דרושים » אבטחת מידע וסייבר » SOC Shift Manager

As a Cyber Security Engineer in a fast-expanding operation team, you will be responsible for onboarding new global clients to the MXDR services, developing and maintaining detection scenarios and alerts, analysing the client's environment, and providing technical support and guidance to clients. To excel in this role, you will demonstrate strong technical aptitude, dedication to delivering high-quality work, and a cooperative approach to teamwork.



Main Responsibilities:

Lead the onboarding process for all new clients joining the MXDR services, working closely with the clients IT and security teams to ensure smooth implementations.
Develop detection scenarios and alerts for XDR solution (Velocity) to ensure effective threat detection and response.
Oversee Velocity KPIs and measurements set by the client, adjusting, analyzing and maintaining them according to their needs and tracking the impact of the platform on the client's networks, endpoints, applications, and cloud environments.
Continuously improve Velocity monitoring capabilities and keep up-to-date with the latest developments in the cyber threat landscape.
Provide technical support and guidance to clients on Velocity security-related issues, including implementing security best practices and ensuring compliance with industry standards.

We are looking for an exceptional Senior Security Engineer to join our growing team. For the first 6 months you will:
Bolster and develop our defensive security capabilities, identifying advanced threats to us, developing and implementing countermeasures
Responding to incidents and conducting investigations as events happen through analyzing logs and various other sources (ex: AWS Guardduty, SecurityHub, Detective, etc.)
Engineer and automate custom detection and response capabilities to combat malicious and/or unwanted behaviors within the environment
Stay up to date with Tactics, Techniques, and Procedures (TTPs) that may apply to us and define and implement mitigation techniques to improve our overall risk posture
You will be part of a new product security team responsible for building, supporting, enhancing and improving our security frameworks, tools, processes and methodologies used across our SDLC and Runtime environments.
In this role, you will also be responsible to:
Conduct in-depth vulnerability assessments and security auditing of assets
Develop and improve processes for incident detection and the execution of countermeasures
Contribute to the creation and upkeep of run books to handle security incidents
Administer security configuration for threat management platforms for large-scale environments, including security orchestration, automation, and response (SOAR) and security information and event management (SIEM) tools
Contribute and showcase as a SOAR platform used within our Security Operations
Provide guidance on security architecture for threat detection and response systems used as a part of the overall security operations
Consult with our security compliance team during security audits to demonstrate our technical security capabilities
Collaborate with Product Management and Development team members to enhance our Security program
Take part in the Security Operations on-call rotation, including leading all incident response efforts and documentation during your rotation

we are looking for an Incident Response Manager to lead investigations and response activities in support of organizations worldwide.

Cyber threats are constantly growing in volume, velocity and sophistication. When an organization is confronted with an advanced attack, it needs the strongest capabilities on its side. In many cases, an incident response engagement is in fact a battle within a network. The operational art, experience focus and speed of response teams can mean the difference between a minor blow and a devastating impact on performance and reputation of organizations.

The Incident Response Manager is both a subject matter expert for clients and team members, and a leader. Significant part of our investigations is performed onsite at the client location, in collaboration with the clients IT and security team

Required Senior Infrastructure Security Engineer
The Senior Infrastructure Security Engineer Role:
As a Senior Infrastructure Security Engineer, you will be at the forefront of securing our SaaS Cloud Infrastructure. Your role is to research, design, and implement cutting-edge security solutions that align with our policies, standards, and legal requirements.
You will be a vital part of our dynamic team, ensuring security is seamlessly integrated into every phase of the infrastructure's lifecycle.
What makes this role interesting?
Innovative Security Solutions: Spearhead the design and implementation of security solutions, contributing to the evolution of our SaaS Cloud security.
Automation for Scaling: Prioritize automation to enhance security tooling coverage, focusing on detecting, alerting, and remediating vulnerabilities and misconfigurations.
Collaborative Impact: Collaborate with cross-functional teams, including SRE, IT, and Developers, to embed security seamlessly and drive secure practices throughout the organization.
Evangelizing Cloud Security: Develop, advocate, and monitor the adoption of robust cloud security practices, influencing the entire infrastructure positively.
Heres how youll be making an impact:
Architecture Reviews: Conduct security architecture reviews for new and existing product or platform components, ensuring the highest standards of security.
Autonomy and Ownership: Independently triage and resolve security issues, continuously improving incident detection and risk mitigation.
Policy Updates and Audits: Participate in updating security policies, internal and external audits, penetration tests, and vulnerability assessments, contributing to a secure environment.
Subject Matter Expertise: Be a recognized subject matter expert on cloud infrastructure security, sharing knowledge and insights across the organization.

We are looking for an experienced Senior SOC Analyst to join our SOC team.

Responsibilities
Being an active part of our SOC monitoring team.

Part of the daily tasks include investigating security-related cyber incidents while using a wide variety of different security systems.

The investigations are mostly independent and require strong analytics and creative thinking while using a wide variety of intelligence sources alongside common security tools.

Writing investigation reports (tickets), and direct interaction with clients / end-users via email or phone.

Power the Future with us! we are a global leader in high-performance smart energy technology, with over 5000 employees, offices in 34 countries, and millions of products installed in over 133 countries. Our diverse product offering comprises intelligent solar inverters, battery Storage, backup systems, EV charging, and complete home energy management ecosystems. By leveraging world-class engineering capabilities and with a relentless focus on innovation, we strive to create a world where clean, green energy from the sun is the primary source of power for our homes, businesses, and just about everywhere we thrive We are looking for a talented, team-person who will join our Cyber security team and help us tackle the toughest security challenges in protecting the company digital assets in our network. This role is a team member in our security operations team (SecOps). The Cyber security team is composed of strong and experienced security engineers, responsible for design, implement, analyze, and maintain an on-prem/cloud-based security controls in accordance with threat analysis process Job Description:
* Identifying security flaws and vulnerabilities in systems and the network of a company and ensuring the integrity of information security controls.
* Define, operate, and analyze WEB/Infra penetration tests using automated tools
* Will lead the implementation of Cyber security systems in the organization
* Identify and evaluate potential security gaps and threats
* Research new innovative methodologies and technologies to secure remaining gaps.

we are looking for a Cyber Security Consultant to perform a range of expert level services. The successful candidates should have experience both as a security practitioner and security consultant, profound technological cyber knowledge and passion for cyber security. In addition, they should have a service approach, excellent communication skills and the ability to learn and work with the best in the field.

Main Responsibilities:

Evaluate the state of security, configurations, and security strategy, identifying gaps and opportunities and anticipating needs
Consult in cyber security engagements, including development of a cyber security plans and design implementation, and provide guidance on building security
Recommend cyber security strategies, policies, and procedures
Develop and support clients with internal training to assure deep understanding of fundamental cyber security practices, risks, and recommended mitigation tactics
Create expert-level deliverables, and present results of the assessment to a broad range of clients and design plans to address specific cyber risks and vulnerabilities
Collaborate with the cyber experts team in the development and implementation of cyber assessment tools, services, and best practices

We are seeking a highly skilled and experienced SOC Manager to lead the development and operation of our Security Operations Center. This role involves building a new SOC team, adopting and deploying SIEM (Security Information and Event Management) technology, and managing incident response in a hybrid environment (on-prem/cloud).

Responsibilities:

Team Recruitment and Leadership: Recruit and mentor a team of 2-3 SOC analysts. Lead, develop, and evaluate team performance.
Technology Selection and Deployment: Identify and deploy appropriate SIEM technology to enhance our cybersecurity posture.
Alert and Log Management: Map out all necessary alerts and logs for continuous monitoring and threat detection.
Alert Classification and Prioritization: Develop a system to classify and prioritize alerts based on severity and impact.
Hybrid Environment Monitoring: Oversee the monitoring of both on-premises and cloud-based systems.
Automation and Process Improvement: Implement automation strategies to enhance the efficiency and effectiveness of the SOC operations.
Incident Response Management: Lead and manage the incident response process, ensuring swift and effective resolution of security incidents.

we are looking for an Incident Response Team Leader to lead investigations and response activities in support of organizations worldwide.

Cyber threats are constantly growing in volume, velocity and sophistication. When an organization is confronted with an advanced attack, it needs the strongest capabilities on its side. In many cases, an incident response engagement is in fact a battle within a network. The operational art, experience, focus, and speed of response teams can mean the difference between a minor blow, and a devastating impact on an organizations performance and reputation.

The Incident Response Team Leader will be key to the success of Incident Response projects worldwide, and should possess strong leadership skills, be highly technical and thrive in a fast-paced and dynamic environment.

We seek a highly skilled and motivated Solution Architect to join our dynamic team. As a leading provider of cloud security solutions, we enables organizations to protect their critical assets in cloud environments. We are a technical, close-knit team that values collaboration, innovation, and delivering exceptional results to our clients.
As a Solution Architect you will play a crucial role in understanding our client's business needs and translating them into effective and scalable cloud security solutions. You will work closely with our sales, engineering, and Product Management teams to design and deliver solutions that align with clients' goals and industry best practices. Your technical expertise and business acumen will be essential in driving successful implementations and deployments.
Your Opportunity:
Understand customer requirements: Collaborate with customers to understand their security needs, business objectives, and technical environment. Conduct in-depth analysis and assessment of their current infrastructure and security architecture.
Design and propose solutions: Utilize your deep knowledge of cloud security technologies and best practices to design effective and scalable solutions that address customer requirements. Create detailed architecture diagrams, documentation, and presentations to communicate proposed solutions to customers.
Lead implementation and integration: Work closely with cross-functional teams, including sales, engineering, and operations, to ensure the successful implementation and integration of our cloud security solutions. Provide technical guidance and support throughout the implementation process.
Provide technical expertise: Act as a subject matter expert on cloud security, staying up-to-date with the latest industry trends, emerging technologies, and best practices. Offer guidance to customers on security-related matters and assist in troubleshooting complex issues.
Drive customer success: Collaborate with customers to define success criteria, metrics, and KPIs for their security initiatives. Continuously monitor and assess the performance and effectiveness of deployed solutions, providing recommendations for improvement and optimization.
Build relationships: Foster strong relationships with customers, acting as their trusted advisor and advocate. Maintain regular communication to ensure customer satisfaction, gather feedback, and identify opportunities for upselling or cross-selling additional services or products.
Knowledge sharing and enablement: Contribute to the development of internal knowledge base, best practices, and technical documentation. Conduct training sessions and workshops for customers and internal teams to enhance their understanding of our cloud security solutions.