We are looking for a Cyber Security Consultant to perform a range of expert level services. The successful candidates should have experience both as a security practitioner and security consultant, profound technological cyber knowledge and passion for cyber security. In addition, they should have a service approach, excellent communication skills and the ability to learn and work with the best in the field.
Main Responsibilities:
Evaluate the state of security, configurations, and security strategy, identifying gaps and opportunities and anticipating needs
Consult in cyber security engagements, including development of a cyber security plans and design implementation, and provide guidance on building security
Recommend cyber security strategies, policies, and procedures
Develop and support clients with internal training to assure deep understanding of fundamental cyber security practices, risks, and recommended mitigation tactics
Create expert-level deliverables, and present results of the assessment to a broad range of clients and design plans to address specific cyber risks and vulnerabilities
Collaborate with the cyber experts team in the development and implementation of cyber assessment tools, services, and best practices.

Security Compliance Consultantץ
Full Time.
Remote.
About the Company:
We were established by a team of security experts with interdisciplinary knowledge and vast experience in the field of information security. We provide numerous services in the field of information security, application security, penetration testing services, cyber services, APTs, threat modeling, secure architectures & design, and multi-regulation enterprise environments. 
Among our core services are the following:
Audit & regulations PCI DSS, ISO 27001, ISO27701, HIPAA, WLA, GDPR, SOC2.
Risk assessments custom risk assessments for sectorial regulators (Banking oversight & Insurance oversight).
Information security services such as black/ grey/ white box penetration testing, risk surveys based on various security frameworks, gap analysis.
Ongoing consulting services.
Training global training and awareness projects & in-depth training for developers/ QA team and other focused groups.
About the Role: 
We are looking for an Information Security Consultant for our evolving Israel company. This is open to Junior Consultants too. A leading consulting and information security company that has been operating for 14 years. Helping companies meet various information security standards, among others: ISO 27K, SOC2, HIPPA, GDPR, etc. We also certified companies to the PCI DSS standard.
 
Main Job Responsibilities:
Work remotely with US-based clientele.
Lead ISO 27001, SOC 2, and PCI DSS projects.
Lead and perform risk assessments and various information security assessments.
 
We maintain a happy and professional working environment where everyone is valued. Becoming one of us is a decision you will not regret making. 
Interested? Email your Resume to our HR & Recruitment Manager.
We look forward to hearing from you!

We are looking for a GRC Analyst.
As a GRC analyst, you will be working very closely to participate in all aspects of cyber security and compliance. The role is a crucial part in our Cyber Security team and the entire security program. We are looking for a team member with experience in compliance frameworks operating with modern systems. You will be involved in all information security processes and activities, with the different teams, make risk mitigation recommendations, and suggest and review solutions. This is a key position in the process of building the security culture in the entire organization.
The ideal candidate is highly motivated, demonstrating a can do' attitude and needs to have a combination of troubleshooting and communication skills, as well as the ability to handle a mix of multiple tasks in parallel.
This role will provide career growth opportunities as you develop/acquire new security skills in the course of your duties.
RESPONSIBILITIES:
Support local, regional, and global initiatives and activities related to governance, risk, and compliance.
Establish, maintain, and publish up-to-date security and compliance policies, standards, and guidelines, and oversee training and dissemination of policies and procedures.
Identify and track timely closure of control gaps and risk mitigation plans.
Participate in ISO 27001, SOC, and other compliance assessment, evidence collection, and reporting.
Develop and implement various Governance, Risk, and Compliance tools.
Utilize a risk-based approach for vendor management, including assessing and treating the risks.
Assist with Incident Response and Business Continuity to include running table-top exercises.
Other related duties such as Incident response process, Vulnerabilities management and more.

inventing a new way of managing IT end-to-end for IT professionals and teams worldwide.

By creating an AI-powered IT platform, all-in-one Remote Monitoring and Management (RMM) Helpdesk, Ticketing, and Reporting solution helps more than 23,000 IT pros achieve 10X operational efficiency, cut down time-to-resolution, and deliver better outcomes faster. Located in the heart of Tel Aviv, our team of passionate, like-minded individuals is driven by a shared mission to unleash everyone's potential and constantly innovate. We create an open, transparent, and supportive environment that gives our teams the autonomy, resources, and freedom to thrive.
We are looking for an experienced Application Security Engineer to join our team! As an Application Security Engineer, you will work with our security and R&D teams and collaborate with other IT professionals to ensure that our application, the product, the services, and the data are protected.
This is a full-time and onsite (hybrid-remote) role at our Tel Aviv office.

Responsibilities
Providing technical leadership, guidance, and direction to the DevOps, Development, and Product teams on secure code programming based on industry best practices.
Developing and maintaining specific documentation of application security controls, policies, and procedures and ensuring their implementation.
Designing technical solutions to address security weaknesses.
Analyzing system services and spotting issues in code, infrastructure, and applications.
Develop and implement continuous service improvements to the Application Security Management program.
Deliver next-generation application security controls, solve technical barriers with tools and processes, and align with application teams to ensure strong adoption.
Perform threat modeling, static and/or dynamic analysis, application security validation (negative and positive), source code review, and app PenTests to provide development guidance based on security best practices.
Update the library of information security documentation with application standards, work instructions, and training materials.
Develop communication plans for the enterprise security application function by partnering with business and enterprise architects.
Conducting pilot or POC with selected vendors for threat modeling, architecture reviews, code scanning, and penetration testing.
Collaborating with cross-functional teams and getting their cooperation.

We are looking for a highly skilled Product Security Architect to join our team at Tipalti. This role is pivotal in ensuring the security of our applications from inception to production and beyond. The ideal candidate will have a solid development background that has evolved into security expertise, enabling them to work closely with development teams to implement security best practices and develop protection mechanisms.
In this role, you will be responsible for:

Collaborate closely with all Tipalti development teams to build and govern security from day one to production, following best practices.
Perform application security assessments, including architecture design reviews and threat modeling.
Provide secure software guidance and act as a business enabler to cross-functional teams, including product, engineering, etc.
Design, build, and implement best-in-class application security solutions.
Lead and promote security audits, vulnerability assessments and code reviews.
Develop software security guidance, including training material, best practices, secure coding checklists, and reusable code.
Validate ongoing compliance with policies and procedures in support of regulations.
Raise the overall security awareness for the Secure-SDLC and define training roadmaps based on needs.
Work with different entities in the company to ensure S-SDLC compliance with company rules and industry standards.
Review & manage security issues identified in products, analyze severity and risk, and provide recommendations for remediation.
Establish, manage, and lead a bug bounty program

We are looking for a talented and motivated IT & Security Specialist to join our growing team. You will be responsible for managing the day-to-day IT operations and ensuring the security of our company's data and systems.
This is a fast-paced environment where you will wear many hats, but you will never be bored!
Responsibilities:
Manage all aspects of our IT infrastructure, including laptops, servers, and networking.
Troubleshoot and resolve IT-related issues for employees.
Manage the IT MDM platform, and maintain 3rd party applications up to date.
Implement and maintain security policies and procedures.
Monitor security threats and vulnerabilities.
Coordinate regular security assessments and testing
Stay up-to-date on the latest IT security threats and best practices.
Maintain accurate IT documentation.
Utilize top-notch technologies for managing endpoint devices, leveraging the latest advancements in endpoint security and lifecycle management (ETLC).

We believe that every person has the right to participate fully in the global economy. Our mission is to democratize financial services to ensure that everyone, regardless of background or economic standing, has access to affordable, convenient, and secure products and services to take control of their financial lives.
Job Description Summary:
Information Security Engineer focused on cloud infrastructure and application security. There will be a heavy focus on large scale and highly dynamic GCP and AWS cloud environments with global presence.
Job Description:
Your day to day:
This role will be focused primarily on the security in AWS and GCP cloud environments in our company. This will include the security aspects of infrastructure, build pipelines, application design, cloud native service and tool design patterns, stakeholder communications, consulting and advisement of peer security teams, and solution review and approval.
What Do You Need To Bring
* A minimal of 5 years of experience working in a cybersecurity related position.
* Experience working with cloud-native security tools, AWS and GCP Infrastructure design, operation, and deployment, container and host security.
* Excellent communication and documentation skills.
* Knowledge of Kubernetes, terraform, source code management, infrastructure and application security tools such as CSPM, SAST, DAST, API security, DDOS and WAF.
* Development experience is a plus.
 
Our Benefits:
Were committed to building an equitable and inclusive global economy. And we cant do this without our most important assetyou. Thats why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.
 
Who We Are:
We have remained at the forefront of the digital payment revolution for more than 20 years. By leveraging technology to make financial services and commerce more convenient, affordable, and secure, the company`s platform is empowering more than 400 million consumers and merchants in more than 200 markets to join and thrive in the global economy. For more information, visit our website.
We provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, we will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us.

We are looking for a Senior Security Researcher to join our team Cloud Security.
In this role, you will take part in protecting our customers' cloud environments from a wide range of cyber threats.
Your contributions will be directly impactful, not only ensuring our customers' success but also making a significant difference in the evolving landscape of cloud security.
Your Opportunity:
Research cloud threats and collaborate closely with the engineering team to transform research insights into innovative product features
Develop effective detection rules and enhance our product's capabilities for better threat detection
Launch and manage incident response operations to investigate attacks on cloud environments
Investigate malware specifically targeting cloud workloads, understanding their mechanisms and impacts, and produce high-quality reports
Present your unique findings and share knowledge at cyber and cloud conferences

we are on the lookout for a Director Of Infrastructure, one who lives and breathes DevOps & security principles and methodologies, with a developer and business objective mindset.
Role:
Lead, support, and mentor a group of four teams: DevOps, DevSecOps, SRE, and Infra. Currently overseeing 15 engineers, directly managing the team leads of the DevOps and DevSecOps teams, and providing both technical guidance and management leadership
Build a new Site Reliability Engineering (SRE) team that will be in charge of the health of the production environment. This team will be a central part of our production operations strategy, working hand in hand with our Operations team, DevOps, and R&D.
Build an R&D infrastructure team to develop and support applicative infrastructure components such as databases, web servers, logging mechanisms, and any other low-level infrastructure required by the R&D team to achieve their objectives.
Plan the team's roadmap to meet our business objective
Work closely with tech leads to define, design and implement infrastructure needs
Responsible for all DevOps and security areas: infrastructure and cloud environments, CI/CD, observability, SAST, SCA, SSDLC and Cloud Security
Lead a developer/development experience culture make developers more efficient and productive by addressing their pain points, ensuring the reusability of tools among all development teams, maintaining consistent standards for testing and monitoring, and continuously improving developer tools.
Accountable for the architecture and technical leadership of the complete DevOps infrastructure and stack
Implement and maintain security best practices and standards, leading the security issue remediation process as part of the integration with Mastercard
Oversee DevOps tasks, perform code reviews and provide development assistance
Optimize operation efforts and adopt new tools
Design, implement, and continually improve everything the team does to accelerate performance and efficiency
Serve as an escalation point for the team and other stakeholders within the organization
Collaborate closely with stakeholders in designing, implementing, and troubleshooting production services
Recruit new candidates for the team and retain talents

We are looking for an experienced Product Manager to help us build a cloud-native security product with state-of-the-art architecture and cutting-edge technology.
The Product Manager will play a key role in the product life cycle with an emphasis on customer requirements, as well as generating and defining the product vision. The Product Manager will work closely with multiple departments including product management, engineering, UX/UI, sales, customer support, finance and marketing to ensure customer requirements are met.
This is an exciting opportunity to join a fast-growing and innovative startup, and be part of a strong team with the chance to lead a product that solves a high-profile problem in the Cloud Security space. You will be joining the companys product team and working directly under the CPO.
Your Opportunity:
Define product strategy and roadmap
Understand the cloud ecosystem, markets, competition and user requirements in depth
Conduct market research, and analyze and gather relevant information about market trends
Perform product demonstrations for customers
Launch new products and features
Develop innovative solutions to hard problems by collaborating, as needed, across regions, product areas, and functions