and different attack frameworks. Moreover – the team analyzes customer issues to help with detecting and preventing Malicious activities in our customers’ network and help to improve the product.

Our product is advanced endpoint security software - identifying on attacker’s techniques before any malicious activity could successfully run, which enables us to prevent many types of cyber-attacks, including zero-day attacks.

More information about Endpoint Protection product can be found here.

Your Impact

  • Analyze malware and keep an uptodate overview of current threat landscape

  • Create detection and mitigation rules based on IOCs and TTPs that align with industry threats

  • Leverage Palo Alto Networks’ massive collection network to identify coverage gaps and emerging threats

  • Assist in the design, evaluation, and implementation of new security technologies

  • Handle daily tasks, ad-hoc assignments and lead small projects as needed

  • Contributing to operational reports for Key Performance Indicators and weekly and monthly metrics

  • Take part in digitization efforts to automate routine playbooks and always be on the lookout for opportunities for automation

  • Working with other teams and departments around the world

Your Experience

  • Understanding of threat landscape in terms of the tools, tactics, and techniques of attacks

  • Understanding of networking and security fundamentals

  • Experience identifying, investigating, and responding to complex attacks

  • Experience with investigative technologies such as SIEM, packet capture analysis, host forensics, and Endpoint Detection and Response tools

  • Experience writing detection and mitigation rules is a plus

  • Having worked in SOC analysis or an investigation environment is a plus

  • Some degree of Python competency is a plus

  • Excellent written and oral communication skills in English

  • Strong attention to detail

  • Bachelor’s degree in computer related major OR equivalent and relevant experience.

The Team

We are the global cybersecurity leader, known for always challenging the security status quo. Our mission is to protect our way of life in the digital age by preventing successful cyberattacks. This has given us the privilege of safely enabling tens of thousands of organizations and their customers. Our groundbreaking Security Operating Platform emboldens their digital transformation with continuous innovation that seizes the latest breakthroughs in security, automation, and analytics. By delivering a true platform and empowering a growing ecosystem of change-makers like us, we provide highly effective and creative cybersecurity across clouds, networks, and mobile devices.

Our Security Operating Platform is built for automation. It is easy to operate, with capabilities that work together, so customers can prevent successful cyberattacks. They can use analytics to automate routine tasks, so they can focus on what matters. We are known for continuously delivering innovations; and with Application Framework, we extend that to an open ecosystem of developers that benefit from our customers’ existing investment in data, sensors, and enforcement points.

Our Commitment

We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together. To learn more about our dedication to inclusion and innovation, visit our Life at Palo Alto Networks page and our diversitywebsite.

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.

Additionally, we are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or an accommodation due to a disability or special need, please contact us at accommodations@paloaltonetworks.com.