דרושים » אבטחת מידע וסייבר » SOC ANALYST TIER 1

We are seeking a highly skilled and experienced SOC Manager to lead the development and operation of our Security Operations Center. This role involves building a new SOC team, adopting and deploying SIEM (Security Information and Event Management) technology, and managing incident response in a hybrid environment (on-prem/cloud).

Responsibilities:

Team Recruitment and Leadership: Recruit and mentor a team of 2-3 SOC analysts. Lead, develop, and evaluate team performance.
Technology Selection and Deployment: Identify and deploy appropriate SIEM technology to enhance our cybersecurity posture.
Alert and Log Management: Map out all necessary alerts and logs for continuous monitoring and threat detection.
Alert Classification and Prioritization: Develop a system to classify and prioritize alerts based on severity and impact.
Hybrid Environment Monitoring: Oversee the monitoring of both on-premises and cloud-based systems.
Automation and Process Improvement: Implement automation strategies to enhance the efficiency and effectiveness of the SOC operations.
Incident Response Management: Lead and manage the incident response process, ensuring swift and effective resolution of security incidents.

Power the Future with us! we are a global leader in high-performance smart energy technology, with over 5000 employees, offices in 34 countries, and millions of products installed in over 133 countries. Our diverse product offering comprises intelligent solar inverters, battery Storage, backup systems, EV charging, and complete home energy management ecosystems. By leveraging world-class engineering capabilities and with a relentless focus on innovation, we strive to create a world where clean, green energy from the sun is the primary source of power for our homes, businesses, and just about everywhere we thrive We are looking for a talented, team-person who will join our Cyber security team and help us tackle the toughest security challenges in protecting the company digital assets in our network. This role is a team member in our security operations team (SecOps). The Cyber security team is composed of strong and experienced security engineers, responsible for design, implement, analyze, and maintain an on-prem/cloud-based security controls in accordance with threat analysis process Job Description:
* Identifying security flaws and vulnerabilities in systems and the network of a company and ensuring the integrity of information security controls.
* Define, operate, and analyze WEB/Infra penetration tests using automated tools
* Will lead the implementation of Cyber security systems in the organization
* Identify and evaluate potential security gaps and threats
* Research new innovative methodologies and technologies to secure remaining gaps.

We are looking for a Security Architect to join our architecture team within the Critical Cyber Operations Group.
As a Security Architect you will review our clients current organizations infrastructure, whether it is on-prem or cloud-based, identify security vulnerabilities and offer a viable plan to rectify them.
Responsibilities:
Perform architecture reviews on designed or deployed environments, identifying security flaws and recommending mitigations plans
Escort, evaluate and improve our clients security posture by elevating their infrastructure resilience and implement best-practice organizational procedures
Escort mitigation plans and design practical implementations for security issues e.g., firewall policies review, segmentation & segregation recommendations, Microsoft AD-tier Model implementation etc.
Research and advocate for new security solutions and technologies

Our DFIR team is responsible for responding to our clients' cyber incidents and crises.Our group is expanding. If you see yourself in the front line of the cybersecurity domain as a data forensic and incident response (DFIR) talent, your place is with us. As a DFIR team member, you will participate in hands-on security research and investigations, helping our customers understand and mitigate cyber threats and attacks.
Responsibilities:
Perform incident response lifecycle and real-time activities, including detection and analysis, containment and eradication, and recovery
Perform incident response in a cloud environment (Azure, AWS, etc.).
Perform digital forensics investigations
Research and analyze tactics, techniques, and procedures (TTPs) used by malicious actors
Perform hunt-evil and find-evil activities for proactively detecting attacks
Work closely with our in-house red team, CTI, and cyber architect teams
Work closely with worldwide companies, CISOs, and technology experts

As an Intelligence Manager, you will:

Lead a team of intelligence analysts
Support the companys management and others decision-makers by providing both data and insights related to the industry and per ad-hoc assignments
Establish intelligence collection and insight gathering methodologies
Serve as the expert point of contact for any question related to the companys domain including technological, regulation and geological trends
Have a real-time understanding of competitor landscape
Be responsible for handling sensitive information, preparing intelligence reports and providing recommendations
Establish and utilize intelligence sources as well as advanced collection tools
Identify gaps, inform and influence stakeholders through presentation of data-based recommendations
Produce intelligence products at tactical, operational and strategic levels

As a 24/7 Monitoring and Technical Support, you will:

Work in shifts 247, including weekends and holidays
Handle day-to-day production issues
Provide clients with a professional and friendly first point-of-contact for all incidents
Continuously develop and improve the teams service and processes
Perform preventive maintenance
Troubleshoot and debug technical incidents

We are seeking a highly skilled and experienced Technical Product Expert& SME with a deep understanding of security principles in on-premise and cloud environments, ideally with some offensive security background. The ideal candidate will have a strong background in leading technical and non-technical teams and extensive knowledge of security frameworks, remediation methodologies, and security operational models.



Responsibilities:

Provide technical guidance, mentorship, and support team members to ensure high-quality service delivery.
Methodological mindset to create and maintain security and product usability processes and enforce them with internal customers such as CSMs, SEs, and the product team
Collaborate with product and RND about product usage and feedback from the field
Continuously monitor, analyze, and report on key performance indicators (KPIs) of the product.
In escalated client meetings, provide product matter expert remediation insights, recommendations, and security best practices.
Stay abreast of industry trends, emerging technologies, and best practices in automation to provide strategic insights and recommendations for enhancing technical solutions.

We are looking for a Design Verification Engineer.
In this visible role, you will be responsible for taking part of a SoC verification
process of a large scale SoC.
You will develop verification test plans, tools, test benches, protocol monitors, and high-coverage stimulus vectors.
Apply advanced techniques to achieve verification with the highest quality, productivity, and time-to-market.
You will work closely with the design team to ensure timely delivery of quality designs.
Working with methods to accelerate verification time.
Involvement in Post Silicon Validation.
The position is relevant to all sites: Herzliya, Haifa and Jerusalem

We are looking for a Senior Red Team with a deep understanding of both information security and computer science. The right person will have to learn advanced concepts such as application manipulation, exploit development, and stealthy operations.
This is not a press the button type of job! This career is technical and challenging with opportunities to work in some of the most exciting areas of security on extremely technical and challenging work.
A typical job could be breaking into a segmented secure zone at a Fortune 500 organization, reverse engineering an application and both developing and exploiting the most recent vulnerabilities, all without being detected.
Responsibilities:
Global organization red-team assessments and security posture
Co-ordinate and execute systems and network level advanced red team exercises for different environments
Design and develop scripts, frameworks and tools required for facilitating and executing complex undetected attacks
Configure and troubleshoot security infrastructure devices
Develop technical solutions and new security capabilities to help mitigate security vulnerabilities and automate repeatable tasks
Write or assist with comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement.

Shift4 is boldly redefining commerce by simplifying complex payments ecosystems across the world. As the leader in commerce-enabling technology, Shift4 powers billions of transactions annually for hundreds of thousands of businesses in virtually every industry. For more information, visit shift4.com As part of our continued growth, we're looking for an Information Security Architect. Key Roles and Responsibilities:
*  Play key role in product & system design, reviews and solution architecture, and provide security guidelines, all in a highly regulated ecosystem.
*  Control and manage mitigation plan implementation as part of the above security guidelines
* Identify, research, explore, and lead the evaluation and implementation of new security controls for the required business projects
*  Work closely with the product team to enhance Finaro’s product security
* Work with IT teams on new innovative infrastructure projects, including VM environments, network infrastructure, storage systems, DB platforms, and cloud environments, and provide security guidance for all related fields and layers respectively
* Work with R&D teams to enhance application security within Finaro software