Threat Detection Researcher (windows/linux/macos)

Wiz Wiz · Enterprise · New York, NY · Threat & AI Research

Wiz is seeking a Threat Detection Researcher to develop detections and tools for cloud threat protection, investigate attacks on cloud and AI workloads, and hunt for emerging threats. The role involves collaborating with R&D, working with customers on incidents, creating security policies, and delivering external content. Experience with OS internals, cloud environments, and Python for tool development is required, with advantages in malware analysis, threat intelligence, and leveraging AI for research.

What you'd actually do

  1. Develop detections and tools to protect customers from cloud threats
  2. Investigate attacks on cloud environments and malware targeting cloud and AI workloads
  3. Hunt and analyze real-world attacks and emerging cloud and AI threats
  4. Collaborate closely with the R&D team to transform research insights into product features
  5. Work with customers in response to requests related to suspicious activity or potential incidents

Skills

Required

  • OS internals (Windows/Linux/MacOS)
  • networking
  • cloud services
  • Kubernetes
  • cloud environment architecture
  • AWS
  • GCP
  • Azure
  • Python for tool development and automation
  • delivering security detections in customer-facing product(s)
  • learn independently
  • self-driven
  • goal-oriented
  • communication
  • teamwork

Nice to have

  • Go
  • Rust
  • C/C++
  • malware analysis
  • reverse engineering
  • vulnerability research
  • threat intelligence analysis
  • IR/red-team/threat-hunting experience
  • leveraging AI to supercharge research and detection workflows
  • Supply Chain threats
  • CI/CD threats
  • threats targeting AI infrastructure
  • agentic frameworks

What the JD emphasized

  • 6+ years of experience in security or threat research in which you conducted deep research with actionable conclusions and impacts
  • Experience delivering security detections in customer-facing product(s)
  • Deep knowledge of modern threat classes (Supply Chain, CI/CD, or threats targeting AI infrastructure and agentic frameworks)

Other signals

  • Develop detections and tools to protect customers from cloud threats
  • Investigate attacks on cloud environments and malware targeting cloud and AI workloads
  • Hunt and analyze real-world attacks and emerging cloud and AI threats
  • Experience leveraging AI to supercharge research and detection workflows
  • Deep knowledge of modern threat classes (Supply Chain, CI/CD, or threats targeting AI infrastructure and agentic frameworks)