לוח משרות דרושים מומחה אבטחת מידע / סייבר במרכז

Requirements:
Lead a team of top-tier cyber security researchers and forensic experts conducting assessments and in-depth analysis in complex investigations, as well as security assessments.

Guide and empower team members, enhancing their technical and research skills.

Lead client-facing projects including incident response and hunting efforts for large-scale sophisticated attacks, to contain and defeat real-world cyber threats.

Collaborate and work with clients IT and Security teams during investigations.

Design and improve internal incident response technologies, methodologies, and processes.

At least 3 years experience in team management (from military service and/or industry).

Excellent English spoken and written.

In-depth understanding of the lifecycle of advanced security threats, attack vectors and methods of exploitation.

Strong technical understanding of network fundamentals, common internet protocols and system and security controls.

Experience with the tools and techniques used in security event analysis, incident response, computer forensics, malware analysis, or other areas of security operations.

Multidisciplinary knowledge and competencies, such as:

o Hands-on experience in data analysis (preferably network traffic or log analysis) in relevant data analysis and data science platforms (Jupyter, Splunk, pandas, SQL).

o Familiarity with cloud infrastructure, web application and servers, Android and iOS mobile platforms.

o Experience with malware analysis and reverse engineering.

o Familiarity with enterprise SIEM platforms (e.g. Splunk, QRadar, ArcSight).

Exceptional reporting and analytics abilities, written and oral presentation skills must be able to articulate complex technical issues in a concise and confident manner, and provide status updates to a variety of audiences, including technical personnel and executive-level management.

Ability to work in a dynamic matrix organizational structure, with people across all levels in the company, including executives and technical stakeholders.

Team-oriented, with excellent communication skills.

Decisive, bright, and positive leader, who strives for excellencee.

Previous experience in strategy or cybersecurity consulting an advantage.

Willingness for extensive travel abroad.

Requirements:
At least 4 years of hands-on experience as a Cyber Security Engineer in the cyber security industry.
Relevant experience may include working as a SOC/MSSP Integrator, SOC/MSSP Tier 3 Analyst with integration experience, or Cyber Security Engineer role.
Very high proficiency in English (written and spoken).
Experience in implementing EDR, SIEM, email security, WAF, NAC, and firewall cyber security solutions.
Experience with providing technical guidance and support to global clients.
Familiarity with log collection methodologies and systems, auditing policies, and maintaining visibility across networks, hosts, and cloud environments.
Deep understanding and proven experience working with cloud security environments, architectures, and solutions.
Demonstrated experience working with Linux operating systems (proficiency in Linux command-line tools, including file manipulation, system administration, and troubleshooting).
Experience working with relational databases, preferably SQL.
Familiarity with cyber security industry standards and best practices.
Excellent problem-solving skills and the ability to work independently.
Advanced familiarity with the cybersecurity threat landscape and attack scenarios.
Excellent communication skills, including strong ability to elaborate on a technical idea.
Proven experience with OT environments significant advantage

Requirements:
IT or Security related degree or certification
At least 3 years of experience in similar positions.
Knowledge and experience managing and deploying systems and processes similar to:
Security protocols functionality
Firewalls, URL filtering, email and domain protections
EDR/EPP anti-malware products
SIEM systems management and configurations
Security incidents alerting and monitoring processes
Incident Response processes
Outstanding communication skills that go beyond tech talk the ability to translate complex IT matters to those without an IT background
Strong time management and organizational skills
Previous exposure to MAC, Windows and Linux Operating Systems
Coding languages: Python, Bash, Powershell, minimum knowledge is a must

Requirements:
* Experience as an information security architect in a financial company
* At least 3-5 years in Information Security roles
* Experience in leading Information Security projects from initiation to delivery, including RFI/RFP phases, SOW definition, plan, integration, and full delivery
* Experience with OS security, mainly Linux
* Experience with information security systems including Network firewalls, IDS/IPS, WAF, Multi-Factor Authentication platforms, VPN systems, Central anti-virus systems, etc.
* Experience with cloud infrastructure/cloud security (mainly AWS)
* Experience with open-source tools and platforms
* Excellent English (both speaking and writing) Advantages:
* Required: CCNA, advantage: CISSP and/or CSSLP certification
* Experience with web & application security, familiar with OWASP frameworks, solutions and initiatives
* Experience with database security, mainly Oracle, MySql, and PostgreSQL
* Experience with security projects such as Static Code Analysis, DB Firewall, and CASB implementations
* Experience with offensive security and penetration testing tools

Requirements:
B.S. or M.S. in Computer Science or related field, or equivalent experience.
Experience with exploiting common security vulnerabilities.
Ambitious and results-oriented, with excellent communication skills.
Proven track record of finding web application and or cloud infrastructure vulnerabilities.
3+ years of work experience writing code in one or more of the following programming languages: JavaScript, Python, PHP, Java, Ruby, C/C++, Go, or Rust (or a similar language).

Requirements:
At least 5+ years of multifaceted defensive and offensive security experience in an enterprise Saas-based company
Strong technical knowledge and deep experience in security logging and monitoring, vulnerability assessment, risk-based analysis, and vulnerability mitigation
A skilled security expert who can implement tools and processes to incorporate threat intelligence from the ground up and automate threat-hunting
Operational experience with AWS security solutions (e.g Inspector, Guarduty, Detective, Security Hub, Advanced Shield)
Hands-on experience designing and deploying security controls across all security domains, such as access management, data protection, vulnerability management, incident response and management, application security, network security, preventive, detective, and offensive security solutions
Capable of leveraging programming and/or scripting languages to solve practical day-to-day security challenges (Python, Go, Ruby)
Strong understanding of encryption technologies (e.g, TLS, HMAC, RSA, AES, PKI)
Strong understanding of Web-related technologies (e.g, HTTP, SOAP, REST, TCP / IP)
Experience conducting or managing incident response for organizations, investigating targeted threats
Experience and knowledge of common penetration testing techniques, application security vulnerabilities, OWASP Top 10, SANS 25, CWE, etc
Bachelors or Masters degree in computer science or equivalent experience
Information security professional certifications are a plus (CLSSP, CISSP, CISA, GSSP, GSEC, etc.)
Soft Skills / Personal Characteristics:
Ability to work autonomously in a fast-paced, cross-functional environment and comfortable with ambiguity

Requirements:
At least 4+ years of security experience, out of which at least 1 year as a security researcher
Experience in Python or another programming language
Wide knowledge in information security, deep understanding of security practices, vulnerabilities and defenses.
Creative thinker, has the ability quickly dive into new unfamiliar challenges
Good communication skills, ability to explain and simplify complex ideas
Basic Data Skills an advantage
Reverse engineering experience an advantage
Vulnerability research experience a big advantage
Experience working with customers an advantage
Bachelor's degree in Computer Science or equivalent Degree - an advantage
Knowledge in network protocols an advantage
Desire to work in a fun, fast paced environment, in a great team!

Requirements:
2+ years of hands-on experience in offensive application security.
In-depth knowledge of web application vulnerabilities, their exploitation in the real world, and browser security mechanisms.
Passion about cutting-edge technologies
Open-minded self-learner.
Youll get bonus points if youve:
Published security research
Participated in bug bounty programs
Familiar with Node/Java/Scala programming languages
Worked with Docker containers and Kubernetes
Knowing your way around AWS and GCP environments, or cloud and microservice architectures.

Requirements:
At least 4 years of DF&IR/security experience, including at least one year as a Security Researcher/Incident Responder/Threat Hunter or similar role
Experience with SQL and advanced querying
Experience in Python or another programming language
Wide knowledge of information security and a deep understanding of security practices, vulnerabilities, and defenses
Creative thinker, has the ability to dive into new, unfamiliar challenges quickly
Experience working with customers and client-facing skills
Good communication skills and ability to explain and simplify complex ideas in English
A bachelors Degree in computer science or an equivalent degree is an advantage
Experience with DataGrip\Snowflake - an advantage
RE experience - an advantage
ML detection development experience an advantage
Desire to work in a fun, fast-paced environment and in a great team!

Requirements:
Great knowledge and understanding of the cyber security space (detection, vulnerability management, pentesting, etc)- must
3+ years of experience in a product management role
Experience leading new products and product features through ideation, research, planning, development, go-to-market and feedback cycles
Strong technical background with the ability to understand and evaluate complex technical and data concepts
Excellent communication, collaboration, and problem-solving skills
Experience with agile development methodologies

Requirements:
Experience with security review of source code Must!
At least 5 years of experience in application security or security research, including the understanding of application security attacks, vulnerabilities, and mitigations- Must!
Knowledge of common Web Application security vulnerabilities (OWASP TOP10, SANS 25, etc.) Must!
Experience with at least 2-3 of the following programming languages -Java, C#, Go, JS, Python, PHP, Ruby, etc- Must!
Language agnostic approach to vulnerability identification in the source code (ability to read multiple programming languages source code and identify vulnerable parts).
Proven experience leading tasks and projects end-to-end, passion to grow to a TL position
Excellent English written and verbal.
Excellent interpersonal and communication skills.
Advantages:

BSc or BA in Computer Science or a similar degree
Experience in managing application security engineers
Experience working with development teams.
Experience with bug bounty research or published advisories or exploits for discovered 0day vulnerabilities in applications.

Requirements:
At least 5 years of experience as a Software Engineer or Security Researcher.
Expertise in cyber-security or vulnerability research, including knowledge of attacks, vulnerabilities, and their countermeasures.
Proficiency in at least one of these languages: C, C++, Rust, Go
Proficiency in at least two of these languages: Python, JavaScript, Java, C#, PHP, Ruby, Scala
Strong background in Linux, system calls, file systems, kernel, etc.
Experience with containerization and microservices architecture.
Familiarity with cloud platforms such as AWS, GCP, Azure.
Skilled in continuous integration and deployment (CI/CD) processes.
Knowledge of database and message queue technologies.
Experience in developing high-scale, cloud-native SaaS products.

Requirements:
Over 2 years experience in similar roles.
Understanding of the lifecycle of advanced security threats, attack vectors, and methods of exploitation.
Hands-on experience working with SIEM technologies.
Familiarity with common data and log sources for monitoring, detection and analysis (e.g., Event Logs, firewall, EDR).
Strong technical understanding of network fundamentals, common internet protocols, and system and security controls.
Familiarity with log file formats and understanding of log collection methods including scripting capabilities.
Experience with working with a cloud based environment.
Fluent English (written, spoken) a must.