דרושים » אבטחת מידע וסייבר » SOC Analyst

We are seeking a highly energetic and talented security analyst to join our company's Managed Detection and Response (MDR) team. As an MDR security analyst, your primary responsibility will be to identify and respond to security threats across our service customers. You will utilize the groundbreaking our company's Threat Hunting System to proactively seek out unknown threats and enhance our company hunting capabilities. Leveraging the company's Cloud data warehouse, you will develop logics and signatures to effectively detect and address security threats. Moreover, you will serve as a trusted advisor to our MDR service clients, providing valuable insights into their security posture and the threat landscape they face
This position offers an exceptional opportunity for network security enthusiasts who are passionate about Network Security, Malware Analysis, Threat Hunting, and Threat Intelligence.
Responsibilities
Act as a Customer Security Advisor, conducting threat-hunting activities and performing security assessments on customer networks. Effectively communicate findings, recommendations for remediation, and mitigation strategies to customers
Serve as an escalation point for the SOC analysts, assisting in the investigation, analysis, and response to security incidents
Develop cyber kill-chain indicators of an attack and hunting heuristics to enhance the ongoing threat-hunting process
Enhance the product accuracy and its capacity to detect emerging threats within the dynamic security landscape.

we are looking for a Cyber Security Engineer with a solid technical background in cyber security to lead the implementation of Velocity XDR product and ensure that meet its clients cyber security needs.
As a Cyber Security Engineer in a fast-expanding operation team, you will be responsible for onboarding new global clients to the MXDR services, developing and maintaining detection scenarios and alerts, analysing the client's environment, and providing technical support and guidance to clients. To excel in this role, you will demonstrate strong technical aptitude, dedication to delivering high-quality work, and a cooperative approach to teamwork.
Main Responsibilities:
Lead the onboarding process for all new clients joining the MXDR services, working closely with the clients IT and security teams to ensure smooth implementations.
Develop detection scenarios and alerts for XDR solution (Velocity) to ensure effective threat detection and response.
Oversee Velocity KPIs and measurements set by the client, adjusting, analyzing and maintaining them according to their needs and tracking the impact of the platform on the client's networks, endpoints, applications, and cloud environments.
Continuously improve Velocity monitoring capabilities and keep up-to-date with the latest developments in the cyber threat landscape.
Provide technical support and guidance to clients on Velocity security-related issues, including implementing security best practices and ensuring compliance with industry standards.

We are seeking a driven problem solver to join our Unit 42 MDR team. Our team is responsible for customers internal security monitoring, threat hunting and incident response. As a MDR Analyst, we will rely on you to detect and respond to cyber incidents facing customers internal business.
The ideal candidate is a quick learner and good communicator who will be able to follow established processes for analyzing threat alerts that fire from our Cortex XDR. The candidate should be a creative thinker who takes pride in solving tough problems.
Your Impact
Join a new emerging team who is going to be part of our companys Unit 42, Working closely with global customers providing the best security in the market
Own an incident lifecycle from outbreak to full remediation
Provide critical feedback to the different product, research and engineering and threat hunting teams to help improve the products for the entire companys customer base
Work closely with Security Research, Threat Intelligence and Threat Hunting teams to remediate and detect new emerging threats
This position is a Shift Position (Sunday - Friday Evening & Saturday Evening).

We are looking for a Security Operations & Incident Response Engineer to join our fast-growing company at a breakthrough stage, where we are building our dream team with the most passionate and professional people in the industry.
Our security team blends cyber expertise with cutting-edge automation and AI. Were looking for someone who thrives in a fast-paced SaaS environment and is eager to make an impact.
Key Responsibilities
Security Engineering & Incident Response
Collaborate with the CISO and peers to shape and execute the companys security strategy.
Develop, maintain, and continuously improve security playbooks, processes, and response frameworks.
Manage the full lifecycle of security alerts from triage and investigation to response and escalation using our companys Case Management platform.
Perform access and configuration reviews across cloud, SaaS, and endpoint environments, and lead remediation efforts where needed.
SIEM & Automation Expertise
Develop and fine-tune detection rules in Splunk (or similar SIEM platforms) to increase detection quality and reduce false positives.
Utilizing our company to build and manage automated workflows to accelerate incident response and reduce MTTR.
Evaluate new security technologies and lead proof-of-concepts to improve existing controls.
Collaboration & Enablement
Partner with IT and Engineering to strengthen SaaS security practices.
Act as a trusted advisor across teams, promoting security awareness and best practices.
Communicate clearly in both Hebrew and English, providing documentation and updates to relevant stakeholders.

As a Managed services consultant within our companys Infinity Global Services (IGS) Managed eXtended Detection and Response (MXDR) team, you will play a critical role in protecting our customers digital assets, sensitive data, and core systems from cyber threats.
You will apply your expertise in threat detection, incident response, and vulnerability analysis to strengthen security postures and proactively mitigate risks. Working alongside cross-functional teams, you will help shape effective security strategies and ensure compliance with industry standards and regulatory frameworks.
This role is ideal for a self-motivated professional with a passion for cloud security, deep familiarity with leading public cloud platforms, and hands-on experience using cutting-edge monitoring and defense technologies.
Key Responsibilities
Perform continuous monitoring across key security layers (e.g., intrusion detection, endpoint protection, log management) using advanced XDR and SIEM solutions like Microsoft Sentinel and our company's Harmony Endpoint.
Analyze and investigate security events using log data, open-source intelligence, and threat indicators to distinguish real threats from false positives.
Develop and maintain custom rules, alerts, dashboards, and use cases within SIEM platforms, ensuring alignment with client-specific compliance and security needs.
Support cloud security operations, particularly within Azure environments, and respond to incidents through structured ticketing and case management processes.
Collaborate with clients and internal teams to resolve complex issues, automate repetitive tasks, and continuously improve the effectiveness of security operations.
Contribute to documentation and knowledge sharing by creating reports, SOPs, training materials, and providing guidance to junior SOC analysts.

We are looking for a high-energy, driven Security Analyst with a strong security mindset to join our fast-growing team of ambitious professionals. This is a unique opportunity to be part of an exciting data-cybersecurity startup.

Responsibilities:
Conduct in-depth security research to identify emerging cloud and AI-related threats and incorporate insights into our detection and prevention strategies.
Develop and maintain advanced security detections and best practices to identify and mitigate threats to customer data across diverse cloud platforms.
Collaborate closely with Product and R&D teams to translate security research findings into impactful product features and detection capabilities.
Design and prototype advanced detection techniques and automated workflows to continuously strengthen our ability to identify and safeguard sensitive data across complex, multi-cloud environments.
Continuously evaluate emerging cloud services, APIs, and data flows, integrating industry best practices and customer-driven insights to ensure our detection capabilities remain cutting-edge and adaptable.

We are on a mission to reverse the adversary advantage by empowering defenders with ingenuity and technology to end cyber attacks.

We have the technology, and now we are looking to expand our talent! - Come and talk to us about joining a market leader and a diverse team of passionate people who win as one, ensuring a customer-first approach is core to everything we do and never giving up on reversing the adversary advantage.

Our Israeli site is located in Tel Aviv, next to Hashalom train station.
Hybrid work model.
Flexible working hours.
Best high tech companies to work for (by Duns100).
Top companies leading women representation (by Power in Diversity).

Youll be part of our Technical Delivery group:
A high paced, ever evolving group that makes sure everything is running. We perform all technical operations end-to-end assuring customer's success and satisfaction.
We are focused on our on-premises customers end to end experience
This is a unique opportunity to work on customers site and be their main focal point.

In this position you will:
Our security analyst dedicated to a major customer.
Be on the customer site 4 days a week leading all their related activities and will be the liaison between us and the customer, will translate their security needs to features and work closely with our Product, Security, SOC, Dev teams on implementing the requirements.
Implement customized rules to match security needs for the customer.
Perform ongoing security analysis and triage of escalated and critical endpoint alerts.
Participate in various stages of incident investigations and threat hunting.

We are looking for a IT Risk Management and SOC2 Manager.
The IT risk management team specializes in identifying and mitigating technological risks, developing solutions, and enhancing organizational systems and processes to prevent potential business impact. Leveraging local experts with global experience in complex projects, unique methodologies, and advanced technological tools, the team partners with leading companies across technology, industry, and finance. Our projects span collaborations with US and the largest organizations in Israel, including major banks and top technology companies traded in the US.
Role Overview:
As a Manager in the TPA practice, you will lead and oversee multiple client engagements from initiation through to the reports. You will be responsible for managing project timelines, budgets, and team members, ensuring high-quality deliverables and client satisfaction.
Your role will include:
Managing end-to-end IT risk management and assurance engagements, including planning, execution, and reporting.
Overseeing the delivery of Information Security and IT Governance Risk and Compliance (GRC) services.
Leading SOC2 and SOC1 audits, information systems risk assessments, cyber risk surveys, and both external and internal IT audits.
Consulting on and testing automated controls within business processes and organizational systems, and establishing methodologies for IT risk management in cloud and digital environments.
Advising clients on authorization processes and segregation of duties (SoD) in information systems and business operations.
Managing and mentoring team members, allocating resources, and monitoring engagement hours to ensure projects are delivered on time and within budget.
Serving as the primary point of contact for clients, maintaining strong relationships and ensuring their needs are met throughout the engagement lifecycle.

As a SIEM Developer at our company, you will create SIEM content to be delivered to our customers via the XSIAM marketplace.
XSIAM is an innovative new product we launched in March 2022 with a vision to create the autonomous security platform of the future, driving dramatically better security with near real-time detection and response.
More information about XSIAM can be found here.
Your Impact
Develop SIEM content - parsers, data model mapping, correlation rules, and dashboards for leading information security and IT tools
Collaborate with Security Architects, Software Developers, PMs, and Technical Marketing Engineers to create the best out-of-the-box content for our customers
Drive a vital piece of a new product!

We are looking for a Senior Fraud Analyst with a passion for solving complex puzzles by investigating reactively and proactively data and live attacks. The solutions and insights you find will turn into proactive algorithms that make our community safer.
Here are a few of the things you'll do:
Discover and effectively communicate unique, actionable insights to prevent and detect attacks using our solution.
Extract data from internal systems, identify the correct metrics needed, create reports and analyze them to understand key trends.
Translate trends to prevention algorithm requirements.
Be the point of escalation to fraud investigators.
Proactively initiates and leads fraud‑risk projects from ideation through deployment, coordinating stakeholders across product, data, and engineering.