דרושים » מחשבים ורשתות » DevSecOps Solution Engineer

we are seeking a seasoned DevSecOps Engineer with deep expertise in AWS and GCP cloud infrastructure to join our growing security team. In this role, you will take the lead in safeguarding, designing, automating, and supporting the security of our companys cloud-native and IT environments.
As a key contributor to our cloud security strategy, you will conduct security assessments, manage vulnerabilities, and drive detection and response activities across our environments. You'll collaborate closely with our software development and DevOps teams to secure our CI/CD pipelines, production infrastructure, and core platform.
Additionally, you'll work alongside DevOps and IT teams to protect our companys scalable marketplace backend and massive data processing pipelinehandling billions of daily events and supporting hundreds of microservices.
What am I going to do?
CI/CD Security: Design, build, and maintain secure CI/CD pipelines with integrated automated security testing (e.g., SAST, DAST, SCA, container scanning) for our company's broad range of applications and services.
Threat Modeling & Risk Mitigation: Lead security reviews and threat modeling efforts across CI/CD and production environments, identifying and addressing risks to our companys products and supporting services.
Infrastructure as Code (IaC) Security: Define and implement best practices for secure IaC (e.g., Terraform, Ansible), including static analysis, misconfiguration detection, and compliance validation.
Container Security: Deploy and manage security solutions for containerized environments, focusing on secure image management, runtime protection, and policy enforcement.
Secrets Management: Establish and manage secure secrets management infrastructure (e.g., HashiCorp Vault or equivalent platform-agnostic solutions) across DevOps workflows.
Security Automation: Automate key security operations, including vulnerability scanning, compliance auditing, configuration checks, and incident response playbooks.
Cross-Functional Collaboration: Partner with DevOps and engineering teams to embed security into the development lifecycle, offering hands-on guidance and secure coding best practices.
Tooling & Innovation: Evaluate, implement, and maintain modern security tools to bolster our companys DevSecOps capabilities, with an emphasis on automation and operational efficiency.
Compliance & Governance: Ensure development and deployment workflows align with applicable security standards, corporate policies, and regulatory requirements.
Incident Handling: Contribute to security incident investigations and response activities.
Training & Enablement: Educate and train internal stakeholders on cloud infrastructure and IT security best practices.

We are seeking an experienced DevSecOps Engineer to secure and automate our cloud environments. In this role, youll ensure our production environment meets top security standards while integrating cutting-edge technologies. You'll implement security initiatives, drive automation in CI/CD pipelines, and collaborate with development and operations teams. Your expertise in AWS security services and DevSecOps practices will be crucial for enhancing our cloud security and managing incident response
Role:
Collaborate with a dynamic team of DevSecOps professionals to enhance and maintain robust platform security.
Assist in the design, implementation, and monitoring of comprehensive security solutions to protect our systems and data.
Contribute to the development and deployment of advanced solutions to automate security tool integration and enhance overall security posture.
Help implement robust information security controls and patterns to support risk assessments and the creation of secure architectures.
Collaborate with Product & Data Security, Engineering, and DevOps teams to define and execute security strategies and initiatives.
Participate in efforts to establish and enforce security best practices and standards across the development lifecycle.
Engage in learning opportunities and seek guidance from team members to foster professional growth and skill development.

As a Senior DevSecOps Engineer, you'll tackle complex security challengesfrom securing our cloud infrastructure to optimizing security controlscrafting inventive strategies that drive operational efficiency across our expanding systems. You'll work closely with cross-functional teams to shape and implement security practices that ensure the safety and compliance of our business. If you thrive on ownership, collaboration, and pushing security boundaries in a dynamic environment, this role offers an opportunity to make a significant impact.

You will be responsible for:

Securing and optimizing our cloud services, with a primary focus on AWS, to ensure robust security and compliance.
Following alignment with industry security best practices for DevOps services and tools.
Supporting and enhancing our monitoring and alerting systems to detect and respond to threats together with our ProdSec team.
Developing and implementing threat detection strategies to identify and mitigate potential risks.
Automating the deployment of security controls to ensure consistent and scalable protection.
Acting as a focal point for security and compliance-related queries and strategies within the DevSecOps team in our DevOps group, driving smarter security decisions that align with business goals.

Become a pivotal part of Teadss security team as a Senior SIEM, Incident Response, and SecOps Engineer. This role positions you at the heart of our innovation group, driving initiatives around SIEM technology (specifically Splunk), SOAR (Security Orchestration, Automation, and Response), and operational security excellence.
The ideal candidate will have deep technical knowledge across various cybersecurity tools and technologies, solid understanding of information security and networking principles, and extensive experience collaborating with diverse stakeholders. You will act as a Subject Matter Expert (SME) for Splunk Enterprise, helping Teads achieve robust security monitoring and incident response capabilities while improving operational efficiency.
What will you do?
Splunk Administration and Expertise
Serve as the Splunk Subject Matter Expert to design, configure, manage, operate, and administrate Splunk cloud and Splunk Enterprise Security platforms for managed SIEM infrastructure.
Utilize expert knowledge of Splunk architecture and cloud implementations to optimize performance, redundancy, and scalability.
Create, refine, and maintain data models, rules, advanced dashboards, TSTATS searches, and correlation alerts tailored to organizational needs.
Leverage the Splunk Common Information Model (CIM) for enriched event classification and analysis.
SIEM and SOAR Operations
Develop and enhance custom playbooks, actions, automation workflows, and integrations for SOAR platforms to streamline security operations.
Translate security risks into actionable SIEM use cases and implement workflows and monitoring playbooks to mitigate identified risks effectively.
Guide the design, development, and review of complex SIEM content, ensuring alignment with stakeholder requirements and best practices.
Recommend and implement process improvements for SIEM and SOAR operational efficiency.
Incident Response and Investigation
Lead investigations into suspected security incidents or breaches and analyze security events for actionable insights.
Offer consultative advice on security principles and incident response best practices.
Coordinate incident response actions among internal teams, including written and verbal communication with stakeholders at various levels.
Actively document all capabilities, processes, and key findings related to security operations and incident management.
Team Collaboration and Security Enablement
Work cross-functionally with IT, DevOps, and Development teams to ensure that SIEM content and SOAR integrations address organizational needs.
Provide technical insight and mentorship to team members while acting as a trusted security expert for broader business functions.
Collaborate with stakeholders to map risks to security monitoring requirements and offer tailored recommendations for improvements.

We are looking for a Product Security Specialist with a strong background in cloud-native applications and DevOps practices to help secure our products throughout the software development lifecycle. You will partner with engineering and DevOps teams to identify risks, improve resilience, and embed security into every phase of the product pipeline.
This role is ideal for someone who thrives at the intersection of security and engineering and is passionate about securing modern, scalable applications.
Key Responsibilities:
Security Risk Analysis: Evaluate new features, services, and architectural changes for potential security risks in cloud-native environments (e.g., Kubernetes, serverless, microservices).
Threat Modeling: Lead and facilitate threat modeling sessions with engineering teams to identify potential risks and mitigation strategies early in the design process.
Security Review & Assessment: Conduct in-depth security reviews of cloud infrastructure, CI/CD pipelines, and application designs.
Vulnerability & Patch Management: Collaborate with DevOps and SRE teams to monitor vulnerabilities, manage security patches, and improve response times across containers, runtimes, and third-party libraries.
Security Automation & Scanning: Integrate and analyze results from automated security tools (e.g., SAST, DAST, SCA) in CI/CD pipelines, and guide teams on remediation.
DevSecOps Enablement: Champion secure coding and DevSecOps practices by working closely with developers and DevOps teams to implement security controls as code.

We are seeking a highly motivated and experienced SecOps Engineer to join our dynamic security team. In this role, you will be responsible for ensuring and enhancing the overall security posture of our cloud-native environment. Your responsibilities will include monitoring security systems, detecting and responding to incidents, and automating key security operations tasks. You will collaborate closely with other members of the security team, as well as development and operations teams, to ensure a secure and resilient infrastructure.
What am I going to do?
Security Tool Management: Configure and optimize security tools to ensure maximum visibility and effectiveness.
Security Monitoring: Continuously monitor logs and alerts from security platforms (e.g., SIEM, IDS/IPS, EDR, and cloud monitoring tools) to identify potential incidents.
Threat Detection & Analysis:Investigate security events and alerts to identify threats and vulnerabilities, prioritizing remediation efforts.
Incident Response:Support the incident response process, including containment, eradication, and recovery, under the guidance of the Incident Response Manager.
Vulnerability Management (Infrastructure): Conduct vulnerability scans and coordinate the remediation of findings across infrastructure components, including servers, networks, and cloud services.
Cloud Security Monitoring: Oversee the security posture of cloud environments (AWS, GCP) and respond to cloud-specific security incidents.
Security Automation: Automate recurring security operations tasks such as vulnerability scanning, incident triage, and configuration management.
Cross-Team Collaboration: Partner with development, operations, and security stakeholders to implement and maintain effective security controls.
Security Processes: Develop and refine processes to keep the team updated on evolving cybersecurity threats, technologies, and best practices.
Tooling & Innovation: Research and integrate new security tools and technologies to enhance our overall security capabilities.

we are on a mission to reverse the adversary advantage by empowering defenders with ingenuity and technology to end cyber attacks.
We have the technology, and now we are looking to expand our talent! - Come and talk to us about joining a market leader and a diverse team of passionate people who win as one, ensuring a customer-first approach is core to everything we do and never giving up on reversing the adversary advantage.
we are looking for passionate and talented individuals with a strong background in cloud-based applications and infrastructure to join our team and help shape the future of cybersecurity.
In this position you will:
Design, implement, and maintain robust security measures across our cloud environments, protecting our services and data against evolving threats.
Collaborate with software development and DevOps teams to secure our companys products, CI/CD pipelines, and production environments.
Become an integral part of an autonomous, cross-functional agile team.
Partner with engineers, product owners, and designers to tackle complex cybersecurity challenges.
Engage with a team of experienced engineers in a fast-paced CI/CD environment using cutting-edge technologies.
Take ownership of projects from conception through development, quality assurance, and deployment.
Work in a dynamic environment that supports personal and professional growth.

Were looking for an experienced and driven DevSecOps professional to join our R&D group.
Key Responsibilities: CI/CD Security: Design, build, and secure CI/CD pipelines (AzureDevOps, GitHub Actions, GitLab CI, etc.). Infrastructure as Code (IaC): Harden Terraform, Helm, CloudFormation, or Ansible configurations to prevent misconfigurations and enforce policy as code. Cloud Security: Implement and monitor cloud security controls (AWS/GCP/Azure), including identity, networking, and logging. Shift Left: Integrate security scanning tools (SAST, DAST, SCA, IaC scanners) into the development pipeline. Threat Modeling & Automation: Proactively assess risk across deployments and automate detection of vulnerabilities or misconfigurations. Container Security: Design security measures for container build and runtime environments (Docker, Kubernetes, EKS/GKE/AKS, etc.). Security Monitoring: Work with security monitoring and Compliance monitoring tools. Incident Response Readiness: Assist with Incident Response from a solution research and hardening perspective.