דרושים » אבטחת מידע וסייבר » GRC Specialist (Entry Level)

Be the guardian of trust in a fast-moving fintech world. As a GRC Security Specialist, youll lead cybersecurity governance, drive compliance with global standards (SOC 2, PCI-DSS, NIST), and partner with tech and legal teams to embed security into every layer of the business. If you live and breathe risk, regulation, and resiliencethis is your arena.
What youll do:
Developing and maintaining policies, procedures, and controls to ensure compliance with regulatory, legal, and audit requirements, as well as best business practices.
Creating a cybersecurity compliance strategy and ensuring alignment with contractual obligations and globally recognized standards and guidelines.
Identifying regulatory, legislative, and industry-specific compliance requirements and defining controls to meet them.
Conducting and participating in periodic internal reviews or audits to ensure compliance procedures are followed.
Overseeing and evaluating compliance systems to ensure their effectiveness.
Compiling and presenting reports to management on compliance activities and progress.
Staying up to date on industry developments, regulatory trends, and best practices to assess their impact on the organization.
Designing and implementing improvements in compliance communication, monitoring, and enforcement mechanisms.
Developing and executing a compliance awareness program, including the creation and distribution of materials for all employees.
Partnering with Legal and IT teams to manage data protection agreements and compliance initiatives.
Leading the development and execution of company-wide security awareness and training initiatives.
Assisting in incident response planning and investigations when necessary.

we are seeking a talented GRC Compliance Expert to join our Governance, Risk, and Compliance team.
This role is ideal for someone with a strong understanding of leading international standards and regulations (such as ISO 27001, SOC 2, PCI-DSS, and others) and a passion for building and maintaining scalable, enterprise-grade compliance programs.

Youll play a central role in ensuring ongoing organizational alignment with world-class frameworks while working closely with cross-functional teams to drive a culture of trust, risk awareness, and regulatory readiness.
We are especially looking for someone with hands-on experience implementing and maintaining PCI-DSS / SOC2 compliance, including managing assessments, evidence collection, and cross-functional collaboration.

Key Responsibilities

Ensure the companys continuous compliance with leading international standards and regulatory frameworks (e.g., ISO 27001, SOC 2, PCI-DSS).
Serve as a subject matter expert on PCI-DSS, including supporting annual assessments, gap analyses, and remediation planning.
Maintain, update, and improve internal GRC policies, controls, and documentation in line with global best practices.
Monitor changes in the regulatory and industry landscape and assess their applicability to operations.
Lead internal control mapping, gap assessments, and remediation tracking.
Coordinate audit readiness efforts and maintain supporting evidence for external assurance engagements.
Support risk management activities such as risk assessments, risk registers, mitigation tracking, and escalation workflows.
Collaborate with teams across Security, IT, Legal, Engineering, and Operations to align compliance and business needs.
Drive internal awareness and training initiatives on key compliance requirements and GRC processes.
Contribute to the maturity and automation of the GRC program using dedicated platforms/tools.

We are seeking a Cloud Security Manager to join our Cyber Security team at our company. You will be responsible for leading cloud security strategy, architecture, and operations across all cloud platforms (AWS, Azure, GCP), while ensuring alignment with corporate security policies and regulatory requirements.
What you'll do:
Develop and lead the enterprise cloud security strategy, architecture, and roadmap.
Define and enforce security controls for cloud-native applications and infrastructure.
Work closely with DevOps, engineering, architecture and CyberOps teams to embed security into design, deployment, and CI/CD pipelines.
Drive cloud risk assessments, threat modeling, and cloud configuration reviews across platforms working with the GRC team
Lead the implementation and continuous improvement of Cloud Security Posture Management (CSPM), CNAPP, and workload protection solutions.
Respond to cloud security incidents and lead root-cause analysis and remediation efforts.
Monitor regulatory and industry trends (e.g. CIS Benchmarks) to ensure cloud environments meet applicable requirements.
Develop standards, procedures, and guidance for secure use of IaaS, PaaS, and SaaS services.
Report on cloud security posture, risks, and mitigation plans to senior leadership.
Mentor and develop cloud security talent within the security organization.

We are looking for an eager and talented individual for our growing Solution Architect team.
You will be a part of a fast-growing cybersecurity company, learn and practice high-end cyber skills from the best in the business and manage customers regionally.
You will work with amazing people who work together to improve the cybersecurity resilience of our customers.
The Solution Architects are considered to be our top experts in our products, serving as a very important point of contact between our customers and our inner departments.
Roles and Responsibilities:
Demonstrate a deep understanding and professional knowledge in platform across our customers networks
Design deployment solutions for the platform in complex environments
Maintain in-depth knowledge of security trends, threats, and attack techniques in order to be able to improve and to give better remediation guidance to the customers
Lead technical deep-dive sessions with cybersecurity experts, guide them through better Penetration Testing procedures and remediation/defense decisions
Be involved in the business application of the company by maintaining customer loyalty and act as a product expert focused on customer education and identify service expansion opportunities to drive increased revenue
Interface between different internal departments (Support, R&D, Sales, Pre-Sales, and more) to improve your skills, knowledge and problem-solving capabilities
Pay attention to support requests to identify recurring issues and recommend changes to the platform
Flexibility to accept a changing work description based on a hyper-fast startup

Join us and take your career to the next level in cybersecurity. As a leader in Automated Security Validation, we help businesses around the world safely emulate real-world attacks to uncover their vulnerabilitiesjust like the worlds best red teams.
youll be at the forefront of cybersecurity innovation, working on advanced tools that challenge organizations' defenses and push the limits of security testing.
With over 350 team members and 1,000+ customers in more than 50 countries, we are a growing company supported by top investors like Insight Partners, K1, and The Blackstone Group.
If you're looking to grow your skills, make a difference, and be part of an innovative team, is the place for you.
Responsibilities:
Become an important figure in the onboarding process of new customers
Help design and deploy and all its products on our customers infrastructure On-prem and Cloud
Guide our customers to an early start with our products by getting them to production stage
Help our customers to purchase suitable hardware
Pass network knowledge to the Solutions Architects and Customer Success Managers

Join us and take your career to the next level in cybersecurity.
As a leader in Automated Security Validation, we help businesses around the world safely emulate real-world attacks to uncover their vulnerabilitiesjust like the worlds best red teams.
youll be at the forefront of cybersecurity innovation, working on advanced tools that challenge organizations' defenses and push the limits of security testing.
With over 350 team members and 1,000+ customers in more than 50 countries, we are a growing company supported by top investors like Insight Partners, K1, and The Blackstone Group.
If you're looking to grow your skills, make a difference, and be part of an innovative team, we are the place for you.
Responsibilities
Become an important figure in the onboarding process of new customers
Help design and deploy and all its products on our customers infrastructure On-prem and Cloud
Guide our customers to an early start with our products by getting them to production stage
Help our customers to purchase suitable hardware
Pass network knowledge to the Solutions Architects and Customer Success Managers

We are looking for the best to join us as we expand our groundbreaking journey.
We are confident that your unique skillset, perspective, and passion, encouraged and inspired by our wealth of technology, research and expertise in these fields will be the driving force needed to continue being an industry spearhead for many years to come.
Position Description:
We are interested in welcoming a Senior Cybersecurity Expert to join our team, to plan, research, and develop proprietary automotive cybersecurity solutions.
Responsibilities and tasks include:
Threat and vulnerability assessment and analysis
Design, implement, and verify mechanisms to neutralize potential threats
System hardening and characterization
Penetration testing

In this role, you will be part of global IT organization; You will lead a team that its responsibility is to manage IT security service operation in a proactive manner.

In this role, you will be working closely with other internal IT teams as well as extensive work with IT internal customers to adhere with business needs and committed IT security and service level.

Responsibilities:

Global responsibility for designing, building, maintaining, and securing CyberArk network and communication systems from strategy to delivery and service operations and related processes
Responsible for administering security-related infrastructure and applications, such as intrusion detection/prevention systems, EDR, DLP, firewalls, cloud security tools, and vulnerability scanners etc. Including defining and implementing the security systems configuration, policies and hardening based on security policies and operational considerations.
Work with CyberArk CISO to translate security policies into architecture and delivery.
Responsible for Security operation projects to design, implement and support security tools and systems. This will require you to lead projects or ensure the successful projects in this domain which are led by the team.
Managing a team of security system engineers
Responsible for building all the required governance methods and tools of the IT security service, in addition accountable to validate that CyberArk security services are fully updated, and all endpoints are fully in compliance.
Create and maintain technical documentation (e.g. designs, procedures) as needed.
Responsible to meet IT support service level targets and lead a proactive approach to improve the service level and the team efficiency.

We are looking for a versatile and innovative Attack-oriented Cyber Researcher to join our R&D team and become part of the revolution. You will conduct state-of-the-art research across multiple environments, ranging from Windows internals and kernel-level security to cloud platforms like AWS, Azure, Web technologies, etc' to stay one step ahead of real threat actors.
Your findings, your code and attack tools will feed directly into our automated attack platform, enhancing its capabilities with new offensive techniques and AI-powered decision-making algorithms.
Roles and Responsibilities:
Perform in-depth research in multiple areas such from AV/EDR evasion, binary exploitation, vulnerability discovery, and subversion of communication channels across both OS-level, domains, cloud-native domains, external surfaces.
Integrate research outputs into production-grade attack functionalities within our automation ecosystem.
Architect and develop AI-driven decision-making modules that enable the platform to mimic experienced attackers, making real-time choices during automated operations.
Develop production-ready attack capabilities using whatever technologies are necessary, Python, C/C++, C#, Java, Office Macros, Bash, PowerShell, Go, Ruby, Assembly, etc.
Mentor and collaborate with fellow R&D team members, fostering a culture of innovation and continuous learning.

As the Senior Director of Cyber Security Center , you will lead the frontline of our cyber defense strategy. You will build, manage, and continuously enhance a world-class capability that includes our Security Operations Center (SOC), Threat Hunting, and Threat Intelligence teams.

Youll be responsible for ensuring real-time threat monitoring, proactive hunting, and deep analysis of adversarial activity all while leveraging AI and automation to accelerate detection, decision-making, and response. You will drive the integration of AI/ML models and threat intelligence into SOC workflows, helping your teams stay ahead of evolving threats and reduce noise through intelligent alerting and prioritization.

Youll define the vision and operational model for modern, threat-informed defense, lead response to high-impact incidents, and collaborate across cyber protection, risk, and technology teams. Youll support the CISO providing insight into threat trends, AI-driven insights, and the overall health of cyber defense posture.


Key Responsibilities

Lead and mature global Cyber Security Center, including 24/7 Security Operations, Threat Hunting, and Threat Intelligence functions.
Establish strategic direction and operational excellence across detection, response, and threat analysis programs.
Oversee incident response efforts, ensuring coordinated investigation, containment, and remediation of security events.
Build and scale proactive threat hunting programs, using hypothesis-driven methods, advanced analytics, and threat behavior models.
Operationalize threat intelligence to improve detection coverage, prioritize threats, and anticipate adversary behavior.
Own the integration and optimization of detection technologies, including SIEM, SOAR, EDR, and threat intelligence platforms.
Define and track operational metrics, such as mean time to detect (MTTD), mean time to respond (MTTR), false positive rates, and threat coverage.
Foster strong partnerships across Cyber Protection, IT, Engineering, and Risk teams, enabling coordinated defenses and incident handling.
Lead, mentor, and grow a high-performing team of security analysts, hunters, and intelligence professionals.
Stay ahead of the evolving threat landscape, continuously evaluating new technologies, frameworks, and methodologies.