לוח משרות דרושים מומחה אבטחת מידע / סייבר במרכז

Requirements:
At least 5 years of experience in cyber security research space
At least 2 years of experience with endpoint security research
In-depth knowledge of the inner-workings of operating systems (Windows/Linux/MacOS)
Intimate knowledge and understanding of attack methods and techniques over endpoints and enterprise
Vast experience and interest in Malware research or development
Python software development experience
Comfortable conducting research and gathering insights by querying large databases
Ability to initiate , drive and own projects
Independent and team player, critical thinker
Nice to have

Experience in ML or data analysis
Experience with Reverse Engineering
Experience in Graph Databases
Advanced knowledge in Microsoft AD infrastructure
Exploitation knowledge and experience

Requirements:
At least 5 years of experience in cyber security research space
At least 2 years experience with endpoint security research
Proven experience in the low level world or its related (reversing, malware analysis, forensics)
Proven experience in running end-to-end research POCs from ideas to customer impact solutions including the design, execution, analysis and conclusions of your research, methodologies and outcomes
Working experience in analytics, data mining, and data interpretation
Proficient hands-on coding skills (e.g. Python)
Experience with SQL or related query languages
Excellent communication skills - ability to present research results in a clear and meaningful manner
Confident interacting with business peers to understand and identify use case, with a strong ability to articulate solutions and present them to business partners
Advantages:
Experience with data-driven or ML models
Experience with XDR/SIEM/EDR/NDR product
Experience with big data platforms (e.g GCP)

Requirements:
At least 5 years of experience in cyber security research space
At least 2 years experience with endpoint security research
Proven experience in the low level world or its related (reversing, malware analysis, forensics)
Proven experience in running end-to-end research POCs from ideas to customer impact solutions including the design, execution, analysis and conclusions of your research, methodologies and outcomes
Working experience in analytics, data mining, and data interpretation
Proficient hands-on coding skills (e.g. Python)
Experience with SQL or related query languages
Excellent communication skills - ability to present research results in a clear and meaningful manner
Confident interacting with business peers to understand and identify use case, with a strong ability to articulate solutions and present them to business partners
Advantages:
Experience with data-driven or ML models
Experience with XDR/SIEM/EDR/NDR product
Experience with big data platforms (e.g GCP)

Requirements:
* Experience: Proven track record of leadership in the cybersecurity industry, with extensive experience in managing cybersecurity teams and driving strategic initiatives.
* Technical Expertise: Deep understanding of cybersecurity principles, technologies, and best practices, with the ability to stay updated on the latest trends and threats.
* Strategic Thinking: Strong strategic thinking and analytical skills, with the ability to develop and execute cybersecurity strategies that align with business objectives.
* Communication Skills: Excellent communication and interpersonal skills, with the ability to effectively engage with clients, stakeholders, and team members.
* Innovative Mindset: Creative thinker with a passion for innovation, able to drive continuous improvement and stay ahead of emerging cybersecurity threats. Join us at Cynet and take on the challenge of leading our cybersecurity efforts to new heights. If you're a visionary leader with a passion for cybersecurity and a desire to make a significant impact, we want to hear from you. Apply now and become a key player in shaping the future of cybersecurity at Cynet.

Requirements:
* 4 years of cyber security & data analyst research.
* Experience with web hacking techniques.
* Experience with Python development.
* Experience with data analysis techniques: SQL, pandas (Python).
* Ability to take ownership and execute tasks end-to-end.
* Good understanding of HTTP and APIs - advantage.
* Bachelors degree in Computer Science or equivalent - advantage.

Requirements:
+4 years of experience in cybersecurity, particularly in cloud environments.
Military background or experience with Ex-CNAPP.
Proficiency in threat detection and familiarity with cloud technologies and platforms.
A customer-first mindset, iming to exceed customer expectations and contribute to their success.
Demonstrated customer-first approach, committed to exceeding expectations and simplifying processes to enhance overall customer success.
Exceptional communication skills and professionalism, with meticulous attention to detail and a proactive stance in all interactions and tasks.
Resourcefulness and creativity in problem-solving, capable of achieving high standards and overcoming challenges with less.

Requirements:
+4 years of experience as a Vulnerability Researcher specializing in Web hacking and Offensive security.
Experience with cloud platforms and products (e.g. AWS, GCP, and Azure).
Military background or experience with Ex-CNAPP is highly advantageous.
Possession of a Vulnerability Research Certification, contributions to CVEs, or a recognized standing in global security rankings is highly desirable.
Ownership and Professionalism you ARE required for a deep sense of responsibility towards work, with attention to detail, and a proactive approach to tackling any task, regardless of its nature.
Resourcefulness Ability to achieve more with less, utilizing creativity and high standards to navigate and overcome challenges pragmatically.

Requirements:
* Strong understanding of web application security principles, vulnerabilities, and attack vectors (e.g., OWASP Top 10, CWE/SANS Top 25).
* Experience in reviewing and reproducing reported vulnerabilities, whether from customers or penetration test results, using manual testing techniques and tools.
* Proficiency in using Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) platforms to identify security issues in code and running.
* Experience in planning and implementing detection use cases to identify attack tactics, techniques, and procedures (TTPs) used by adversaries.
* Capability to deliver detection capabilities using Security Information and Event Management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), and endpoint detection and response (EDR) solutions.
* expertise in using a wide range of penetration testing tools such as Metasploit, Burp Suite, Nmap, Nessus, Wireshark, SQLmap, John the Ripper, etc.
* Ability to effectively utilize these tools for vulnerability scanning, network reconnaissance, exploitation, privilege escalation, password cracking, and data exfiltration.
* Proficiency in using web application testing tools such as OWASP ZAP, Acunetix, AppSpider, and Netsparker for identifying security flaws and vulnerabilities in web applications (e.g., SQL injection, XSS, CSRF).
* Security experience in AWS, GCP, or Azure; ideally including working with container and Kubernetes-based infrastructure
* Leading security operations functions – including vulnerability management, detection, and incident response – in CI/CD and cloud-native production environments.

Requirements:
* At least one year of experience in roles related to intelligence (CTI/Webint/OSINT).
* Familiarity with cyber concepts and terms
* Fluent in written and spoken English
* Experience in professional writing
* Creativity and curiosity
* Desire to develop and grow in the role
* Knowledge in Python, Excel, and Kibana- an advantage

Requirements:
At least 3 years of experience as a cybersecurity professional, including:
Knowledge of security design and architecture
Hands-on technical configuration and implementation of cyber security standards and controls
At least 2 years in professional services consulting delivering value directly to organizations, or demonstrated experience delivering to internal clients
At least one or comparable skills and experience: CISSP, OSCP, CCIE, CCSE, JNSE, CCDP, CSA; or equivalent military tech training
Demonstrated experience working in IT, security engineering, application security, or similar positions in which you have gained profound network security understanding (routers, firewalls and NG FW & IPS, proxies, WAF, DLP, AD, GPO, EDR, cloud security)
Knowledge of authentication protocols, Active Directory, Exchange and Office365, Azure and AWS knowledge advantage
Proven Presentation skills and client facing experience, including the ability to document and explain technical information in a concise, understandable manner
Ability to work in parallel on multiple projects under tight deadline
Fluent English (written and spoken). Native English speaker - an advantage
Academic degree, preferably in Computer Sciences or a technical discipline an advantage
Willing to travel abroad. Significant portion of your time will be spent in collaborating with client - onsite

Requirements:
Minimum of 3 years of experience as a Pen tester/Red teamer.
Previous consulting experience is beneficial.
Deep understanding and extensive experience in penetration testing methodologies and tools.
Deep technical understanding of a broad technology set and the ability to learn new information at a rapid pace.
Desire to learn new technologies and break them apart is a must.
Deep familiarity with Active Directory attacks and defenses.
Background in application security - advantage.
Fluent English (Written, Spoken) and proven presentation skills - must.
Scripting and tools development (Python, PowerShell, Bash etc.).
Developing tools in C/C++, C#, Python, Java, PowerShell.
Developing, extending, or modifying exploits, shellcode or exploit tools.
Experience in reverse engineering malware advantage.
Fluent English (written and spoken).
Willingness to travel abroad.

Requirements:
At least 3 years of a relevant experience (from military service and/or industry).

Bright, curious and determined team player, who strive for excellency.

Problem solver, in-depth thinker with growth mindset.

Demonstrated in-depth understanding of the life cycle of advanced security threats, attack vectors and variant methods of exploration.

Deep technical understanding of network fundamentals and common Internet protocols.

Solid understanding of system and security controls on at least two OSs (Windows, Linux / Unix and MacOS), including host-based forensics and experience with analyzing OS artifacts.

Fluency with one or more scripting language (i.e. Python).

Multidisciplinary knowledge and competencies, such as:

o Hands-on experience in data analysis (preferably network traffic or log analysis) in relevant data analysis and data science platforms (Jupyter, Splunk, pandas, SQL).

o Familiarity with cloud infrastructure, web application and servers, android and iOS mobile platforms.

o Experience with malware analysis and reverse engineering.

o Familiarity with enterprise SIEM platforms (e.g. Splunk, QR.adar, ArcSight).

Excellent communication and interpersonal skills. Fluent English, including the ability to document and explain technical information in a concise, understandable manner.

Willing to travel abroad (~30% of the time).

Requirements:
Lead incident response and hunting efforts, including large scale sophisticated attacks, to contain and defeat to real-world cyber threats

Lead a team of top-tier cyber security researchers and forensic experts conducting assessments and in-depth analysis in complex investigation, as well as security assessments.

Provide excellent communication and status updates to a variety of audiences, including technical and executive stakeholders

Collaborate and work with clients IT and Security teams during investigations

Design and improve internal incident response methodologies and processes

At least 5 years experience in team management (from military service and/or industry)

Decisive bright and positive leader, who strive for excellency

Calm leader with in-depth thinking and ability to succeed in an ultra-dynamic, fast pace environment/situation.

Unwavering focus and crisis management skills: Must have the ability to see things for what they are, to manage relationships and communication channels and to evaluate the actions taken.

Exceptional written and verbal presentation skills - must be able to articulate complex technical issues in a concise and confident manner to both technical personnel and executive level management

In-depth understanding of the life cycle of advanced security threats, attack vectors and methods of exploitation

Strong technical understanding of network fundamentals, common Internet protocols and system and security controls

Experience with the tools and techniques used in security event analysis, incident response, computer forensics, malware analysis, or other areas of security operations

Previous experience in strategy or cybersecurity consulting - advantage

Academic degree in a technological or scientific discipline - advantage

Willingness for intensive travel abroad