לוח משרות דרושים מהנדס סייבר משרה מלאה

We are seeking a System Information Security Engineer to join our Professional Services Team.
Responsibilities:
Analyse security systems and seek improvements continuously.
Report possible threats or software issues.
Research weaknesses and find ways to counter them.
Find cost-effective solutions to cybersecurity problems.
Understand software, hardware and internet needs while adjusting them to our business environment.
Develop best practices and security standards for the organization.

Required Senior Infrastructure Security Engineer
The Senior Infrastructure Security Engineer Role:
As a Senior Infrastructure Security Engineer, you will be at the forefront of securing our SaaS Cloud Infrastructure. Your role is to research, design, and implement cutting-edge security solutions that align with our policies, standards, and legal requirements.
You will be a vital part of our dynamic team, ensuring security is seamlessly integrated into every phase of the infrastructure's lifecycle.
What makes this role interesting?
Innovative Security Solutions: Spearhead the design and implementation of security solutions, contributing to the evolution of our SaaS Cloud security.
Automation for Scaling: Prioritize automation to enhance security tooling coverage, focusing on detecting, alerting, and remediating vulnerabilities and misconfigurations.
Collaborative Impact: Collaborate with cross-functional teams, including SRE, IT, and Developers, to embed security seamlessly and drive secure practices throughout the organization.
Evangelizing Cloud Security: Develop, advocate, and monitor the adoption of robust cloud security practices, influencing the entire infrastructure positively.
Heres how youll be making an impact:
Architecture Reviews: Conduct security architecture reviews for new and existing product or platform components, ensuring the highest standards of security.
Autonomy and Ownership: Independently triage and resolve security issues, continuously improving incident detection and risk mitigation.
Policy Updates and Audits: Participate in updating security policies, internal and external audits, penetration tests, and vulnerability assessments, contributing to a secure environment.
Subject Matter Expertise: Be a recognized subject matter expert on cloud infrastructure security, sharing knowledge and insights across the organization.

Required Application Security Engineer
As an Application Security Engineer, you will play a pivotal role in safeguarding our products against security threats and vulnerabilities. You will work closely with our development teams to integrate security best practices into the software development lifecycle, conduct thorough security assessments, and implement robust security measures to protect our applications and data.
Key Responsibilities:
Collaborate with development teams to integrate security controls into the software development lifecycle (SDLC).
Conduct regular security assessments, including code reviews, vulnerability scans, and penetration testing, to identify and remediate security vulnerabilities in applications.
Design and implement security solutions to protect against common security threats, such as SQL injection, cross-site scripting (XSS), and authentication bypass.
Conduct threat modeling and architecture security review.
Develop and maintain secure coding standards and guidelines for application developers.
Monitor and analyze security incidents and provide timely response and resolution.
Stay current with emerging threats, vulnerabilities, and industry best practices in application security.
Participate in security incident response activities and contribute to post-incident reviews and remediation efforts.
Collaborate with cross-functional teams to ensure security requirements are effectively integrated into product development processes.
Deliver secured development training to developers.

we are looking for a Security Engineer with deep experience in cloud-based applications and infrastructure.
In this role, youll collaborate with our software development and DevOps teams to secure products, CI/CD infrastructure, and production infrastructure. Youll also get the opportunity to influence our product roadmap by utilizing to assess, monitor, and harden our environments.

This role encompasses multiple open positions for candidates with cloud-focused experience in areas like threat modeling and security reviews, detection engineering, incident response, and vulnerability management.


WHAT YOULL DO

Plan detection use cases and delivering detection capabilities to identify attack tactics, techniques, and procedures
Play a key role in the security incident response process
Develop, promote, and monitor the adoption of sound cloud security practices
Take ownership of vulnerability management and patching policies
Identify and help mitigating security issues, misconfigurations, and vulnerabilities related to the cloud, container, and Kubernetes infrastructure
Collaborate with engineering, DevOps, and IT teams to ensure security is at the heart of what we do
Lead threat modeling exercises around cloud-native, SaaS, and cloud-first technologies
Mentor and provide technical leadership to other members of the Security team

The Information Security Architect will lead the efforts to secure cloud and corporate ecosystem by guiding and monitoring the different IT/ Product/ Business teams to ensure organizational security, by designing a secure architecture of software /products/ conducting risk and threat analysis/ analyzing and managing a secure solution in the domain of infrastructure/ application while responding to specific stakeholders questions and needs.

What will your job look like?
Contribute and lead to the organizations Cloud Secured solutions architecture throughout project lifecycle (Business Development, Design, Development, Ongoing operations). Ensure security solution meets business and technical needs.
Maintain the organization's effectiveness and efficiency by defining, delivering, and supporting strategic plans for implementing information security.
Lead the security design throughout the project lifecycle and be accountable for security solution integrity.
Keep updated with emerging security threats and alerts. Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts
Share and communicate end-to-end security solutions (orally and in writing) to executives, business sponsors, and technical resources in a clear and concise manner that is in the vernacular of each group.
Guide various product experts regarding the security solution.
Create and support POC/demos and present security solutions to client.
Develop, implement, and administer security policies, security foundations and security standards.

We are looking for a Leader to join our SOC Team. As a technical leader, you will on-going manage the ongoing shifts.

You will technologically manage the ongoing shifts that will include team members from multiple departments, whose goal is to technologically lead the team that responds to incidents created by internal and external systems.

In addition, This is the leading team of the SOC (Shift Managers) the team that takes part in advanced investigations, the technological leader, and the main source of knowledge in the room.

A passion for Security Operations with strong skills in critical thinking, communication, and mentoring, an inquisitive nature, and excitement to be part of our are musts.

Responsibilities
Professional guidance and accompaniment of a central team
Preservation and development of investigative and monitoring methods
Collaboration with other teams in the company with an emphasis on the professional aspect

Application Security Engineer

Raanana, Israel

In this mission critical role as an Application Security Engineer, you will be part of a dynamic global application security team, working directly with software architects and software engineers to perform penetration testing on software solutions developed within the company. In addition, youll collaborate with engineering to triage security findings and review remediation techniques in order to harden and improve the security of software across multiple types of products.

With NCR Voyix as a software-focused company, youll work in a fast-paced environment, helping enable teams to work in a DevSecOps model in a world of containers, automated pipelines, and rapid deployments. And youll be instrumental in helping teams add in security testing as part of their build and release pipelines. produces hardware and software for major companies in Retail, Restaurants, and Digital Banking come help secure the state-of-the-art!

Responsibilities:

Conducting manual penetration tests of software
Assessing risk level of security findings using standard methodologies
Running automated application security tools
Writing and presenting pen test reports to development teams
Consulting with development teams on remediation techniques and defensive coding
Validation testing to confirm findings are closed
Develop, integrate, and enable security engineering test automation into a CI/CD pipeline
Perform proof-of-concept and proof-of-technology testing for integrating new 3rd party security products into the development and deployment processes

Our Security team is looking for a security savvy person to join as an Cloud Security Engineer to help validate our services and environments according to the highest security standards. You will work closely with our R&D and Security teams, and solve complex security problems.
The ideal candidate is highly motivated, demonstrates a can do' attitude and needs to have a combination of technical and communication skills, as well as the ability to handle a mix of multiple tasks including projects and technical work. This role will provide career growth opportunities as you develop & acquire new security skills in the course of your duties.
What youll do:
Manage the Cloud & Data Security Governance program for AWS/GCP
Design and implement our cloud/data security benchmarks
Own the cloud organization operations including Identity & Access Management and Securing Cloud Accounts/Projects
Build processes to effectively manage cloud and data risks across AWS/GCP environments
Partner closely with our security and devops teams to detect, prevent and remediate cloud & data risks
Provide mentorship & training around securing our cloud & data to stakeholders including Security & R&D teams.

we are looking for an Incident Response Manager to lead investigations and response activities in support of organizations worldwide.

Cyber threats are constantly growing in volume, velocity and sophistication. When an organization is confronted with an advanced attack, it needs the strongest capabilities on its side. In many cases, an incident response engagement is in fact a battle within a network. The operational art, experience focus and speed of response teams can mean the difference between a minor blow and a devastating impact on performance and reputation of organizations.

The Incident Response Manager is both a subject matter expert for clients and team members, and a leader. Significant part of our investigations is performed onsite at the client location, in collaboration with the clients IT and security team

As a Cyber Security Engineer in a fast-expanding operation team, you will be responsible for onboarding new global clients to the MXDR services, developing and maintaining detection scenarios and alerts, analysing the client's environment, and providing technical support and guidance to clients. To excel in this role, you will demonstrate strong technical aptitude, dedication to delivering high-quality work, and a cooperative approach to teamwork.



Main Responsibilities:

Lead the onboarding process for all new clients joining the MXDR services, working closely with the clients IT and security teams to ensure smooth implementations.
Develop detection scenarios and alerts for XDR solution (Velocity) to ensure effective threat detection and response.
Oversee Velocity KPIs and measurements set by the client, adjusting, analyzing and maintaining them according to their needs and tracking the impact of the platform on the client's networks, endpoints, applications, and cloud environments.
Continuously improve Velocity monitoring capabilities and keep up-to-date with the latest developments in the cyber threat landscape.
Provide technical support and guidance to clients on Velocity security-related issues, including implementing security best practices and ensuring compliance with industry standards.

Were looking for driven and talented people like you to join our R&D team and our mission to change the future of cloud security. Ready to dive in and swim with our pod?
On a typical day youll:
Be responsible for completing a thorough software and systems risk assessment, identifying vulnerabilities within a network, and creating firewall rules, hardenings, or configuring systems to enhance existing security features.
Is expected to respond to, and document, any security threats, resolve technical faults and allocate resources to deliver real solutions in a cost-effective way. They must also be proficient in:
Understanding complex technical issues and managing them within a fast-paced business environment
Maintaining all the software and hardware in relation to security
Documenting security certifications
Identifying current and emerging technology issues including security trends, vulnerabilities and threats
Threat intelligence
Sourcing and implementing new security solutions to better protect the organization
Conducting proactive research to analyze security weaknesses and recommend appropriate strategies
Liaising with vendors to implement security solutions

We are looking for an exceptional Senior Security Engineer to join our growing team. For the first 6 months you will:
Bolster and develop our defensive security capabilities, identifying advanced threats to us, developing and implementing countermeasures
Responding to incidents and conducting investigations as events happen through analyzing logs and various other sources (ex: AWS Guardduty, SecurityHub, Detective, etc.)
Engineer and automate custom detection and response capabilities to combat malicious and/or unwanted behaviors within the environment
Stay up to date with Tactics, Techniques, and Procedures (TTPs) that may apply to us and define and implement mitigation techniques to improve our overall risk posture
You will be part of a new product security team responsible for building, supporting, enhancing and improving our security frameworks, tools, processes and methodologies used across our SDLC and Runtime environments.
In this role, you will also be responsible to:
Conduct in-depth vulnerability assessments and security auditing of assets
Develop and improve processes for incident detection and the execution of countermeasures
Contribute to the creation and upkeep of run books to handle security incidents
Administer security configuration for threat management platforms for large-scale environments, including security orchestration, automation, and response (SOAR) and security information and event management (SIEM) tools
Contribute and showcase as a SOAR platform used within our Security Operations
Provide guidance on security architecture for threat detection and response systems used as a part of the overall security operations
Consult with our security compliance team during security audits to demonstrate our technical security capabilities
Collaborate with Product Management and Development team members to enhance our Security program
Take part in the Security Operations on-call rotation, including leading all incident response efforts and documentation during your rotation

Required Networking Resilience Engineer
Job Description
Quickly identify and resolve infrastructural problems related to networking and security stacks
Work with all aspects of our rapidly-developing infrastructure
Design and implement the next generation of tools and networking changes needed to assure stability, increase velocity, and enhance users experience by optimizing the networking stack
Be a member of the Systems Team and participate in on-call duties (1 week every 5-6 weeks)
Make sure that our network services across the entire company are effective, secure, and easy to use
Be part of our innovative culture, which includes proposing, convincing, and executing any activity that you find contributes to the success.

About us:
An Israeli research and development company that analyzes cyber and technological security threats and designs secure architectures and controls for complex systems. We provide our customers with cyber-resilient architecture design, research and development of innovative security controls, hardware security, and system security engineering, as well as expertise in protecting RF and Wireless channels, cryptography, quantum communication and more.
Job Description:
As a system Engineer in multidisciplinary projects focused on RF and communication systems you will lead the engineering aspects of the system, conduct system design surveys and participate in various design and testing stages of the system. You will also take part in cyber research and analysis, threat research, characterize protection and cyber products, and develop innovative cyber- RF solutions.
Option for full-time or part-time employment.