Nov 2024 – Jan 2026 · 1 yr 2 mos

• Led a multidisciplinary team spanning security research, security analysis, data science, and applied ML, focused on translating complex security data into scalable, product-ready insights.
• Set strategic research direction, aligning long-term security research with product and customer needs, and collaborated cross-functionally to ensure research outcomes translated effectively into product innovation.
• Drove actionable recommendations across data quality, detection logic, policy design, controls, and response strategies throughout Zscaler’s security portfolio.
• Served as a focal point for cybersecurity expertise, working closely with product, customer success, and field teams to support customer engagements and POCs.
• Helped introduce and mature “smart default” logic across source data mapping, asset merging, and data unification, significantly reducing customer onboarding and operational overhead.
• Key initiatives and projects:
• Cloud asset modeling: Led the standardization and modeling of cloud-native assets and their relationships across AWS, GCP, and Azure, enabling stronger support for CSPM, CAASM, and cloud-focused security use cases.
• AI-driven data normalization: Developed and owned a generative-AI–based approach for normalizing asset types, operating systems, and components, improving accuracy and consistency across diverse data sources and customer environments.
• Cross-platform risk scoring: Designed a unified risk scoring methodology spanning vulnerability management, asset exposure management, and identity protection.
• Cloud and ephemeral asset strategy: Advised on pricing and modeling approaches for cloud resources and ephemeral assets to better reflect real-world risk and usage patterns.

Oct 2021 – May 2024 · 2 yrs 7 mos

• Led a team of skilled researchers focused on critical areas of security research, such as vulnerability management, application security, open-source security, supply chain security, AI security, in-the-wild exploitation activity, and security control effectiveness.
• Defined and implemented the research strategy while overseeing its execution. This involved assessing and improving the research team’s capabilities, as well as recruiting and mentoring new talent to strengthen the team.
• Conducted extensive security research across advanced technologies, from operating systems to cloud-native applications, focusing on identifying and assessing vulnerabilities in various applications, open-source software, and container images.
• Regularly collaborated with multiple teams within the organization, including engineering, product, mmarketing, and other stakeholders to promote innovation, ensure the effective application of research findings, and strengthen Rezilion’s product offering.
• Contributed as a thought leader in the cybersecurity space by providing insights to various media outlets on emerging vulnerabilities, emerging standards and regulations, or significant global cybersecurity events.
• Frequently engaged with customers throughout all stages of the relationship, from supporting the sales enablement teams during training and proof-of-value (POV) processes, to assisting the customer success team by providing business intelligence (BI) reporting and insights for existing customers to foster retention.
• Maintained an active presence within the global security community by participating in cross-industry workgroups, regularly publishing research articles, white papers, and blog posts, and presenting the team's work at top cybersecurity conferences, including Black Hat, DEF CON, and BSidesLV.

May 2020 – Oct 2021 · 1 yr 5 mos

• Established and led the Cloud Engineering function at Rezilion aimed to increase reliability, scalability and ease of deployment of the Rezilion product as well as promote cloud excellence and security best practices in the AWS Cloud.
• Led a team of 5 DevOps/SRE Engineers responsible for (among other things):
• Developing deployment automation using various Infrastructure as Code tools (Terraform, Helm, Pulumi, etc..) in several architectures (k8s based on-premises, k8s based SaaS, Serverless based SaaS)
• Developing production monitoring and alerting capabilities (initially based on the Elastic stack and later on based on third party tools), triaging production issues.
• Performing User Acceptance Tests prior to releases.
• FinOps: Reduced cloud costs by over 50% MoM by removing unused resources, rightsizing and migrating to Spot Instances where applicable.
• Assumed responsibility for all Cloud Governance and Security aspects, completed the AWS Foundational Technical Review (FTR).
• Worked closely with customers and partners, providing support in POCs and deployments as well as highlighting customer specific value.

Sep 2019 – May 2020 · 8 mos

• As part of the office of the CTO, conducted security research around Vulnerability Prioritization, Operating Systems Hardening, Binary Hardening, Container and K8s Security and more.
• Led the runtime visibility aspect of the Rezilion product, which included acquiring raw data as part of the discovery phase, analyzing it, extracting security insights and visualizing the results in an automatic manner.

Nov 2018 – Sep 2019 · 10 mos

• Part of a research team focused mainly on developing models addressing Insider Threat scenarios.
• Handled development of an end to end system for identifying and reporting on sensitive assets in PayPal's Internal environment.
• Created a model identifying abnormal/unnecessary user roles in the IAM system in order to assist enforcing the least privilege principle.
• Devised two methods for mobile emulator identification for fraud detection purposes (patents issued).
• Collaborated closely with Threat Intelligence, Incident Response, Counter Fraud and Global Investigations teams.

Dec 2017 – Nov 2018 · 11 mos

• As part of the Vulnerability Management and Advanced Security Testing team, providing software development capabilities that enable automation of manual/repetitive work thus freeing up valuable resources.
• Main Projects:
• Developed an automation framework that gathers vulnerability feeds from several vulnerability scanners, processes the data and generates insightful reports.
• Developed a tool for performing automatic configuration validation of remote hosts in a distributed manner.

Apr 2016 – Dec 2017 · 1 yr 8 mos

• Developed and maintained automation software projects, using Python and Shell coding.
• Built automation frameworks for functional and performance testing of a network IDS product.
• Performed security research of various network protocols.
• Designed and performed test plans for applications in the Cyber Security field.
• Analyzed and reported application quality issues.
• Collaborated closely with internal development, machine learning and big-data team members.

Jul 2014 – Apr 2016 · 1 yr 9 mos · Israel

• Developed and maintained a python based automation framework for creating and running automatic tests (from scratch).
• Developed automation for Spirent traffic generator using Python and TCL.
• Built custom automation solutions based on demands from the QA team.
• Designed and performed regression tests.
• Knowledge of networks and communication protocols.
• Worked in Linux and Windows environments.

Jul 2003 – Dec 2007 · 4 yrs 5 mos · Israel