לוח משרות דרושים מהנדס סייבר עבודה היברידית

As a Detection Engineer II for Cloud Security Management (CSM), you will deliver novel detection content to our security products in order to notify customers when risky cloud configuration changes, cloud identity risks and potential attack paths are detected in their cloud environments using a plethora of observability and security data.
You will creatively identify ways to provide coverage of security frameworks and benchmarks to our customers and identify areas of improvement for technology, process and detection for us.
Together with your team, you will research cloud infrastructure vulnerabilities and misconfigurations, as well as attacker techniques against cloud-native technologies and evangelize your findings with the community. Youll apply data-driven insights to generate the highest quality security findings for our customers. Additionally, youll serve as the voice of the customer to continuously provide product feedback through our partner product teams.
What Youll Do:
Continuously learn everything about detecting attack paths, identity risks, misconfigurations, and vulnerabilities in cloud-native environments and pour it back into building a great cloud security product for our customers
Leverage Open Policy Agent (OPA) to build and maintain highly contextualized detections for our Cloud Security Posture Management (CSPM) product using OPAs Rego policy language to protect our customer cloud environments and test those detections end-to-end with Terraform
Model cloud native technical controls across a variety of both governmental and commercial compliance frameworks and security benchmarks to help our customers achieve both compliant and secure cloud configuration state
Partner with product management, engineering, security research and customers to develop roadmaps of content for cloud security and compliance concerns
Identify and drive inefficiencies out of content development processes through the creation of innovative tooling, automation; shepherd platform issues impacting content development and user experience through engineering to completion
Evangelize yourself and the security brand through blog posts, documentation, webinars, and workshops. Present at conferences to highlight the challenges and successes in the field

Required Security Engineer (DFIR)
We work in a flexible, hybrid model, so you can choose the home-office balance that works best for you.
Join our research and development team as a Security Specialist within the Forensics group. In this role, you will play a crucial part in cyber defense, specifically focusing on conducting research on big data and Investigation algorithms. Your primary responsibilities will revolve around research and development of forensic investigations on big data, demanding a high level of proficiency in coding, particularly in Python.
As a key contributor, you will closely collaborate with our global DFIR, and engineering teams, actively participating in product development and reinforcing our global team operations. This role requires substantial experience in digital forensics and incident response, making your expertise essential in delivering advanced research capabilities.
If you are passionate about cybersecurity and have an extensive background in DFIR and development experience, this is the perfect opportunity for you to make an impact and advance your career. Join us on the front lines of cyber defense and help protect our customers from the ever-evolving threat landscape.
Responsibilities:
Conduct research on big data and develop complex Investigation algorithms.
Collaborate closely with our engineering teams to enhance functionality of our security platform to better support your research.
Evaluate the success and accuracy of your research, identifying areas for improvement in the process.
Study and analyze threats discovered by our global DFIR team, contributing to a comprehensive understanding of emerging cyber threats.

Required Cloud Security Developer
Summary :
Data has never been more valuable and vulnerable.
As cybercriminals become more sophisticated and regulations become stricter, organizations struggle to answer one key question: Is my data safe?
We see the world of cybersecurity differently. Instead of chasing threats, we believe that the most practical approach is to protect data from the inside out. Weve building the industrys first fully autonomous data security platform to help our customers dramatically reduce risk with minimal human effort.
We move fast. Were an ultra-collaborative company with brilliant people who care deeply about the details. Together, were solving interesting and complex puzzles to keep the worlds data safe.
We work in a flexible, hybrid model, so you can choose the home-office balance that works best for you.
Responsibilities:
Conduct thorough analysis of cloud products, compliance frameworks, and security rules to identify potential misconfigurations and security risks
Utilize cloud service APIs and frameworks to develop content that proactively monitor and enforce security best practices.
Participate in the entire development lifecycle, focusing on coding and debugging
Manage cutting-edge technologies
Gain a deep understanding of the product, architecture, and use-cases
Communicate effectively with the Security Research group to define the appropriate cases and develop processes.

Required Application Security Engineer
As an Application Security Engineer, you will play a pivotal role in safeguarding our products against security threats and vulnerabilities. You will work closely with our development teams to integrate security best practices into the software development lifecycle, conduct thorough security assessments, and implement robust security measures to protect our applications and data.
Key Responsibilities:
Collaborate with development teams to integrate security controls into the software development lifecycle (SDLC).
Conduct regular security assessments, including code reviews, vulnerability scans, and penetration testing, to identify and remediate security vulnerabilities in applications.
Design and implement security solutions to protect against common security threats, such as SQL injection, cross-site scripting (XSS), and authentication bypass.
Conduct threat modeling and architecture security review.
Develop and maintain secure coding standards and guidelines for application developers.
Monitor and analyze security incidents and provide timely response and resolution.
Stay current with emerging threats, vulnerabilities, and industry best practices in application security.
Participate in security incident response activities and contribute to post-incident reviews and remediation efforts.
Collaborate with cross-functional teams to ensure security requirements are effectively integrated into product development processes.
Deliver secured development training to developers.