Security Researcher

About The Position

Silverfort is on a mission to bring identity security everywhere – to every human, machine, and AI agent, both on-prem and in the cloud. Our unique technology secures identities & access at runtime, in ways that weren’t possible before. With the broadest identity security platform in the market, trusted by more than 1,000 customers including many Fortune 100 companies, Silverfort is uniquely positioned to lead the fast-growing identity security category.

Joining Silverfort means becoming part of a fast-moving team with a culture of innovation and collaboration, that goes above and beyond to help our customers and each other, on a journey to reshape the future of identity security.

We are looking for a Security Researcher to join us. As a Security Researcher, you'll play a crucial role in building and improving Silverfort’s identity security platform. This role has a direct impact on the product, and the researcher is expected to be able to innovate, conduct thorough research, and come up with new capabilities and modules.

Responsibilities

• Conduct deep-dive research on authentication APIs and protocols (SAML, OIDC, OAuth), mapping their behaviors, identifying security value, and specifying new platform integrations
• Lead and execute innovative security research projects focused on identity systems (Active Directory, cloud IAM), translating high-level requirements into concrete technical modules and capabilities
• Ideate and prototype advanced features and technologies, experimenting with emerging standards, API patterns, and cloud-native approaches to drive Silverfort’s roadmap for next-gen identity protection
• Collaborate closely with the Product team to align strategic directives with technical reality and drive innovation
• Partner with R&D to design the architecture of new modules and capabilities within the platform
• Produce comprehensive technical blogs and documentation to share insights with both internal teams and the broader cybersecurity community

Requirements

• 5+ years of experience in security research, with focus on identity, Active Directory, and Cloud environments
• At least 2 years of experience with cloud platforms (AWS, Azure, GCP) and in IAM
• Knowledge of SaaS authentication protocols (SAML, OIDC, OAuth)
• Experience with Active Directory, on-premises infrastructure, and related protocols (Kerberos, NTLM, SMB, LDAP)
• Programming skills (Python preferred), including ability to develop research tools and understand production code
• Familiarity with data analysis tools and processes (SQL, Python) and platforms such as Snowflake, Splunk, or Wireshark
• Experience defending identities and securing cloud infrastructure
• Ability to work cross-functionally with Product and R&D teams
• Strong communication skills in both written and spoken English

Advantages:

• Familiarity with AI systems, AI security, and model behavior
• Experience with web/app security, red teaming, or adversary simulation
• Prior experience in customer-facing roles (e.g., consulting, solution engineering)