דרושים » אבטחת מידע וסייבר » Identity & Access Management - 2503

we have created an intuitive Social Trading platform that gives traders and investors access to global stock markets, commodity trading, cryptocurrency trading, and more. We strive to make money management available and accessible to everyone (even to users with no prior experience or knowledge). We have over 33 million users worldwide, and our platform is available in over 140 countries around the world.
With over 1500 employees worldwide, We have locations in the US, Cyprus, UK, Australia, Germany, and Israel, and we are constantly growing and expanding into new markets.
We are constantly growing and are excited to share that we are looking for a Blockchain Security Architect to join our team!
Join us as a Blockchain Security Architect at our company, where innovation meets security in the dynamic world of blockchain technology. Our mission is to build secure, scalable, and user-friendly blockchain solutions that empower businesses and individuals alike. As part of our cutting-edge team, you will play a crucial role in shaping the security landscape of new coins, blockchains, and digital assets.
We are at the forefront of blockchain security, providing top-notch services across various domains, including staking, decentralized finance (DeFi), and custody solutions. With a diverse, global team and a collaborative work environment, we are dedicated to fostering growth, learning, and excellence in everything we do.
Your Primary Responsibilities:
Security and Technical Analysis: Conduct in-depth security and technical assessments of new coins and blockchain platforms to ensure robustness and reliability.
Risk Analysis: Perform comprehensive risk evaluations for various blockchain operations such as staking, DeFi, and custody, identifying potential vulnerabilities and proposing mitigation strategies.
Secure Development Support: Collaborate closely with R&D teams to embed security into the development lifecycle, ensuring adherence to best practices and architectural guidelines.
Infrastructure and Product Security: Review and define architectural standards for blockchain infrastructure and products, fostering a secure ecosystem.
Custody Solutions Management: Develop and implement secure operational policies for custody, managing a variety of technology providers and solutions.
Perform hands-on technical operations of the Custody solution, including managing and configuring hardware and software used in Custody operations.
Set up computers from scratch, implementing both basic and advanced security policies to ensure the integrity and confidentiality of Custody operations.
Collaborate with the team to design Custody policies for all related solutions, including physical security policies and computer policies.
Risk Framework Development: Lead the creation and management of risk frameworks in coordination with internal stakeholders, focusing on security and risk mitigation.
Blockchain Monitoring and Playbooks: Define and execute on-chain monitoring strategies and develop playbooks for handling blockchain activities and incidents.

abra is hiring a Cyber security Team Leader Planning, implementation, and maintenance of CIS benchmarks at levels 1 and 2 across various platforms to ensure system hardening and compliance with regulatory requirements. Design, implementation, and maintenance of endpoint security solutions using the Trellix (formerly McAfee) protection suite or similar, including endpoint protection, device control, change control, and application control. Management and optimization of 802.1x-based Network Access Control (NAC) solutions to ensure secure device authentication and network access. Design, configuration, and maintenance of firewall infrastructure , implementation of security policies, and ensuring optimal performance. Management of VMware virtualization infrastructure with a focus on security configurations. Management and security assurance of Windows and Linux operating systems in an enterprise environment. Development and maintenance of security documentation , including policies, procedures, and technical specifications.

we are looking for an experienced Application Security Architect to join our Cybersecurity team. In this role, you will be instrumental in building and advancing our companys application security programs. Working closely with talented engineers, product managers, and platform teams, youll play a key role in ensuring the security of our software development lifecycle (SDLC).
Youll provide security services including secure coding practices, architecture reviews, awareness and training initiatives, and tool implementation. From threat modeling to secure development education, your contributions will directly impact the safety and resilience of our companys products.
What am I going to do?
Lead Secure SDLC Initiatives: Drive security throughout the software development lifecycle (S-SDLC), including threat modeling, risk assessments, and mitigation planning for new and existing applications.
Embed Secure Design Practices: Guide development teams on implementing secure architectural patterns, design principles, and coding standards, with emphasis on OWASP and industry best practices.
Security Tooling Strategy: Define and manage the integration of Static (SAST), Dynamic (DAST), and Software Composition Analysis (SCA) tools into our companys CI/CD pipelines, ensuring scalable, platform-agnostic coverage and effective vulnerability management.
Security Testing & Remediation: Perform and oversee application security testing, ensuring timely remediation of identified vulnerabilities.
Develop Security Standards: Create and maintain secure coding standards, best practices, and development guidance tailored to our companys tech stacks.
Code Reviews: Conduct in-depth manual and automated security code reviews for critical components, offering practical and constructive feedback to engineering teams.
API & Mobile App Security: Design and assess security for APIs and mobile applications, ensuring robust authentication, authorization, and data protection in line with industry standards.
Third-Party Risk Management: Evaluate the security posture of third-party libraries, components, and services integrated into our company's applications.
Cloud Security Collaboration: Partner with Cloud Security Architects to ensure secure application deployment in cloud environments (e.g., AWS, GCP), offering expert advice on cloud-native security practices.
Team Enablement & Education: Mentor development teams on emerging threats, secure coding techniques, and security-first development approaches.
Bug Bounty Program Leadership: Manage and evolve our companys bug bounty program, working with researchers and internal teams to resolve findings efficiently.

Are you ready to power the future? At SolarEdge (NASDAQ: SEDG), we're a global leader in smart energy technology, with over 4,000 employees, offices in 34 countries, and millions of installations worldwide. Our innovative solutions include solar inverters, battery storage, backup systems, EV charging, and AI-based energy management. We're committed to making clean, green energy the primary power source for homes, businesses, and beyond. With the growing demand for electricity, the need for smart, clean energy sources is constantly rising. SolarEdge offers amazing opportunities to develop your skills in a multidisciplinary environment, covering everything from research and development to production and customer supply. Work with talented colleagues, tackle exciting challenges, and help create a sustainable future in an industry that's always evolving and innovating. Join us and be part of a company that values creativity, agility, and impactful work. This role is a team member in our security engineering team. The Cyber Security team is composed of strong and experienced security engineers, responsible for designing, implementing, analyzing, and maintaining an on-prem\cloud-based security controls in particular OT security. What you will be doing:
* Manage the day-to-day operations of the company’s security infrastructure systems.
* Will lead the implementation of IT/OT cyber security systems in the organization.
* Provide security guidelines to various projects and systems.
* Research new innovative technologies to mitigate security gaps and work to implement in the production

Country:
Israel

City:
Herzliya

we are a global leader in control systems for quantum computing, a field on the verge of exponential growth. Our innovative hardware and software mark a groundbreaking approach in quantum computer control, scaling from individual qubits to expansive arrays of thousands. At the core of our company's lies a passionate and ambitious team committed to reshaping the construction and operation of quantum computers. Our work is fueled by a deep understanding of customer needs, driving us to deliver unparalleled solutions in this revolutionary field.
We are looking for a Networking and Security Specialist with a strong technical foundation in enterprise networking and a hands-on approach to firewall and infrastructure security. You will take ownership of managing and improving network and security posture across multiple locations, including day-to-day administration of FortiGate firewalls, and play a key role in shaping broader security practices across the organization.
This is a critical role for someone ready to take on large-scale improvement projects and grow into broader security responsibilities beyond networking.
What Youll Work On
Leading improvements to network and firewall configurations across multiple sites.
Hardening perimeter and internal security through better policies and visibility.
Building scalable monitoring/logging infrastructure to support real-time troubleshooting and long-term security insights.
Helping to define security standards for networking and other layers of infrastructure.
Key Responsibilities
Manage and improve networking infrastructure across several sites (access, distribution, and core).
Administer and harden Fortinet FortiGate firewalls, including policies, rulesets, VPNs, and remote access.
Continuously assess and enhance network security posture through segmentation, access control, and best practices.
Configure and maintain VLANs and routing on switches and firewalls (Fortinet, Cisco; Aruba experience is a plus).
Troubleshoot network and security issues and optimize for performance and resilience.
Plan and lead improvement projects across the networking stack from design to implementation.
Deploy, maintain, and improve production-level monitoring and logging systems (e.g., Grafana, Datadog, Elastic, Zabbix).
Build out observability and alerting for critical systems and infrastructure.
Potentially take on additional security responsibilities over time including endpoint, identity, or cloud security layers.
Collaborate with cross-functional teams to ensure secure and efficient network operations.
Document network architecture, security rules, monitoring design, and incident responses.

We're looking for an Infrastructure Security Engineer to join our global team. The ideal candidate will possess extensive experience at on-prem and cloud Infrastructure and systems Security, who has worked in a large enterprise environment. As an IT Infrastructure Security Engineer, you will protect hundreds of servers and assets, protect multi-vendor environments across data centers, both on-premises and in the public cloud while also having the opportunity to grow and learn new technologies.
Responsibilities:
Manage and Securing Infrastructure on Clouds and On-Premises according to our guidelines.
Solid understanding of administering and securing Windows systems, Linux Advantage
Familiarity with firewalls, routing protocols, subnetting, and network security concepts and protocols.
The ability to automate tasks using scripting languages like Python, Bash, or PowerShell is essential.
Proficiency in identifying, assessing, and mitigating security vulnerabilities in IT infrastructure using vulnerability scanners, Perform advanced
troubleshooting on issues and root cause analysis.
Knowledge of cloud security best practices and experience with cloud platforms like Azure, AWS Advantage.
Assisting with the evaluation of next generation platforms and ensuring direct fit with Infrastructure and business use-cases
Strong analytical and problem-solving skills to troubleshoot security issues and develop solutions.

A leader in disaggregated high-scale networking solutions for service providers and AI infrastructures. Founded in December 2015, created a radical new way to build networks by adapting the architectural model of the cloud to telco-grade networking. This solution accelerates network deployment, improves the networks economic model, and radically simplifies network operations. With customers including Comcast, Orange, and KDDI - over 80% of AT&Ts network traffic now runs through a disaggregated core powered by software. Network Cloud-AI solution, based on the same technology, was introduced to the market in 2023, providing the highest-performance Ethernet-based AI networking solution, and is already deployed by Hyperscalers, NeoClouds and Enterprises. Raising over $587 million in three funding rounds, continues to deploy the most innovative network infrastructure and is looking for the most talented people to be part of this journey.

Role Summary
We are seeking a seasoned Senior Security Engineer to lead the execution of security operations and internal security initiatives. This highly technical role will be the principal hands-on engineer responsible for securing our corporate and cloud infrastructure, supporting detection and response, and maturing security controls across the business. This role is ideal for someone who thrives in fast-moving environments, enjoys solving technical challenges end-to-end, and can independently drive security projects in close collaboration with IT, DevOps, and engineering.

Key Responsibilities
Serve as the lead technical resource for internal security operations, including:
Endpoint and network security
AWS and Azure security configuration
Identity and Access Management (Entra ID, AWS IAM)
Threat detection and incident response
Design, implement, and optimize security tooling, monitoring, and controls
Collaborate with IT, DevOps, and engineering teams to design secure architectures and troubleshoot issues
Support compliance, audit, and risk management activities through technical controls and documentation
Collaborate with and mentor other security engineers and promote security best practices across the company
Lead or contribute to cross-functional security initiatives and internal project planning

We are seeking an experienced Application Security Architect to join our Cyber Team. As an Application Security Architect, you will be responsible for overall Application Security standards, guidelines, and requirements for different groups . Your expertise in secure architecture, design, and SSDLC will play a crucial role in ensuring the security of our products and the protection of our sensitive financial data. This is a strategic position that offers an opportunity to shape and drive the security initiatives of our cutting-edge fintech solutions.

What youll be spending your time on:

Review and approve secure architecture designs for all developments for customers, partners, integrators or in-house solutions, considering best practices, regulatory requirements and business objectives.
Assist in creating or researching for security solutions solving security challenges, both on-prem and in the cloud.
Collaborate with cross-functional teams (mainly R&D and DevOps/DevSecOps) to define security requirements and design robust security controls for systems, both on-prem and in the cloud.
Provide technical guidance and expertise to internal teams in selecting and integrating in-house solutions or third-party vendors.
Design and implement cloud security solutions, such as network security, identity and access management, data protection and encryption.
Stay up-to-date with the latest security technologies, threats, and trends, and provide recommendations for continuous improvement.
Serve as a subject matter expert on application security, providing guidance and mentorship to other teams in the company.

Medison offers hope to patients suffering from rare and severe diseases by forming partnerships with emerging biotech companies to accelerate access to highly innovative therapies in international markets. As the creator and leader of the global partnership category in the pharma industry, we strive to be Always Ahead and work relentlessly to bring therapy to patients in need, no matter where they live. The Information Security Officer (ISO) at Medison Pharma will be responsible for developing, updating, and maintaining the organizational information security management framework, including policies, procedures, and work plans. The ISO will provide consulting services on relevant solutions and products and lead the improvement and development of the information security field. Additionally, the ISO will manage projects related to the examination and implementation of new information security products and characterize information security solutions for related projects. The ISO will also advise on compliance with privacy and cyber protection laws and regulations, conduct information security and privacy protection surveys, and oversee ISO 27001 compliance, focusing on all aspects of cybersecurity within Application Security (AppSec), Infrastructure Security (DevSec), Governance, Risk, and Compliance (GRC), Security Information and Event Management (SIEM)/Security Operations Center (SOC), incident response, and IT security.

Responsibilities:

* Develop, update, and maintain a cybersecurity strategy.
* Manage a risk-based cybersecurity program to secure corporate IP, technology, information, computer systems, networks, and data.
* Provide guidance on proposed cybersecurity best practices to different business functions.
* Develop comprehensive cybersecurity guidance, processes, and procedures based on industry standards.
* Stay informed on trends and issues in the security industry, including current and emerging technologies and regulatory and compliance issues.
* Advise, counsel, and educate executive and management teams on the importance of cybersecurity.
* The position reports to Medison's CISO