לוח משרות דרושים SOC/SIEM

We are looking for dedicated Junior SecOps professionals to join our team.
This role involves monitoring, managing, and operating managed security services, as well as investigating security incidents (EDR, FW, NAC, WAF).
Location: Raanana.
Shift-Based: Includes weekends and holidays.
Responsibilities:
* Continuously track security alerts and logs from EDR, FW, NAC, WAF to identify and respond to threats.
* Investigate, analyze, and resolve security incidents, ensuring minimal impact on operations.
* Support the maintenance and updates of security tools and systems.
* Integrate threat intelligence into daily operations and update security protocols.
* Document security events and assist in preparing reports for audits and compliance.
* Work with IT teams to ensure security measures align with projects and operations.
* Assist in vulnerability scanning and suggest improvements for security gaps.
* Help enforce security policies and promote cybersecurity awareness across the organization.
What We Offer:
* Comprehensive training and development opportunities.
* A dynamic work environment with advanced security technologies.

Working as part of the SOC team in a large and interesting organization, your role will be to monitor cyber activity, identify and investigate events in Real-Time, and provide a proactive response across multiple platforms. Providing incident response and troubleshooting in the SIEM infrastructure within defined timeframes (SLA). The position is intended for individuals with high motivation and a desire for professional development, who enjoy investigating internal and external cyber events, analyzing malicious activity, and identifying patterns and relationships between events in organizational systems. The role is dynamic, with continuous learning, utilizing multiple systems designed for monitoring and investigation.
Country:
Israel
City:
Herzliya

We are looking for a Services Operations Center to join our growing team!

As a SOC Operator, you will be responsible for monitoring and maintaining the health and performance of our fleet of installed clusters. You will work in a 24/7 operations environment, ensuring the availability, reliability, and security of services. This role involves real-time monitoring, incident detection, incident management, incident resolution, and clear written and verbal communication with other teams and stakeholders.

Responsibilities:
Monitor clusters using internal monitoring tools to detect and troubleshoot issues promptly.
Respond to alerts and incidents in a timely manner, following standard operating procedures (SOPs) and escalation processes.
Perform initial investigation and diagnosis of problems, escalating complex issues to support or R&D.
Document incidents, including their details, troubleshooting steps, and resolutions in the incident tracking system.
Collaborate with other teams, including Support, R&D, Account teams, and customers to ensure effective incident resolution and communication.
Conduct routine checks and audits to identify potential problems or vulnerabilities.
Assist with the implementation of changes and updates to the infrastructure as directed by team leads.
Participate in shift-based work schedules, including nights, weekends, and holidays, to provide 24/7 coverage in the SOC.
Maintain up-to-date knowledge of storage technologies, industry trends, and best practices.
Adhere to security protocols and ensure the confidentiality, integrity, and availability of network and system data.
Contribute to the development and improvement of SOC processes and procedures.
Provide excellent customer service to internal and external stakeholders during incident resolution and communication.

We are seeking a Chief Information Security Officer (CISO) to oversee and safeguard our company's information, cyber, and technology security.
The CISO will bear full responsibility for the development, implementation, and enforcement of security policies, procedures, and protocols, ensuring the protection of critical data.
As CISO, Your Role Will Involve working closely with our development and operations teams to identify, mitigate, and manage security risks and threats.
Responsibilities:
Team Management: Lead a team of Cyber Security Specialists, GRC Specialists, and an Application Security Engineer, overseeing Corporate IT, Governance, Risk and Compliance, Product Security (Production), and Development Security.
Strategic Execution: Develop and implement the companys security, risk, and compliance strategy and roadmap.
Policy Development: Establish and uphold policies, procedures, and protocols supporting our security and IT compliance objectives.
Comprehensive Security Program: Design and implement a robust information security program that safeguards the company's data, systems, and networks.
Risk Management: Evaluate and manage risks associated with the companys products, services, and operations.
Operational Security: Oversee daily security operations, including incident response, readiness, and business continuity, while addressing vulnerabilities in our infrastructure and applications.
Security Assessments: Conduct regular security assessments and audits.
Vendor Management: Oversee the selection, evaluation, and implementation of vendor services and tools that enhance information security and compliance.
Training and Awareness: Create and deliver security training programs to educate employees on best practices.
Leadership and Expertise: Stay current with the latest security trends, technologies, and best practices, providing leadership to the enterprise's information security efforts.
Collaboration and Education: Partner with business stakeholders to raise awareness of risk management, and lead security awareness training for employees, contractors, and partners.
Subject Matter Expertise: Serve as a subject matter expert to internal and external business professionals, ensuring alignment with strategic goals and roadmaps.
External Collaboration: Work with external security experts and stakeholders.
Technology Planning: Support overall business technology planning, offering insight into current and future technology and systems.
Global Leadership: Lead both local and global Governance, Risk, and Compliance initiatives.

we are looking for a IR And Malware Analyst
Responsibilities
What Youll Do

Conduct digital forensics analysis on diverse evidence types including disk, memory, network, and cloud artifacts.

Lead incident response initiatives to effectively contain, mitigate, and guide recovery efforts for security breaches.

Work closely with the SOC team to validate, escalate, and address identified threats.

Stay abreast of emerging threats, attack vectors, threat actors, and advancements in security technologies.

Develop and deploy detection rules, leveraging MDR solutions to identify and manage new threats.

Enhance the SOC team's DFIR capabilities by creating and refining tools, scripts, correlation alerts, and automation.

Keep up to date with industry trends and research to continuously strengthen our security posture.

Partner with cross-functional teams to provide actionable insights and comprehensive incident reports.

We are looking for a Robotic System Operator (RSO) to join our Delivery team in TLV.

The position takes place in Tel Aviv office in the SOC (Support Operation Center). The SOC is the command center where you will support the robotic systems.

What you'll do


● You will function as Tier 1, working in shifts, accepting support requests from the robotic sites, following procedures to resolve support issues

● You will perform escalation to the system integrator, field technicians, and RnD team to solve urgent problems during Shifts while the system is down and must be back to operational mode immediately.

● You will monitor the sites to ensure optimal uptime. The RSO position involves multidisciplinary problem-solving remotely from the SOC.

● You will adhere to safety standards to ensure employee and subcontractor safety.

● You will monitor and verify the system to meet the operational requirements as planned. Report problems or changes to the Professional Services team.

As a Senior Security Operations Analyst, you'll be at the forefront of our security initiatives, tackling complex challenges and implementing innovative solutions to protect our digital infrastructure.
Your expertise will be pivotal in enhancing and automating our security operations, ensuring robust incident response, and supporting our cloud security measures.
As a Sr. Security Operations Analyst, you will be responsible for:
Security Operations Management: Oversee the Security Information and Event Management (SIEM) system, triaging alerts, and responding to security incidents effectively.
Threat Hunting: Proactively detect and mitigate potential security threats within our environment.
Incident Response: Participate in and support incident response activities, ensuring timely and efficient handling of security incidents.
Cloud Security Support: Provide security support and response for Amazon Web Services (AWS) to maintain and enhance our cloud security posture.
Security Automation: Develop and refine security orchestration and automation processes to improve the efficiency and effectiveness of our security operations.
Endpoint Security: Tune and refine Endpoint Detection and Response (EDR) workflows to optimize our endpoint security measures.
InfoSec Tasks: Perform various InfoSec tasks related to Mobile Device Management (MDM) to ensure the security of our mobile devices.
Cloud Operations: Contribute to cloud security operations across AWS, Google Cloud Platform (GCP), and Azure.
Stakeholder Support: Handle inbound security inquiries, providing timely and accurate responses to internal and external stakeholders.

Were looking for an experienced DevSecOps Engineer to join our team and verify that our cloud environments and CI/CD flows are secured according to best practices.

As a SecDevOps Engineer, youll lead security efforts around our dynamic and fast-paced production environments. Youll define and create operation tools and processes, and play a hands-on role in directly impacting work across all R&D flows.
Responsibilities
Secure and monitor live production environments.
Perform security drill-downs and investigations.
Act as a subject matter expert and manage security incidents across all organizational environments.
Implement monitoring and alerting procedures and mechanisms.
Design and implement automation processes for security monitoring and incident response-related flows.
Design, implement, and develop security solutions according to R&D/production needs.
Identify new security threats, and trends by conducting continuous monitoring, vulnerability assessments, and log analyses.
Conduct regular internal and external security assessments, vulnerability scans, and penetration testing of systems and applications to identify and remediate security weaknesses and threats.
Manage Elementors bug bounty program.
Generate regular reports on security metrics, compliance, and incident response activities for management and stakeholders.

In this role, you will use the ASIC design experience to be part of a team that creates the SoC VLSI design cycle from start to finish. You will collaborate with design and verification engineers in projects, creating architecture definitions with RTL coding, and running block level simulations. You will contribute in all phases of complex Application-Specific Integrated Circuit (ASIC) designs from design specification to production. Additionally, you will collaborate with members of architecture, software, verification, power, timing, synthesis and etc to specify and deliver high quality SoC/RTL. You will solve technical problems with innovative micro-architecture and practical logic solutions, and evaluate design options with complexity, performance, power and area in mind.

Behind everything our users see online is the architecture built by the Technical Infrastructure team to keep it running. From developing and maintaining our data centers to building the next generation of our platforms, we make our product portfolio possible. We're proud to be our engineers' engineers and love voiding warranties by taking things apart so we can rebuild them. We keep our networks up and running, ensuring our users have the best and fastest experience possible.

Responsibilities
Define the block level design document such as interface protocol, block diagram, transaction flow, pipeline, etc.
Perform RTL development (e.g., coding and debug in Verilog, SystemVerilog, VHDL), function/performance simulation debug, and Lint/CDC/FV/UPF checks.
Participate in synthesis, timing/power closure, and FPGA/silicon bring-up.
Participate in test plan and coverage analysis of the block and SOC-level verification.
Communicate and work with multi-disciplined and multi-site teams.

we are looking for a SoC Debug and Monitoring Architect, Google Cloud
Responsibilities
Work with Platform, Software, and CPU Architecture teams to define the debug, and monitoring of the custom core and implement ARM debug architecture features.
Work with the Silicon Design teams to define the required debug features.
Work on ARMs debug and monitoring philosophy and architecture, and configure it to Google SoC needs.
Utilize ARM infrastructure to architect a solution for debug and monitoring.

In this role, you will use Application-Specific Integrated Circuit (ASIC) design to be part of a team that creates the System on a Chip (SoC) design cycle from start to finish. You will collaborate with design and verification engineers in projects, creating architecture definitions with Register-Transfer Level (RTL) coding, and running block level simulations. You will contribute in ASIC designs from design specification to production. You will collaborate with members of architecture, software, verification, power, timing, synthesis and more to specify and deliver high quality SoC/RTL. You will also solve technical problems with innovative micro-architecture and practical logic solutions, and evaluate design options with performance, power, and area in mind.

Behind everything our users see online is the architecture built by the Technical Infrastructure team to keep it running. From developing and maintaining our data centers to building the next generation of platforms, we make product portfolio possible. We're proud to be our engineers' engineers and love voiding warranties by taking things apart so we can rebuild them. We keep our networks up and running, ensuring our users have the best and fastest experience possible.

Responsibilities
Define the block level design documents such as interface protocol, block diagram, transaction flow, pipeline, and more.
Perform RTL development (e.g., coding and debug in Verilog, SystemVerilog, VHDL), function/performance simulation debug, and Lint/CDC/FV/UPF checks.
Participate in synthesis, timing/power, and FPGA/silicon bring-up.
Participate in test plan and coverage analysis of the block and SOC-level verification.
Communicate and work with multi-disciplined and multi-site teams.

the center of the country needs an SOC analyst.
The job includes: monitoring faults on the organizations systems, staffing the organizations systems against cyber incidents 24/7.

Our Information Security team is looking for a Security Operations Center (SOC) Senior Manager to join the Global Security Operations team.
As the senior manager of the team, you will lead the Tel Aviv-based group of SOC analysts and engineers in support of the SOCs mission to protect the company from cyberattacks. You will be responsible for threat detection and incident response across our internal environments. The scope of the Security Operations team spans both the Enterprise and Product environments.
In this role, as a hands-on technical leader you will quickly become an expert in our security products; primarily XSIAM, XDR, and Next Generation Firewalls. You will also facilitate the SOC teams feedback to the engineering teams to continually improve our world leading security products.
Many SOCs are drowning in false positive alerts, but our SOC changed the game and re-invented how Security Operations should function. Our vigilant focus on automation, prevention and high-fidelity alerts enables our analysts to be more proactive. Our analysts do not spend their days sifting through alerts. Instead, their workloads are split evenly between (1) analyzing and responding to high fidelity alerts (2) proactive threat hunting and (3) contributing to a variety of different projects aligned to their personal interests. As the Security Operations Center (SOC) Manager, you will ensure we are practicing this philosophy.
As a people manager, top candidates for this role will demonstrate an ability to effectively mentor individuals on a high performing team, build morale and maintain an educational environment where the knowledge and performance of the group is constantly advancing.
Your Impact:
Ownership of the SOC teams threat detection and incident response activities
Oversight of day-to-day operations for the SOC team to ensure they adhere to the philosophy described above
Continuously mature SOC processes, and drive new innovations
Coordinate the SOC teams efforts so they align with those of the US-based SOC
Keep current with the latest security industry developments for potential inputs into threat detection services
Oversee documentation efforts that detail security incidents for security leaders and the business
Demonstrate excellent communication skills in post mortem reviews of incident response activities, to facilitate continuous improvement
Manage SOC team staffing, including recruitment, supervision, scheduling, development and evaluations
Develop and maintain an educational environment where the knowledge and performance of the group is constantly advancing
Contribute to proof-of-concept assessments of new security products.