דרושים » אבטחת מידע וסייבר » Cyber Security GRC Specialist

A global leader in Identity Security, is seeking a talented GRC Compliance Expert to join our Governance, Risk, and Compliance team.
This role is ideal for someone with a strong understanding of leading international standards and regulations (such as ISO 27001, SOC 2, PCI-DSS, and others) and a passion for building and maintaining scalable, enterprise-grade compliance programs.
Youll play a central role in ensuring ongoing organizational alignment with world-class frameworks while working closely with cross-functional teams to drive a culture of trust, risk awareness, and regulatory readiness.
We are especially looking for someone with hands-on experience implementing and maintaining PCI-DSS / SOC2 compliance, including managing assessments, evidence collection, and cross-functional collaboration.
Key Responsibilities:
Ensure the companys continuous compliance with leading international standards and regulatory frameworks (e.g., ISO 27001, SOC 2, PCI-DSS).
Serve as a subject matter expert on PCI-DSS, including supporting annual assessments, gap analyses, and remediation planning.
Maintain, update, and improve internal GRC policies, controls, and documentation in line with global best practices.
Monitor changes in the regulatory and industry landscape and assess their applicability to our operations.
Lead internal control mapping, gap assessments, and remediation tracking.
Coordinate audit readiness efforts and maintain supporting evidence for external assurance engagements.
Support risk management activities such as risk assessments, risk registers, mitigation tracking, and escalation workflows.
Collaborate with teams across Security, IT, Legal, Engineering, and Operations to align compliance and business needs.
Drive internal awareness and training initiatives on key compliance requirements and GRC processes.
Contribute to the maturity and automation of the GRC program using dedicated platforms/tools.

Medison offers hope to patients suffering from rare and severe diseases by forming partnerships with emerging biotech companies to accelerate access to highly innovative therapies in international markets. As the creator and leader of the global partnership category in the pharma industry, we strive to be Always Ahead and work relentlessly to bring therapy to patients in need, no matter where they live. The Information Security Officer (ISO) at Medison Pharma will be responsible for developing, updating, and maintaining the organizational information security management framework, including policies, procedures, and work plans. The ISO will provide consulting services on relevant solutions and products and lead the improvement and development of the information security field. Additionally, the ISO will manage projects related to the examination and implementation of new information security products and characterize information security solutions for related projects. The ISO will also advise on compliance with privacy and cyber protection laws and regulations, conduct information security and privacy protection surveys, and oversee ISO 27001 compliance, focusing on all aspects of cybersecurity within Application Security (AppSec), Infrastructure Security (DevSec), Governance, Risk, and Compliance (GRC), Security Information and Event Management (SIEM)/Security Operations Center (SOC), incident response, and IT security.

Responsibilities:

* Develop, update, and maintain a cybersecurity strategy.
* Manage a risk-based cybersecurity program to secure corporate IP, technology, information, computer systems, networks, and data.
* Provide guidance on proposed cybersecurity best practices to different business functions.
* Develop comprehensive cybersecurity guidance, processes, and procedures based on industry standards.
* Stay informed on trends and issues in the security industry, including current and emerging technologies and regulatory and compliance issues.
* Advise, counsel, and educate executive and management teams on the importance of cybersecurity.
* The position reports to Medison's CISO

Additionally, the ISO will manage projects related to the examination and implementation of new information security products and characterize information security solutions for related projects. The ISO will also advise on compliance with privacy and cyber protection laws and regulations, conduct information security and privacy protection surveys, and oversee ISO 27001 compliance, focusing on all aspects of cybersecurity within Application Security (AppSec), Infrastructure Security (DevSec), Governance, Risk, and Compliance (GRC), Security Information and Event Management (SIEM)/Security Operations Center (SOC), incident response, and IT security.

Responsibilities
Develop, update, and maintain a cybersecurity strategy.
Manage a risk-based cybersecurity program to secure corporate IP, technology, information, computer systems, networks, and data.
Provide guidance on proposed cybersecurity best practices to different business functions.
Develop comprehensive cybersecurity guidance, processes, and procedures based on industry standards.
Stay informed on trends and issues in the security industry, including current and emerging technologies and regulatory and compliance issues.
Advise, counsel, and educate executive and management teams on the importance of cybersecurity.

We are looking for an eager and talented individual for our growing Solution Architect team. You will be a part of a fast-growing cybersecurity company, learn and practice high-end cyber skills from the best in the business and manage customers regionally. You will work with amazing people who work together to improve the cybersecurity resilience of our customers. The Solution Architects are considered to be our top experts in our products, serving as a very important point of contact between our customers and our inner departments.
Roles and Responsibilities:
Demonstrate a deep understanding and professional knowledge in our platform across our customers networks
Design deployment solutions for the platform in complex environments
Maintain in-depth knowledge of security trends, threats, and attack techniques in order to be able to improve us and to give better remediation guidance to the customers
Lead technical deep-dive sessions with cybersecurity experts, guide them through better Penetration Testing procedures and remediation/defense decisions
Be involved in the business application of the company by maintaining customer loyalty and act as a product expert focused on customer education and identify service expansion opportunities to drive increased revenue
Interface between different internal departments (Support, R&D, Sales, Pre-Sales, and more) to improve your skills, knowledge and problem-solving capabilities
Pay attention to support requests to identify recurring issues and recommend changes to the Pentera platform
Flexibility to accept a changing work description based on a hyper-fast startup.

We are looking for a passionate and skilled Network Security Expert to join our team! If you're excited about securing critical systems, networks, and information while working with cutting-edge security technologies, this role is for you.
What You'll Do:
Design, implement, and monitor security measures to protect our systems, data, and networks.
Define and establish robust security requirements to mitigate risks effectively.
Develop and document security protocols and best practices.
Configure, troubleshoot, and optimize security components to ensure peak performance.
Detect and respond to security threats, breaches, and vulnerabilities with precision.
Work with the latest security tools to automate and enhance security processes.

We are interested in welcoming a Senior Cybersecurity Expert to join our team, to plan, research, and develop proprietary automotive cybersecurity solutions.
Responsibilities and tasks include:
Threat and vulnerability assessment and analysis
Design, implement, and verify mechanisms to neutralize potential threats
System hardening and characterization
Penetration testing.