דרושים » אבטחת מידע וסייבר » Cloud Security Engineer

We are looking for proactive, analytical talented people to join the API Security Content team.
As a Security Engineer (API Content), you will analyze APIs, design API integrations, and more.
You will add content to our security and network products, such as XDR, CASB, DEM, DLP, etc.
Joining us is an excellent opportunity for network security enthusiasts who are passionate about the future of Networking and Security
Responsibilities:
Analyze cloud application APIs and develop products interacting with such APIs
Contribute to various products: DEM, XDR, CASB
Suggest and conduct new research vectors
Utilize our Data Warehouse with big-data technologies to support your work
Automate your work to improve efficiency.

We are looking for a Product Security Engineer to join our growing team!
This is a great opportunity to be part of one of the fastest-growing infrastructure companies in history, an organization that is in the center of the hurricane being created by the revolution in artificial intelligence.
Responsibilities
Implement and maintain security controls for applications and systems.
Conduct DAST, SAST, vulnerability scans, and penetration tests.
Develop and enforce security policies and best practices.
Monitor logs, investigate incidents, and respond to threats.
Collaborate with development teams to ensure secure coding practices.
Stay updated on emerging threats and industry standards.

As a Cyber Security Engineer in a fast-expanding operation team, you will be responsible for onboarding new global clients to the MXDR services, developing and maintaining detection scenarios and alerts, analysing the client's environment, and providing technical support and guidance to clients. To excel in this role, you will demonstrate strong technical aptitude, dedication to delivering high-quality work, and a cooperative approach to teamwork.



Main Responsibilities:

Lead the onboarding process for all new clients joining the MXDR services, working closely with the clients IT and security teams to ensure smooth implementations.
Develop detection scenarios and alerts for XDR solution (Velocity) to ensure effective threat detection and response.
Oversee Velocity KPIs and measurements set by the client, adjusting, analyzing and maintaining them according to their needs and tracking the impact of the platform on the client's networks, endpoints, applications, and cloud environments.
Continuously improve Velocity monitoring capabilities and keep up-to-date with the latest developments in the cyber threat landscape.
Provide technical support and guidance to clients on Velocity security-related issues, including implementing security best practices and ensuring compliance with industry standards.

We are looking for an SW Engineer to join our Research and Infrastructure team as part of the Security group. In this critical role, you will be responsible for designing and developing the infrastructure for our Security. You will own and develop various systems for our security operations, such as Threat intelligence sharing platforms, Threat hunting system, and modern big-data solutions to analyze data with high scalability from our Clouds data warehouse.
Responsibilities:
End to End development from the processing of large-scale data, integration with multiple internal and external services, to web interfaces.
Development of a unique malware-hunting and attack analysis platform that serves our Managed Threat Detection & Response service.
End-to-end development of content analysis and development platforms for signatures creation by our analysts and security content developers.
Development of analysis tools and infrastructure to support the teams research activities
Building new automation for protocol analysis, based on big-data technologies used by the team.

Were looking for a Product Security Architect to play a key role in ensuring our ML/AI platform remains secure while fostering innovation within our R&D team. If you have a strong security background and want to impact a fast-growing company, wed love to meet you!

You will be responsible for:

Designing secure systems and conducting threat modeling for new and existing features.
Identifying and mitigating security risks in architecture, applications, and infrastructure.
Performing security assessments, audits, and ensuring compliance with standards like ISO27001, PCI-DSS, and GDPR.
Integrating security best practices into CI/CD pipelines and development workflows.
Improving Secure Development Lifecycle (SDLC) practices within R&D and Product units.
Providing guidance and mentorship to development teams on secure coding and security principles.
Collaborating with engineering, product, and DevOps teams to embed security into all aspects of development.
Reviewing tools and processes to detect security threats and enhance security posture.
Communicating security risks and recommendations to technical and non-technical stakeholders.

Required Application Security Engineer
What is this opportunity?
As the Application Security Engineer, you will be responsible for integrating and maintaining robust security practices throughout the entire application development lifecycle. You will work closely with cross-functional teams including Software Engineering, DevOps and Product.
This role requires a security-minded professional who has deep experience in cloud-based architectures and is excited about building secure and scalable solutions.
How will you contribute?
Secure Software Development Lifecycle (SSDLC)- Collaborate with developers to integrate security best practices into all stages of the SDLC. Conduct secure code reviews, threat modeling, and vulnerability assessments.
Application Security Testing- Implement and manage SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) tools. Continuously monitor, track, and resolve identified vulnerabilities.
Cloud Security & Infrastructure- Work with DevOps/Infrastructure teams to secure cloud environments, including containerized workloads, CI/CD pipelines, and serverless functions. Configure and maintain cloud security best practices.
Security Architecture & Design- Collaborate on the design of new applications and features, advising on secure architecture patterns, encryption mechanisms, and identity & access management. Develop and maintain security reference architectures and technical standards.
Automation & Continuous Improvement- Identify opportunities to automate security checks and policy enforcement within the CI/CD pipeline. Research and recommend new security tools, technologies, and processes to enhance the security posture of the organization.

We are looking for proactive, analytical talented people to join the Security Applications Content team.
As a Senior Security Engineer (Network & Apps), you will analyze protocols and application traffic (L4-L7) using network and web analysis tools, as well as modern big data analysis frameworks.
You will add content to our security and network products such as NGWF, CASB, DLP, Device Management and more.
Joining us is an excellent opportunity for network security enthusiasts who are passionate about the future of Networking and Security
Responsibilities:
Research and analyze network and application behavior
Security products (NGFW,CASB,DLP,Device Management and more).
Suggest and conduct new research vectors
Utilize our Data Warehouse with big-data technologies to support your work
Automate your work to improve efficiency.

The position includes multiple challenging aspects, such as creation of detection analyses, attack scenarios research, team capabilities developments, client interactions, and in-depth investigation, which include host forensics work in both Windows and Linux systems, and cloud environments (e.g., AWS, GCP and Azure).



Main Responsibilities

Perform Post-Breach monitoring activities in global clients environment including in-depth triage of alerts and host forensics analysis.
Develop out-of-the-box and tailor-made analyses and detection to monitor the clients environment, often based on known threat actor tactics, techniques and procedures. This work may include research activities to support the detection development.
Support major Incident Response engagements with accurate detection after a potential active threat actor in the clients network.
Work on maintaining the necessary visibility and log forwarding for the ongoing monitoring engagements, including host-based data, Cloud environments, network devices, etc.
Apply proactive threat hunting approach in ongoing monitoring engagements, including forensic host and network-based analysis, malware hunt and wide IOC searches.
Develop capabilities and automations for alerts handling, triage and escalation, visibility maintenance, reporting, and more.
Onboard new customers by assessing their security posture, tailoring monitoring systems to their environment, and integrating their security frameworks into our services.
Often work alongside global clients security personnel when providing regular updates and following-up on alerts and security events.
Generate and provide reports and metrics on actionable data: incidents, weekly aggregation/trending, follow up procedures, visibility status, etc.