Hybrid Cloud Security Researcher – EPSF IL
Herzliya | Security Engineering | Jul 07, 2024 | Job number 1735701

We are searching for exceptional individuals with a profound passion for Security and Cloud technologies. If you are deeply committed to unravelling intricate challenges, harbour a keen fascination for vulnerability research, and strongly desire to contribute to performing cutting-edge security research, we invite you to unite with us in our mission. By doing so, you will play a pivotal role in safeguarding countless users across the global landscape. Your expertise and dedication will be instrumental in fortifying our collective digital defences.

We are on the lookout for a Security Researcher with a strong background in offensive security research in both Kubernetes (K8S) and OS Security.
The candidate will be instrumental in driving the security initiatives for K8S environments while leveraging their knowledge of OS security to provide a comprehensive security posture.


  • Perform vulnerability research on cutting-edge K8S-based platforms and products & the underlaying OS.
  • Develop and implement proof-of-concept exploits to demonstrate potential risks and work closely with engineering teams to address findings.
  • Engage in Threat Modelling, Security Code Audits, Fuzzing and in-depth Hardening efforts to improve the overall security of K8S-based platforms\products and underlaying OS.
  • Collaborate with teams to fortify environments\products against threats, while ensuring alignment with security frameworks.


Required Qualifications:

  • A minimum of 4 years in offensive security research, with a focus on Kubernetes environments and a strong background in OS (Windows\Linux) Security.
  • Proven track record in identifying vulnerabilities and implementing hardening strategies.
  • Deep understanding of OS Security mechanisms.
  • Familiarity and Experience with Kubernetes Security Controls
    • RBAC management, Secrets Storage, Plugins, and Access Controls
    • Container Security Configuration (Security Context, Privileged, etc...)
  • Knowledge and Experience Configuring and Securing Kubernetes Networks
    • Calico, Cilium, Network Access Policies, Istio or Similar
    • Monitoring and Log Collection
  • Understanding of Container Security Boundaries, Image Hardening Practices, and Security Features.
  • Proficient in programming and scripting, with the ability to develop security tools and automations.
  • Bachelor's degree in Computer Science, Information Security, or related fields – An Advantage.
  • Certified Kubernetes Security Specialist (CKS) \ Kubernetes and Cloud Native Security Associate (KCSA) Certifications – An advantage.

Desired Skills:

  • Exceptional communication abilities to effectively discuss complex security issues with a variety of audiences.
  • Team player with a collaborative approach and the capability to work in a dynamic, cross-functional environment.
  • Commitment to continuous learning, staying abreast of the latest developments in cloud security, Kubernetes, and OS security.



Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.


Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.