לוח משרות דרושים הייטק אבטחת מידע / סייבר בשרון

As a SOC Analyst Tier 1, you will:

Proactively hunt and monitor cyber threats
Analyze raw data, traffic and TTPs to maintain a dynamic comprehensive threat model
Develop dashboard to handle security alerts and incidents
Work with forensic tools

As part of our continued growth, we're looking for an Information Security Architect.
Key Roles and Responsibilities:
Play key role in product & system design, reviews and solution architecture, and provide security guidelines, all in a highly regulated ecosystem.
Control and manage mitigation plan implementation as part of the above security guidelines
Identify, research, explore, and lead the evaluation and implementation of new security controls for the required business projects
Work closely with the product team to enhance Finaros product security
Work with IT teams on new innovative infrastructure projects, including VM environments, network infrastructure, storage systems, DB platforms, and cloud environments, and provide security guidance for all related fields and layers respectively
Work with R&D teams to enhance application security within Finaro software

As a 24/7 Monitoring and Technical Support, you will:

Work in shifts 247, including weekends and holidays
Handle day-to-day production issues
Provide clients with a professional and friendly first point-of-contact for all incidents
Continuously develop and improve the teams service and processes
Perform preventive maintenance
Troubleshoot and debug technical incidents

As an Infrastructure Operations Specialist, you will:

Provide expertise in managing product infrastructure, collaborating closely with various interfaces
Explore and develop methodologies to enhance our domain expertise
Thrive in a dynamic, fast-paced security, and operational environment
Lead implementation processes, from research to production
Conduct constant analysis with multiple tools in order to optimize workflows and processes

The Information Security Architect will lead the efforts to secure cloud and corporate ecosystem by guiding and monitoring the different IT/ Product/ Business teams to ensure organizational security, by designing a secure architecture of software /products/ conducting risk and threat analysis/ analyzing and managing a secure solution in the domain of infrastructure/ application while responding to specific stakeholders questions and needs.

What will your job look like?
Contribute and lead to the organizations Cloud Secured solutions architecture throughout project lifecycle (Business Development, Design, Development, Ongoing operations). Ensure security solution meets business and technical needs.
Maintain the organization's effectiveness and efficiency by defining, delivering, and supporting strategic plans for implementing information security.
Lead the security design throughout the project lifecycle and be accountable for security solution integrity.
Keep updated with emerging security threats and alerts. Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts
Share and communicate end-to-end security solutions (orally and in writing) to executives, business sponsors, and technical resources in a clear and concise manner that is in the vernacular of each group.
Guide various product experts regarding the security solution.
Create and support POC/demos and present security solutions to client.
Develop, implement, and administer security policies, security foundations and security standards.

Responsibilities:
Perform financial motivated attacker tradecraft research and threat landscape investigation across cloud-based attacks spanning permissions, identities, applications, and data.
Partner with engineers and data scientists in a geographically distributed team to deliver innovative new product capabilities.
Threat hunting to discover real world advanced attacks together with designing and implementing automated detection and hunting analytics combining alerts and signals across Microsoft Defender security products.
Contribute to active engagement with the security ecosystem through papers, presentations, and blogs.
Provide subject matter expertise to customers based on industry attack trends and product capabilities.

Required IT and Cyber Project Manager
Location: Mainly in Europe (Hybrid)
.Responsibilities:
Managing IT and cyber projects, ensuring compliance with goals, budget, and timelines
Benefits:
Competitive salary and benefits package
Opportunity to work on challenging and rewarding projects
Work with a team of talented and dedicated professionals
Opportunity to travel and experience different cultures.

Application Security Engineer

Raanana, Israel

In this mission critical role as an Application Security Engineer, you will be part of a dynamic global application security team, working directly with software architects and software engineers to perform penetration testing on software solutions developed within the company. In addition, youll collaborate with engineering to triage security findings and review remediation techniques in order to harden and improve the security of software across multiple types of products.

With NCR Voyix as a software-focused company, youll work in a fast-paced environment, helping enable teams to work in a DevSecOps model in a world of containers, automated pipelines, and rapid deployments. And youll be instrumental in helping teams add in security testing as part of their build and release pipelines. produces hardware and software for major companies in Retail, Restaurants, and Digital Banking come help secure the state-of-the-art!

Responsibilities:

Conducting manual penetration tests of software
Assessing risk level of security findings using standard methodologies
Running automated application security tools
Writing and presenting pen test reports to development teams
Consulting with development teams on remediation techniques and defensive coding
Validation testing to confirm findings are closed
Develop, integrate, and enable security engineering test automation into a CI/CD pipeline
Perform proof-of-concept and proof-of-technology testing for integrating new 3rd party security products into the development and deployment processes

We are seeking a highly skilled and experienced Technical Product Expert& SME with a deep understanding of security principles in on-premise and cloud environments, ideally with some offensive security background. The ideal candidate will have a strong background in leading technical and non-technical teams and extensive knowledge of security frameworks, remediation methodologies, and security operational models.



Responsibilities:

Provide technical guidance, mentorship, and support team members to ensure high-quality service delivery.
Methodological mindset to create and maintain security and product usability processes and enforce them with internal customers such as CSMs, SEs, and the product team
Collaborate with product and RND about product usage and feedback from the field
Continuously monitor, analyze, and report on key performance indicators (KPIs) of the product.
In escalated client meetings, provide product matter expert remediation insights, recommendations, and security best practices.
Stay abreast of industry trends, emerging technologies, and best practices in automation to provide strategic insights and recommendations for enhancing technical solutions.

We are seeking a highly skilled and experienced SOC Manager to lead the development and operation of our Security Operations Center. This role involves building a new SOC team, adopting and deploying SIEM (Security Information and Event Management) technology, and managing incident response in a hybrid environment (on-prem/cloud).

Responsibilities:

Team Recruitment and Leadership: Recruit and mentor a team of 2-3 SOC analysts. Lead, develop, and evaluate team performance.
Technology Selection and Deployment: Identify and deploy appropriate SIEM technology to enhance our cybersecurity posture.
Alert and Log Management: Map out all necessary alerts and logs for continuous monitoring and threat detection.
Alert Classification and Prioritization: Develop a system to classify and prioritize alerts based on severity and impact.
Hybrid Environment Monitoring: Oversee the monitoring of both on-premises and cloud-based systems.
Automation and Process Improvement: Implement automation strategies to enhance the efficiency and effectiveness of the SOC operations.
Incident Response Management: Lead and manage the incident response process, ensuring swift and effective resolution of security incidents.

We are looking for a highly skilled and motivated software engineer who, along with the rest of our excellent software engineers in the group, will be responsible for developing the core component of the product while adhering to company standards and processes.

You will be working closely with other members of the group on a regular basis as well as other groups in the company from time to time. Communication is key!

Duties will include (but are not limited to) designing and implementing the newest

and most popular cyber-attack techniques that are relevant to all of customers.

Our Security team is looking for a security savvy person to join as an Cloud Security Engineer to help validate our services and environments according to the highest security standards. You will work closely with our R&D and Security teams, and solve complex security problems.
The ideal candidate is highly motivated, demonstrates a can do' attitude and needs to have a combination of technical and communication skills, as well as the ability to handle a mix of multiple tasks including projects and technical work. This role will provide career growth opportunities as you develop & acquire new security skills in the course of your duties.
What youll do:
Manage the Cloud & Data Security Governance program for AWS/GCP
Design and implement our cloud/data security benchmarks
Own the cloud organization operations including Identity & Access Management and Securing Cloud Accounts/Projects
Build processes to effectively manage cloud and data risks across AWS/GCP environments
Partner closely with our security and devops teams to detect, prevent and remediate cloud & data risks
Provide mentorship & training around securing our cloud & data to stakeholders including Security & R&D teams.

The Hardware/Firmware Product Security Engineer will be a member of the Product Security Assurance team specializing in security considerations for hardware and firmware components in flash storage devices (SSDs). This individual will provide crystal-clear technical direction and risk mitigation guidance for diverse engineering and business leaders at all levels. This person will also lead the evolution of secure development practices for hardware and firmware components. During the product development process, this individual will advise the development team on security requirements and evaluate the architecture with a security lens. The HW/FW Product Security Engineer will lead security risk assessments, guide threat modeling activities, and participate in validation of security requirements at the component or system level. Our ideal teammate has experience architecting and developing hardware/firmware that meets the highest cybersecurity standards, is highly motivated and passionate about technology. This ideal candidate is eager to stay up to date with the latest industry trends and technologies and enjoys participating in industry consortiums. If this applies to you join our collaborative team to develop together the next big thing in data!

Essential duties and responsibilities:

Design and implement security architectures and features for hardware and storage devices
Be a key technical contributor to the continuous improvement of the Secure Development Lifecycle
Develop reference threat models for hardware components and devices overall
Assist development teams in adapting the reference threat model to the product/component specific threat model
Perform security assessments, code audits and design reviews of embedded platforms throughout the secure development lifecycle
Raise awareness and understanding of security considerations with engineers and leaders at all levels of the organization
Collaborate with development teams on security during design/development/testing
Partner with teams to develop robust security validation plans and verify implementations of security controls
Research and develop technical solutions to mitigate security risks
Participate in industry consortiums/standards bodies and conduct research to identify new attack vectors and industry trends