CrawlJobs Logo

Cloud Security Research Engineer

United Kingdom, London · Job Posted January 05, 2026
Apply Position
Job Link Share

Job Description

Come join the company that is reinventing cloud security and empowering businesses to thrive in the cloud. As the fastest-growing startup ever, Wiz is on a mission to help organizations secure cloud environments that will accelerate their businesses. Trusted by security teams all over the world, we have a proven track record of success and a culture that values world-class talent. Our Wizards from over 20 countries work together to protect the infrastructure of our hundreds of customers, including over 50% of the Fortune 100, who trust us to scan and secure over 230 billion files daily. We’re the leading player in a massive and growing market, but it’s still early enough for you to make a significant impact. At Wiz, you’ll have the freedom to think creatively, dream big, and use your full range of skills to contribute to our record growth. Come join our team and help us create secure cloud environments that allow the best companies to move faster. We’re looking for a Cloud Security Research Engineer to join the Product team and spread the power of Wiz. In this role, you’ll play a key part in safeguarding our customers’ cloud environments from cyber threats. Your contributions will directly impact customer success and advance the field of cloud security.

Job Responsibility

  • Research, innovate, and develop cutting-edge detection mechanisms, advanced algorithms, and automated solutions to precisely identify and categorize technologies within complex cloud environments
  • Conduct deep-dive analysis of CSP APIs (AWS, Azure, GCP, OCI) and log payloads (CloudTrail, Flow Logs) to map out potential attack surfaces
  • Partner with our world-class Research and Backend teams to turn "proof-of-concepts" into scalable, production-ready security scans
  • Continuously update knowledge and skills to stay abreast of the latest technologies and emerging trends in the industry
  • Implement customer requests and industry-standard practices to establish Wiz as a market leader in cloud security

Requirements

  • Advanced proficiency in Python and Go coding
  • Hands-on experience with Docker, Kubernetes, and the underlying OS (Linux/Windows internals, Bash, PowerShell)
  • Solid understanding of the OSI model, networking (VPC peering, Subnets, IAM), and cybersecurity frameworks
  • Practical experience with Infrastructure as Code (Terraform/CloudFormation) and CI/CD pipelines (CircleCI/GitHub Actions)
  • A proven ability to look at a cloud service and ask, "How could this be misconfigured or exploited?"
  • The ability to explain complex technical risks to both engineers and product stakeholders
  • Self-motivated and capable of working both independently and collaboratively within a team
  • Strong communication skills
  • Applicants must have the legal right to work in the country where the position is based, without the need for visa sponsorship

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Cloud Security Research Engineer

8 matching positions

Senior Security Engineer and Principal Security Engineer (Multiple Positions)- Windows Security

The Microsoft Windows Security team is looking for learn-it-all security enginee...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 274800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in security or related field
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in security or related field
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role
  • Microsoft Cloud Background Check
Job Responsibility
Job Responsibility
  • Participate in security reviews to identify and mitigate risk in Microsoft products, including design reviews, code reviews, and fuzzing
  • Be the security contact for teams building new innovative products and technologies in the next version of Windows and devices
  • Identify security vulnerabilities in a wide variety of key OS features such as network protocols, security features, and Microsoft devices
  • Leverage a broad and current understanding of security to devise new protections
  • Interact with the external security community and security researchers
  • Collaborate with product teams to improve security, and articulate the business value of security investments
  • Fulltime
Read More
Arrow Right

Security Research Manager: Identity, SaaS, and Cloud (Cortex Cloud)

We are seeking a seasoned security leader to manage a high-caliber research team...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2+ years of experience in technical leadership or people management, with a proven track record of directing high-impact security research projects
  • Proven experience leading, mentoring, or managing a team of technical security researchers
  • Deep technical expertise in security research related to Identity platforms (e.g., Azure AD, Okta), SaaS applications, and major cloud environments (AWS, Azure, GCP)
  • Demonstrated ability to define and execute a strategic research agenda
Job Responsibility
Job Responsibility
  • Define the research roadmap for Identity, SaaS, and Cloud risks, ensuring the team's outputs align with the evolving threat landscape and company goals
  • Lead and grow a diverse team of security researchers, providing the technical guidance and career development necessary to maintain a world-class research organization
  • Leverage your experience in a product-focused environment to ensure research outcomes directly influence service security strategies and customer-facing solutions
  • Oversee the execution of high-fidelity attack simulations and TTP deconstruction, ensuring the 'how-to' of secure service usage is clearly defined and actionable
  • Partner with Engineering, Product Management, and Threat Intel teams to transform raw research into robust mitigation strategies and resilient service blueprints
  • Represent the team's research internally and externally, positioning the organization as a premier authority on Identity-centric and Cloud security
  • Fulltime
Read More
Arrow Right

Senior Security Engineer and Principal Security Engineer

The Microsoft Windows Security team is looking for a learn-it-all security engin...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in security or related field OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in security or related field OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Microsoft Cloud Background Check upon hire/transfer and every two years thereafter
  • 2+ years identifying vulnerabilities in operating systems and/or native (C/C++) applications
  • 5+ years of experience in a software engineering or security-related engineering
  • Demanstrated experience in security research, especially around vulnerability discovery
  • Experience exploiting bugs and bypassing security mitigations in operating systems
  • Familiarity with Microsoft Windows architecture
Job Responsibility
Job Responsibility
  • Participate in security reviews to identify and mitigate risk in Microsoft products, including design reviews, code reviews, and fuzzing
  • Be the security contact for teams building new innovative products and technologies in the next version of Windows and devices
  • Identify security vulnerabilities in a wide variety of key OS features such as network protocols, security features, and Microsoft devices
  • Leverage a broad and current understanding of security to devise new protections
  • Interact with the external security community and security researchers
  • Collaborate with product teams to improve security, and articulate the business value of security investments
  • Fulltime
Read More
Arrow Right

Security Research Engineer

Security represents one of the most critical priorities for customers operating ...
Location
Location
Costa Rica , San José
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 1+ year(s) experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 2+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection OR equivalent experience
  • Minimum 3 years of hands‑on experience in areas such as Security Operations (SOC Tier 2+), Cybersecurity Investigations, Incident Response, or Threat Hunting
  • Proven ability to analyze alerts and telemetry from EDR/XDR solutions—preferably Microsoft 365 Defender—and conduct investigations involving identity misuse, authentication anomalies, or suspicious access patterns
  • Solid understanding of operating system internals, security mitigations, and common threats across Windows, Linux, and Mac environments
  • Familiarity with MITRE ATT&CK and Cyber Kill Chain frameworks to structure, guide, and communicate investigative findings
  • Advanced English level
Job Responsibility
Job Responsibility
  • Analyze and validate security alerts, anomalies, and behavioral patterns within Microsoft 365 Defender and related telemetry to validate detections and understand attacker intent
  • Apply attacker methodology frameworks (MITRE ATT&CK, Cyber Kill Chain) to contextualize threats, assess progression, and determine potential impact
  • Investigate identity centric threats, credential misuse, lateral movement, cloud-based attacks, and modern techniques commonly used in human operated ransomware, Business Email Compromise (BEC), and stealthy persistence campaigns
  • Correlate large and complex datasets using Kusto Query Language (KQL) and investigate tooling to uncover relationships, patterns and root cause
  • Differentiate benign, misconfigured, suspicious, and malicious activity with confidence, supported by defensible evidence
  • Deliver customer facing investigation summaries that clearly articulate what occurred, why it matters, and the recommended next steps
  • Contribute to continuous improvement efforts by identifying gaps, false positives, attacker trends, and opportunities for tooling or process enhancements
  • Stay informed on SOC and threat landscape trends, including AI driven attack automation, identity-targeted campaigns, cloud compromise techniques, and evolving redteam tradecraft
  • Fulltime
Read More
Arrow Right

Senior Security Research Engineer

Microsoft Defender Experts Team is looking for an experienced professional to jo...
Location
Location
Costa Rica , San José
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field
  • Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • equivalent experience
  • Over 7 years of hands‑on experience in technical cybersecurity roles—including Security Operations, Threat Intelligence, Incident Response, and Penetration Testing/Red Team
  • Advanced English level
  • Advanced Portuguese level
Job Responsibility
Job Responsibility
  • Work directly with senior leaders of our customers’ security organizations as design partners on new cloud detection and response innovations, as well as to ensure excellent customer satisfaction with our products and services
  • Partner with your team of Microsoft Threat Experts providing deep research and analysis of threats impacting our customers
  • Work cross-functionally with engineering, marketing, and business leaders to innovate and deliver new security service offerings at a global scale
  • Investigate, analyze, and learn from security researchers, attackers, and real incidents to develop durable detection solutions/strategies across customer tools
  • Work with other internal and external teams to forge new and improve existing partnerships that help mature the products that support Defender Experts service offerings
  • Provide technical leadership in a challenging and rewarding environment and influence the organization
  • Fulltime
Read More
Arrow Right

Senior Security Research - Security for AI - Microsoft Defender for CloudApps

Come and be part of a dynamic team focused on securing cutting-edge AI and cloud...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • B.Sc. or M.Sc. in Computer Science, Software Engineering, or equivalent practical experience (e.g., service in an elite technology unit in the IDF)
  • 6+ years of experience in the computer security industry, with strong knowledge of adversary tradecraft, security operations, incident response, threat hunting, and emerging threats targeting modern cloud environments
  • 3+ years of experience researching, prototyping, and driving engineering requirements for threat protection systems
  • Code fluency in C, Python, or Rust
  • Deep understanding of the security threat landscape, including the modern attacker kill chain and MITRE ATT&CK, particularly in cloud, application, identity, and AI-related threat scenarios
Job Responsibility
Job Responsibility
  • Research and develop detection methods for new and advanced attack techniques - from exploits to implants. Build end-to-end PoCs, from offensive testing to scalable detection, across all our cloud and identity platforms
  • Stay up to date on the latest attack trends and build strong detections across the kill chain - covering agentic AI & LLM threats, cloud and identity-based attacks
  • Collaborate with multiple product and engineering teams to design the next iteration of security products, implement detection ideas and validate their effectiveness using a data-driven approach
  • Collaborate with data science teams to drive ML based protections, understand, and identify detection gaps, capabilities, assumptions, and improvements
  • Provide cybersecurity expertise as needed during security escalations and incidents to help protect Microsoft and our customers
  • Fulltime
Read More
Arrow Right

Security Engineer, Agent Security

The team’s mission is to accelerate the secure evolution of agentic AI systems a...
Location
Location
United States , San Francisco
Salary
Salary:
293000.00 - 385000.00 USD / Year
openai.com Logo
OpenAI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong software-engineering skills in Python or at least one systems language (Go, Rust, C/C++), plus a track record of shipping and operating secure, high-reliability services
  • Deep expertise in modern isolation techniques – experience with container security, kernel-level hardening, and other isolation methods
  • Hands-on network security experience – implementing identity-based controls, policy enforcement, and secure large-scale telemetry pipelines
  • Clear, concise communication that bridges engineering, research, and leadership audiences
  • comfort influencing roadmaps and driving consensus
  • Bias for action & ownership – you thrive in ambiguity, move quickly without sacrificing rigor, and elevate the security bar company-wide from day one
  • Cloud security depth on at least one major provider (Azure, AWS, GCP), including identity federation, workload IAM, and infrastructure-as-code best practices
Job Responsibility
Job Responsibility
  • Architecting security controls for agentic AI – design, implement, and iterate on identity, network, and runtime-level defenses (e.g., sandboxing, policy enforcement) that integrate directly with the Agent Infrastructure stack
  • Building production-grade security tooling – ship code that hardens safety monitoring pipelines across agent executions at scale
  • Collaborating cross-functionally – work daily with Agent Infrastructure, product, research, safety, and security teams to balance security, performance, and usability
  • Influencing strategy & standards – shape the long-term Agent Security roadmap, publish best practices internally and externally, and help define industry standards for securing autonomous AI
What we offer
What we offer
  • Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts
  • Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)
  • 401(k) retirement plan with employer match
  • Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)
  • Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees
  • 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)
  • Mental health and wellness support
  • Employer-paid basic life and disability coverage
  • Annual learning and development stipend to fuel your professional growth
  • Daily meals in our offices, and meal delivery credits as eligible
  • Fulltime
Read More
Arrow Right

Senior Security Engineer - Application Security

This is an opportunity to join K's critical InfoSec team as a Senior Security En...
Location
Location
United States , New York
Salary
Salary:
150000.00 - 185000.00 USD / Year
khealth.com Logo
K Health
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Information Security, Cloud Security, IT Security, and/or Application Security
  • Strong expertise in cloud technology (AWS, GCP, or Azure), modern programming languages, utilization of generative coding utilities, and the security implications of utilizing AI code development utilities
  • Demonstrated experience researching, establishing, and successfully rolling out enterprise-wide security policies and guidelines
  • Proven experience establishing a cutting-edge security posture, particularly within the regulated healthcare technology field
  • Excellent communication skills, capable of translating complex security risks into clear, actionable advice for technical and non-technical stakeholders
  • Expertise in compliance, security, and regulatory areas such as
  • HIPAA, PHI, AKS, SOC 2, ISO, GDPR, etc.
  • Flexibility in covering a rotation for critical on-call support responsibilities
Job Responsibility
Job Responsibility
  • Lead the development and implementation of robust application security protocols throughout the entire Software Development Lifecycle (SDLC)
  • Design, deploy, and continuously monitor cloud security architecture across our cloud environments, ensuring performance and resilience
  • Manage the security posture of K’s core IT infrastructure, internal networks, and perimeter defenses, mitigating threats before they impact operations
  • Ensure adherence to relevant healthcare regulatory and compliance requirements (e.g., HIPAA, GDPR, etc.) across all product lines and systems
  • Conduct proactive vulnerability assessments, penetration tests, and security reviews to identify and remediate potential weaknesses in our platforms
  • Collaborate with engineering teams to integrate security tools and practices into continuous integration/continuous deployment (CI/CD) pipelines
What we offer
What we offer
  • Hybrid work schedule with weekly lunches and stocked fridges
  • Monthly social committees for company events
  • 18 vacation days, 9 company holidays, 5 sick days, and 2 personal days
  • Stock options for every full-time employee
  • Paid parental leave
  • 401k benefit
  • Commuter Benefits
  • Competitive health, dental, and vision insurance options
  • Fulltime
Read More
Arrow Right