דרושים » אבטחת מידע וסייבר » MDR Analyst- Shift position (Unit 42)

we are looking for a MXDR Analyst to join the team of cybersecurity analysts monitoring services 24/7, tiers 1-2. The role includes development of detection analyses, triage of alerts, investigation of security incidents, proactive threat hunting and enhancement of sensors and overall visibility status. The suitable candidate should be a team player with previous experience in SOC, SecOps or security monitoring, independent, and with a can-do attitude.
Responsibilities:
Working across all areas of SOC, including continuous monitoring and analysis, threat hunting, security compliance, security event auditing and analysis, rule development and tuning, and forensics.
Solving security incidents in accordance with defined service level agreements and objectives.
Prioritizing and differentiating between potential incidents and false alarms.
Addressing clients enquiries via phone, email, and live chat.
Working side-by-side with customers, providing insightful incident reports.
Working closely with peers and higher-tier analysts to ensure that your analysis work meets quality standards.
Identifying opportunities for improvement and automation within the MXDR Operation Lead, and leading efforts to operationalize ideas.
Identifying and offering solutions to gaps in current capabilities, visibility, and security posture.
Correlating information from disparate sources to develop novel detection methods.

We are looking for a high-energy, driven Security Analyst with a strong security mindset to join our fast-growing team of ambitious professionals. This is a unique opportunity to be part of an exciting data-cybersecurity startup.

Responsibilities:
Conduct in-depth security research to identify emerging cloud and AI-related threats and incorporate insights into our detection and prevention strategies.
Develop and maintain advanced security detections and best practices to identify and mitigate threats to customer data across diverse cloud platforms.
Collaborate closely with Product and R&D teams to translate security research findings into impactful product features and detection capabilities.
Design and prototype advanced detection techniques and automated workflows to continuously strengthen our ability to identify and safeguard sensitive data across complex, multi-cloud environments.
Continuously evaluate emerging cloud services, APIs, and data flows, integrating industry best practices and customer-driven insights to ensure our detection capabilities remain cutting-edge and adaptable.

we are looking for a Cyber Security Engineer with a solid technical background in cyber security to lead the implementation of Velocity XDR product and ensure that meet its clients cyber security needs.
As a Cyber Security Engineer in a fast-expanding operation team, you will be responsible for onboarding new global clients to the MXDR services, developing and maintaining detection scenarios and alerts, analysing the client's environment, and providing technical support and guidance to clients. To excel in this role, you will demonstrate strong technical aptitude, dedication to delivering high-quality work, and a cooperative approach to teamwork.
Main Responsibilities:
Lead the onboarding process for all new clients joining the MXDR services, working closely with the clients IT and security teams to ensure smooth implementations.
Develop detection scenarios and alerts for XDR solution (Velocity) to ensure effective threat detection and response.
Oversee Velocity KPIs and measurements set by the client, adjusting, analyzing and maintaining them according to their needs and tracking the impact of the platform on the client's networks, endpoints, applications, and cloud environments.
Continuously improve Velocity monitoring capabilities and keep up-to-date with the latest developments in the cyber threat landscape.
Provide technical support and guidance to clients on Velocity security-related issues, including implementing security best practices and ensuring compliance with industry standards.

our company Infinity External Risk Management, otherwise known as Cyberint, continuously reduces external cyber risk by managing and mitigating an array of external cyber security threats with one unified solution.
We are looking for a Cyber Threat Intelligence Analyst to be an integral part of our Intelligence teams, combining both cutting-edge technology and advanced threat intelligence analysis methodologies to deliver high-impact briefings to our customers.
Key Responsibilities
Learning the customer needs and PIRs, configuring their tailored environments in the ERM intelligence platform and supporting the customers with tuning/training throughout engagement
Monitoring and analyzing threats targeting customers, or issues in their digital exposure, in order to produce actionable intelligence alerts and reports.
Investigating intelligence sources, threat actors, attack tools and techniques
Identifying and developing ERM data sources to collect the most relevant intelligence (darknet, forums, social media, marketplaces, etc.) as well as creating and maintaining avatars on these.
Developing the proprietary intelligence platform by surfacing new modules, capabilities and features
Joining meetings with prospects and clients to present deliverables.
Drive cooperation & feedback loops with other ERM teams.

our company Infinity External Risk Management, otherwise known as Cyberint, continuously reduces external cyber risk by managing and mitigating an array of external cyber security threats with one unified solution.
We are looking for a Cyber Threat Intelligence Analyst to be an integral part of our Intelligence teams, combining both cutting-edge technology and advanced threat intelligence analysis methodologies to deliver high-impact briefings to our customers.
Key Responsibilities
Learning the customer needs and PIRs, configuring their tailored environments in the ERM intelligence platform and supporting the customers with tuning/training throughout engagement
Monitoring and analyzing threats targeting customers, or issues in their digital exposure, in order to produce actionable intelligence alerts and reports.
Investigating intelligence sources, threat actors, attack tools and techniques
Identifying and developing ERM data sources to collect the most relevant intelligence (darknet, forums, social media, marketplaces, etc.) as well as creating and maintaining avatars on these.
Developing the proprietary intelligence platform by surfacing new modules, capabilities and features
Joining meetings with prospects and clients to present deliverables.
Drive cooperation & feedback loops with other ERM teams.

The Malware Research & Protection team, part of the Malware & Mail Research and Protection group, is a small and highly collaborative unit of 4 researchers and a team leader. Our mission is to build advanced behavioral and YARA-based protections for our company products, scaling our impact through automation and AI-driven detection.
While much of our work focuses on automation and large-scale protection delivery, we also dive deep into reversing and debugging complex malware samples when needed. Our findings can turn into technical blogs and are shared at security conferences.
We combine hands-on malware research with cutting-edge innovation to protect millions of customers worldwide - and we do it as a tight-knit, supportive team where every member contributes to both the technology and the impact.
Key Responsibilities
Analyze malicious files and develop protections for our company products.
Release daily protections for customers and continuously monitor detection effectiveness.
Respond to high-profile attacks, investigate them, and create relevant protections.
Monitor telemetry and sensor data to identify targeted attacks and advanced campaigns.
Conduct in-depth investigations in our company products and drive security enhancements.
Publish technical and marketing blogs highlighting the teams research and findings.
Present research in internal forums, to strategic customers, and at industry conferences.
Automate processes to increase the teams efficiency and detection coverage.

As a Managed Services Lead Consultant within our companys Infinity Global Services (IGS) Managed eXtended Detection and Response (MXDR) team, you will play a key role in protecting our customers digital assets, sensitive data, and critical infrastructure.
You will leverage your expertise in threat detection, incident response, and cloud security to monitor complex environments, identify vulnerabilities, and respond to evolving cyber threats in real time. Working in close collaboration with cross-functional teams, you will develop and implement tailored security strategies that align with industry standards and customer-specific requirements.
This role is ideal for a self-motivated professional with strong technical acumen, a passion for cloud technologies, and a proactive mindset for staying ahead of emerging security threats.
Key Responsibilities
Deliver advanced security monitoring services in collaboration with DevOps, product teams, and clients, leveraging SIEM and XDR/EDR solutions such as Microsoft Sentinel, Defender, and our company Harmony.
Monitor, analyze, and investigate security events across cloud environments (especially Azure), using logs and open-source intelligence to identify threats and reduce false positives.
Develop and maintain environment-specific rules, alerts, and dashboards within SIEM tools, ensuring alignment with client-specific security and compliance needs.
Create and maintain detailed documentation, including analytical reports, SOPs, training materials, and technical guidelines.
Provide expert support and guidance in resolving complex security issues, automating tasks, and enhancing operational workflows.
Support 24/7 operations through on-call rotations, ticket management, and real-time cybersecurity monitoring and response.

We are looking for an exceptional and passionate Competitive Intelligence Technical Engineer. A Member of the competitive technical analysis/intelligence group for our companys security portfolio.
If you are tech savvy and technical with great research skills, excel in collection and analysis, are driven by curiosity and passion, and seek a unique opportunity to grow and contribute in an exciting and rewarding environment, then we want to meet you!
Key Responsibilities
Proactively gather information on competing products, including detailed functionality to understand, confirm and authoritatively negate competitor's claims via documentation and Hands-ON testing.
Tracking data on our competitors, preparing hard-hitting competitive materials for our company sales force, helping our sales force respond to competitive situations and creating effective marketing programs to highlight our competitive differentiation.
Educating and helping our sales force to better understand competitor's offerings and how to respond to competitive situations.
Attending meetings with our company's salesforce, partners, and customers. hosting webinars to present the competitive materials you've created.
Work with Product Organization (R&D, product managers, QA) to identify the most compelling competitive differentiation for our products & most compelling features of competitive products.
Work cross-functionally to ensure competitive information and positioning for all products and solutions in our core business, and own the process of responding quickly to maximize opportunities with press/analysts/customers.
Track, report, and influence analysts (Gartner, IDC) market share reports; track our competitors, their products, their go-to-market strategies and their financial and market performance.
Work with strategic goals and identify priority activities and assignments.

As a SIEM Developer at our company, you will create SIEM content to be delivered to our customers via the XSIAM marketplace.
XSIAM is an innovative new product we launched in March 2022 with a vision to create the autonomous security platform of the future, driving dramatically better security with near real-time detection and response.
More information about XSIAM can be found here.
Your Impact
Develop SIEM content - parsers, data model mapping, correlation rules, and dashboards for leading information security and IT tools
Collaborate with Security Architects, Software Developers, PMs, and Technical Marketing Engineers to create the best out-of-the-box content for our customers
Drive a vital piece of a new product!

Today, were tapping into the unlimited potential of AI to define the next era of computing. An era in which our GPU acts as the brains of computers, robots, and self-driving cars that can understand the world. Doing whats never been done before takes vision, innovation, and the worlds best talent. As a worker, youll be immersed in a diverse, supportive environment where everyone is inspired to do their best work. Come join the team and see how you can make a lasting impact on the world.
The complexity of the chip has greatly increased over the years. We are now packing tens of billions of transistors in a chip to meet the growing computing demand in a footprint that is responsible to our environment. The our company's System-On-Chip (SOC) group is looking for a top physical design engineer with a curiosity about SOC design optimization, physical integration, chip build and assembly and verification. You should have real passion for methodologies and clock distribution solutions that enable SOC creation in the most optimized way. In this position, you will get the opportunity to build complex networking chips and directly contact unit-level owners, Physical Design, CAD, Package Design, Software, DFT and other teams.
What you'll be doing:
Designing and implementing SOC level clock requirements
Daily work involves aspects of chip level design, including partitioning, CDC, trial synthesis, design quality checks
Be exposed and work on a variety of functional and structural challenges. Including functional debug, physical design readiness, resolve design quality issues.