ABOUT US

At Netwrix, our mission is to revolutionize data security by placing identity at the core - providing unparalleled visibility and control. Engineered and supported by over 900 highly talented, motivated employees and hundreds of trusted partners in nearly every geography, Netwrix solutions are relied upon daily by security professionals across more than 13,500 organizations in over 100 countries around the world.
Over the past two decades, Netwrix has expanded its market presence through innovation, organic growth, and strategic acquisitions, and are proud to be backed by renowned private equity firms, TA Associates and Centerbridge Partners. Netwrix maintains a global presence, fostering a remote-first work environment while encouraging and facilitating frequent face-to-face interaction with colleagues, customers, and partners.

POSITION OVERVIEW

Netwrix is seeking a seasoned Principal Security Researcher with deep expertise in Active Directory and Entra ID to be part of the security research team. This role’s primary focus is conducting hands-on research to uncover new vulnerabilities in Active Directory and Entra ID, including misconfigurations, privilege escalation paths, and novel attack techniques. You’ll engage in-depth vulnerability research and collaborate with product teams to translate research into practical security capabilities that protect customers worldwide.

REQUIRED QUALIFICATIONS

• Proven track record in security research with a focus on Active Directory, Entra ID, or related identity platforms.
• Demonstrated experience discovering and analyzing vulnerabilities, privilege escalation paths, and misconfigurations in identity systems.
• Experience presenting technical research at major security conferences or through published research papers.
• Ability to work cross-functionally with engineering and product teams to translate research into product improvements.
• Excellent verbal and written communication skills in English.

PREFERRED QUALIFICATIONS

• Proven track record of original security research in Active Directory and/or Entra ID, resulting in discovered vulnerabilities, misconfigurations, or attack techniques.
• Contributions to the security community through published research, open-source tooling, or advisories in the AD/Entra ID space.
• History of presenting original research at major security conferences such as BlackHat, Defcon, or RSA.
• Hands-on experience with hybrid identity security, including AD-to-Entra ID synchronization and attack surface analysis.
• Deep understanding of AD/Entra ID internals, authentication protocols (Kerberos, NTLM, OAuth, OpenID Connect), and directory replication mechanisms.
• Proficiency in at least one programming or scripting language (C#, PowerShell, Python, etc.) for research and tooling development.

• Conduct in-depth, hands-on research to identify new vulnerabilities, misconfigurations, and privilege escalation paths in Active Directory and Entra ID.
• Develop proof-of-concept and testing methodologies to validate research findings.
• Collaborate with engineering and product teams to integrate security improvements into Netwrix products.
• Present research at leading industry conferences such as BlackHat, Defcon, RSA, and others.
• Develop and publish insightful blogs and content, including contributions to the Netwrix Blog and Attack Catalog.
• Oversee and guide contributions to our open-source GitHub repository.