דרושים » אבטחת מידע וסייבר » Were Hiring: DevSecOps Engineer for a Leading FinTech Company in Tel Aviv!

we are disrupting the Cyber Security industry! We are looking for a Senior Enterprise Information Security Engineer to join our Infosec team that owns, securing and delivering security for our Enterprise, SaaS, and Public Cloud security services. With your networking, firewall, cloud, and development skills, youll design, build automation and integrate along with our secure programs scale and secure our infrastructure and application in a Google Cloud Platform environment as well as collaborate with other team members. In this role, you will provide technical leadership in the development of Security programs by helping to drive the disruptive vision, technology planning, and estimation. If you are a fast learner and passionate about Cyber Security, this is a great opportunity for you
Your Impact
Providing advanced operations and engineering support for critical systems and services, including application and security infrastructure on-prem and in the cloud.
Responsible for assessing and reviewing the security and cloud infrastructure in both IT and production environments.
Coordinates with various teams to ensure appliances and services are configured with the correct posture to support business requirements.
In-depth knowledge of designing and implementing a Zero Trust Network Architecture, including network and identity segmentation.
Continuous monitoring and improvement of IT support practices to enhance scalability, reliability, and performance in the product infrastructure.
Assist in maintaining strong oversight of cloud computing solutions to safeguard against undue risks from third-party or external integrations.
Develop automation using SOAR tools to streamline repetitive tasks and improve the overall efficiency of the security team.
Collaborate with teams outside the Security Fusion Center, including Vulnerability Management, Network Engineering, OS Engineering, and product SRE.
Prioritize and respond to critical vulnerabilities and data exposures with urgency and effective risk mitigation strategies.
Develop and maintain security baselines for infrastructure components (e.g., VMs, containers, network devices) in alignment with CIS Benchmarks, NIST, and internal standards.
Support incident response activities, including containment, forensic investigation, root cause analysis, and post-incident documentation.
Perform regular policy and firewall rule reviews to ensure alignment with access requirements and enforcement of Zero Trust principles.
Contribute to governance, risk, and compliance (GRC) efforts, including audit participation, third-party risk assessments, and evidence collection for SOC 2, ISO 27001, or FedRAMP certifications.

Were looking for a highly skilled and motivated DevSecOps Engineer to join our dynamic team. As a DevSecOps Engineer, you will be responsible for ensuring the secure and efficient operation of our software development and deployment processes. You will collaborate with cross-functional teams to integrate security practices into the development lifecycle and foster a culture of security awareness.
The ideal candidate will have a strong software development background, SDLC security principles, and threat modeling for application-based features.
What You'll Do:
Design, develop, and implement secure software development and deployment pipelines, incorporating security best practices, automation, and continuous integration/continuous deployment (CI/CD) methodologies.
Collaborate with development, operations, and security teams to identify and prioritize security vulnerabilities/issues and requirements and integrate security controls into the development lifecycle.
Perform vulnerability assessments and security code reviews to identify and address security vulnerabilities and risks.
Implement and manage security tools and technologies such as SCA, SAST, IaC Security, etc.
Develop and enforce security policies, standards, and guidelines to ensure compliance with regulatory requirements and industry best practices.
Stay updated with the latest security trends, vulnerabilities, and threat intelligence to proactively identify emerging risks and recommend security enhancements.
Collaborate with cross-functional teams to conduct security awareness training and promote a culture of security within the organization.
Evaluate blockchain protocol repositories for in-depth security and resiliency analysis reporting.
Use market data analysis to identify risk vectors for various crypto assets.
Understand complex protocol governance structures to prepare concise reporting for executive consumption and decision-making.
Analyze crypto asset data across various sectors to provide recommendations for the organization based on variable risk tolerances and use cases.
Take part in various tasks related to custody operations.

we are seeking an experienced DevSecOps Engineer to secure and automate our cloud environments. In this role, youll ensure our production environment meets top security standards while integrating cutting-edge technologies. You'll implement security initiatives, drive automation in CI/CD pipelines, and collaborate with development and operations teams. Your expertise in AWS security services and DevSecOps practices will be crucial for enhancing our cloud security and managing incident response

Role
Collaborate with a dynamic team of DevSecOps professionals to enhance and maintain robust platform security.
Assist in the design, implementation, and monitoring of comprehensive security solutions to protect our systems and data.
Contribute to the development and deployment of advanced solutions to automate security tool integration and enhance overall security posture.
Help implement robust information security controls and patterns to support risk assessments and the creation of secure architectures.
Collaborate with Product & Data Security, Engineering, and DevOps teams to define and execute security strategies and initiatives.
Participate in efforts to establish and enforce security best practices and standards across the development lifecycle.
Engage in learning opportunities and seek guidance from team members to foster professional growth and skill development.

At our company, we're on a mission to redefine vehicle safety and reliability on a global scale. Founded in 2016, we have pioneered the world's first fully automated suite of vehicle inspection systems. At the heart of this innovation lies our advanced AI-driven technology, representing the pinnacle of Machine Learning, GenAI, and computer vision within the automotive sector. With close to $400M in funding and strategic partnerships with industry giants such as Amazon, General Motors, Volvo, and CarMax, we stand at the forefront of automotive technological advancement. Our growing global team of over 200 employees is committed to creating a workplace that celebrates diversity and encourages teamwork. Our drive for innovation and pursuit of excellence are deeply Embedded in our vibrant company culture, ensuring that each individual's efforts are recognized and valued as we unite to build a safer automotive world.
We seek a highly skilled and proactive Senior SecOps Engineer to join our Security team and lead security operations across the organization. In this role, you will report directly to our CISO and work in close collaboration with the DevOps and R&D teams to embed security into every stage of the software lifecycle, protect our multi-cloud infrastructure, and ensure compliance with leading industry standards.
A day in the life and how youll make an impact:
* Report directly to the CISO and collaborate with DevOps and R&D teams to embed security into every stage of the SSDLC.
* Integrate security into CI/CD pipelines, Infrastructure as Code (Terraform, Helm, GitOps), and development workflows.
* Design, enforce, and monitor secure cloud configurations (AWS, GCP), including networking, IAM, encryption, and Kubernetes hardening.
* Implement and manage application security controls (SAST, DAST, SCA, code reviews).
* Lead incident response activities, including forensic investigations, vulnerability management, and threat mitigation.
* Deploy and operate CSPM tools (Wiz, Prisma, Orca), SIEM, WAF, and runtime security solutions.
* Drive compliance with ISO 27001, SOC 2, GDPR, ensuring audit readiness.

Our team is at the forefront of ensuring the security and resilience of this critical infrastructure, and we're looking for a visionary Security Architect to play a pivotal role in designing and implementing robust security solutions across our infrastructure and applications.

If you have a passion for building secure-by-design systems, a deep understanding of both infrastructure and application security principles, and the ability to translate complex requirements into actionable blueprints, we want to hear from you. You'll be instrumental in shaping our security landscape, ensuring our platform remains a trusted and secure environment for our global users.

What You'll Be Doing:
This is a hands-on position. You need to love writing Python, working with APIs, and codifying infrastructure. Lead the architectural design and implementation of security solutions for our cloud infrastructure, network, and applications.
Get your "hands dirty", fearlessly working on our most complex and risky problems involving production systems and networks.
Constantly push optimizations and best practices. Define and maintain security standards, frameworks, and best practices across the organization.
Collaborate closely with engineering, product, and operations teams to integrate security seamlessly into the development lifecycle and infrastructure deployments.
Evaluate and recommend security technologies and tools to enhance our security posture.
Develop security reference architectures and patterns to guide engineering teams in building secure solutions.
Participate in threat modeling and risk assessment activities to proactively identify and mitigate potential security threats.
Provide expert guidance and mentorship to engineering teams on security-related topics.
Stay current with the latest security trends, threats, and technologies, and translate them into actionable strategies for us.

We're looking for a Security Engineer
WHAT YOULL DO

Lead threat modeling and security review exercises across production and CI/CD environments identifying and mitigating risks in our products and the cloud services that support them
Drive vulnerability management and remediation efforts prioritizing issues, implementing mitigations, and designing strategic preventative controls
Extend our detection and response capabilities building scalable solutions to identify malicious activity, triage alerts, and investigate and remediate incidents
Collaborate with our Federal team extending our DevSecOps and Product Security practices to FedRAMP environment and ensure it meets key security requirements
Build deep functional partnerships with Wizs engineering and operations teams helping them deliver secure-by-design solutions

We are making the future of Mobility come to life starting today. At our company we support the worlds largest vehicle fleet operators and transportation providers to optimize existing operations and seamlessly launch new, dynamic business models - driving efficient operations and maximizing utilization.
We are seeking a highly skilled and experienced Information Security Specialist to join
our company's security team. This role is critical in ensuring the security and integrity of our companys infrastructure, services and endpoints. The ideal candidate will have a deep understanding of security principles, architectures, and technologies, endpoint and site security, along with hands-on experience.
As the Information Security Specialist, you will be responsible for designing, implementing, and maintaining robust security measures to protect our assets and data. Working closely with various international stakeholders to integrate security best practices in all stages of the design and operating model, from design and deployment to monitoring and incident response.
What You'll Do:
Design and maintain the company's security model, ensuring alignment with best practices and regulatory requirements.
Manage and maintain our companys security, including the site and endpoints employees use.
Assist with the deployment and assurance activities associated with Security controls with our company. .
Continuously monitor environments, detect threats, and lead effective incident response and remediation efforts.
Ensure compliance with global standards (e.g., GDPR, ISO 27001, NIST) by driving audits, risk assessments, and security governance processes.
Co-ordinate offensive security activities including penetration testing, red team exercises, and third-party risk evaluations.
Drive continuous improvement of security operations, championing automation, zero-trust architecture, and emerging security capabilities.

We are looking for a Security Architect.
Job Description:
Lead security efforts in your domains and reflect the security posture and gaps to stakeholders.
Define and execute annual roadmaps to mitigate security risks and design secure architectures in diverse business units.
Review and assess newer complex environments, discovering security gaps and creating security control in the form of policies and other mitigations.
Develop best practices and security standards for the organization.
Carry out proof of concepts for the latest security tools based on security needs and your own research.
Work closely with DevOps team and development teams.

As our first dedicated security hire, youll be responsible for defining and executing our security strategy, owning compliance initiatives (SOC 2, ISO 27001), and serving as a key advisor to leadership, customers, and internal teams.

In this role you will
Lead risk management and mitigation across the organization.
Act as the face of security with our customers supporting sales, handling security questionnaires, and building trust with enterprise clients in regulated industries (finance, insurance, employers).
Define and clearly communicate our security posture to both internal and external stakeholders.
Work cross-functionally with Legal, Engineering, IT, and People to implement security tools, policies, and processes.
Own and evolve our security and compliance programs (SOC 2, ISO 27001, etc.).
Help shape our IT and access control posture (alongside the first IT hire).
Build a scalable foundation for a growing security function.

Were looking for a highly skilled and motivated Application Security Engineer to join our dynamic team. As an Application Security Engineer, you will be responsible for ensuring the secure and efficient operation of our software development and deployment processes. You will collaborate with cross-functional teams to integrate security practices into the development lifecycle and foster a culture of security awareness. The ideal candidate will have a strong software development background, SDLC security principles, and threat modeling for application-based features
What Youll Do:
CI/CD Security Hardening
Improve and secure our continuous integration and deployment pipelines through the selection, implementation, and tailoring of new tooling, as well as the maintenance and enhancement of our current stack.
Security Tooling Management
Operate, fine-tune, and customize tools like Snyk, Apiiro, and other AppSec platforms to reduce false positives and enhance threat detection.
Policy Definition
Collaborate with cross-functional teams to develop practical, enforceable CI/CD security policies.
Security Orchestration & Automation
Build and maintain automated playbooks and workflows using orchestration platforms like Torq to support incident response and alert management.