דרושים » אבטחת מידע וסייבר » SecOps Specialist

At our company, we're on a mission to redefine vehicle safety and reliability on a global scale. Founded in 2016, we have pioneered the world's first fully automated suite of vehicle inspection systems. At the heart of this innovation lies our advanced AI-driven technology, representing the pinnacle of Machine Learning, GenAI, and computer vision within the automotive sector. With close to $400M in funding and strategic partnerships with industry giants such as Amazon, General Motors, Volvo, and CarMax, we stand at the forefront of automotive technological advancement. Our growing global team of over 200 employees is committed to creating a workplace that celebrates diversity and encourages teamwork. Our drive for innovation and pursuit of excellence are deeply Embedded in our vibrant company culture, ensuring that each individual's efforts are recognized and valued as we unite to build a safer automotive world.
We seek a highly skilled and proactive Senior SecOps Engineer to join our Security team and lead security operations across the organization. In this role, you will report directly to our CISO and work in close collaboration with the DevOps and R&D teams to embed security into every stage of the software lifecycle, protect our multi-cloud infrastructure, and ensure compliance with leading industry standards.
A day in the life and how youll make an impact:
* Report directly to the CISO and collaborate with DevOps and R&D teams to embed security into every stage of the SSDLC.
* Integrate security into CI/CD pipelines, Infrastructure as Code (Terraform, Helm, GitOps), and development workflows.
* Design, enforce, and monitor secure cloud configurations (AWS, GCP), including networking, IAM, encryption, and Kubernetes hardening.
* Implement and manage application security controls (SAST, DAST, SCA, code reviews).
* Lead incident response activities, including forensic investigations, vulnerability management, and threat mitigation.
* Deploy and operate CSPM tools (Wiz, Prisma, Orca), SIEM, WAF, and runtime security solutions.
* Drive compliance with ISO 27001, SOC 2, GDPR, ensuring audit readiness.

Were looking for a highly skilled and motivated DevSecOps Engineer to join our dynamic team. As a DevSecOps Engineer, you will be responsible for ensuring the secure and efficient operation of our software development and deployment processes. You will collaborate with cross-functional teams to integrate security practices into the development lifecycle and foster a culture of security awareness.
The ideal candidate will have a strong software development background, SDLC security principles, and threat modeling for application-based features.
What You'll Do:
Design, develop, and implement secure software development and deployment pipelines, incorporating security best practices, automation, and continuous integration/continuous deployment (CI/CD) methodologies.
Collaborate with development, operations, and security teams to identify and prioritize security vulnerabilities/issues and requirements and integrate security controls into the development lifecycle.
Perform vulnerability assessments and security code reviews to identify and address security vulnerabilities and risks.
Implement and manage security tools and technologies such as SCA, SAST, IaC Security, etc.
Develop and enforce security policies, standards, and guidelines to ensure compliance with regulatory requirements and industry best practices.
Stay updated with the latest security trends, vulnerabilities, and threat intelligence to proactively identify emerging risks and recommend security enhancements.
Collaborate with cross-functional teams to conduct security awareness training and promote a culture of security within the organization.
Evaluate blockchain protocol repositories for in-depth security and resiliency analysis reporting.
Use market data analysis to identify risk vectors for various crypto assets.
Understand complex protocol governance structures to prepare concise reporting for executive consumption and decision-making.
Analyze crypto asset data across various sectors to provide recommendations for the organization based on variable risk tolerances and use cases.
Take part in various tasks related to custody operations.

we are disrupting the Cyber Security industry! We are looking for a Senior Enterprise Information Security Engineer to join our Infosec team that owns, securing and delivering security for our Enterprise, SaaS, and Public Cloud security services. With your networking, firewall, cloud, and development skills, youll design, build automation and integrate along with our secure programs scale and secure our infrastructure and application in a Google Cloud Platform environment as well as collaborate with other team members. In this role, you will provide technical leadership in the development of Security programs by helping to drive the disruptive vision, technology planning, and estimation. If you are a fast learner and passionate about Cyber Security, this is a great opportunity for you
Your Impact
Providing advanced operations and engineering support for critical systems and services, including application and security infrastructure on-prem and in the cloud.
Responsible for assessing and reviewing the security and cloud infrastructure in both IT and production environments.
Coordinates with various teams to ensure appliances and services are configured with the correct posture to support business requirements.
In-depth knowledge of designing and implementing a Zero Trust Network Architecture, including network and identity segmentation.
Continuous monitoring and improvement of IT support practices to enhance scalability, reliability, and performance in the product infrastructure.
Assist in maintaining strong oversight of cloud computing solutions to safeguard against undue risks from third-party or external integrations.
Develop automation using SOAR tools to streamline repetitive tasks and improve the overall efficiency of the security team.
Collaborate with teams outside the Security Fusion Center, including Vulnerability Management, Network Engineering, OS Engineering, and product SRE.
Prioritize and respond to critical vulnerabilities and data exposures with urgency and effective risk mitigation strategies.
Develop and maintain security baselines for infrastructure components (e.g., VMs, containers, network devices) in alignment with CIS Benchmarks, NIST, and internal standards.
Support incident response activities, including containment, forensic investigation, root cause analysis, and post-incident documentation.
Perform regular policy and firewall rule reviews to ensure alignment with access requirements and enforcement of Zero Trust principles.
Contribute to governance, risk, and compliance (GRC) efforts, including audit participation, third-party risk assessments, and evidence collection for SOC 2, ISO 27001, or FedRAMP certifications.

Were looking for a highly skilled and motivated Application Security Engineer to join our dynamic team. As an Application Security Engineer, you will be responsible for ensuring the secure and efficient operation of our software development and deployment processes. You will collaborate with cross-functional teams to integrate security practices into the development lifecycle and foster a culture of security awareness. The ideal candidate will have a strong software development background, SDLC security principles, and threat modeling for application-based features
What Youll Do:
CI/CD Security Hardening
Improve and secure our continuous integration and deployment pipelines through the selection, implementation, and tailoring of new tooling, as well as the maintenance and enhancement of our current stack.
Security Tooling Management
Operate, fine-tune, and customize tools like Snyk, Apiiro, and other AppSec platforms to reduce false positives and enhance threat detection.
Policy Definition
Collaborate with cross-functional teams to develop practical, enforceable CI/CD security policies.
Security Orchestration & Automation
Build and maintain automated playbooks and workflows using orchestration platforms like Torq to support incident response and alert management.

We are looking for a passionate and experienced Senior DevSecOps Architect to join our growing team!

In this pivotal role, you will take the lead in designing, planning, and implementing robust information security strategies across our infrastructure. Youll be at the forefront of integrating security into every stage of our development and deployment processes ensuring our systems are secure, scalable, and aligned with best practices. This is a unique opportunity to shape the security architecture of a fast-moving, innovative company, and work closely with engineering, IT, and security teams to drive a culture of security-first development.

Responsibilities
Craft and implement cutting-edge cloud security controls and technologies.
Lead design, implementation, and integration of various cloud security tools.
Monitor security events and perform triage analysis.
Identify new technologies and security tools and lead operationalization solutions from POC to Production.
Help build infrastructure, tools, and services to improve delivery and availability.
Work closely with DevOps, Engineering and product teams to define security strategy and controls and execute on it.
Collaborate with R&D teams on designing and the implementation of new features.

We are growing and are looking for future Axonians who value personal and career growth, team-work, and winning!
As a Senior IT Systems Engineer, you will be a technical leader responsible for designing, implementing, and managing our identity platform and corporate SaaS applications. In this position, you will partner with business users and other technology teams to support, grow, and implement Corporate IT systems and infrastructure, including products such as Okta, Google Workspace, Atlassian Product Suite, Zendesk, Slack, Zoom, and other industry-leading products. You will play a pivotal role in ensuring the security and compliance of our systems while delivering a seamless user experience.
The IT Systems Engineering team is responsible for enabling efficient and compliant operations. We focus on delivering and managing critical SaaS applications, endpoint compliance, network administration, and identity and access management (IAM) solutions to support our global workforce.
Manage and optimize wireless networking environments, with a focus on Cisco Meraki and Fortinet solutions, including access point deployment, configuration, monitoring, and troubleshooting.
Serve as a subject matter expert for network architecture, maintaining documentation and standards across corporate locations.
Administer and maintain Microsoft Intune for Windows device lifecycle management, including configuration profiles, compliance policies, app deployments, and conditional access.
Perform advanced Windows OS troubleshooting, including deep-dive analysis of system logs, driver conflicts, group policy issues, and application compatibility challenges.
Manage the administration, day-to-day operations, and troubleshooting of SaaS applications, endpoint management, and identity processes
Develop and maintain automation processes related to identity lifecycle, application configuration, and data management.
Collaborate with key business stakeholders to ensure alignment with business requirements.
Troubleshoot and reference the 3rd party vendor support documentation on API integrations
Manage the configuration of new SaaS systems in Okta to streamline the delivery of services to the user community
Lead incident response and problem resolution for various applications
Partner with Security & Cyber Security Assurance to enforce strict cross platform security and audit controls.

We are making the future of Mobility come to life starting today. At our company we support the worlds largest vehicle fleet operators and transportation providers to optimize existing operations and seamlessly launch new, dynamic business models - driving efficient operations and maximizing utilization.
We are seeking a highly skilled and experienced Information Security Specialist to join
our company's security team. This role is critical in ensuring the security and integrity of our companys infrastructure, services and endpoints. The ideal candidate will have a deep understanding of security principles, architectures, and technologies, endpoint and site security, along with hands-on experience.
As the Information Security Specialist, you will be responsible for designing, implementing, and maintaining robust security measures to protect our assets and data. Working closely with various international stakeholders to integrate security best practices in all stages of the design and operating model, from design and deployment to monitoring and incident response.
What You'll Do:
Design and maintain the company's security model, ensuring alignment with best practices and regulatory requirements.
Manage and maintain our companys security, including the site and endpoints employees use.
Assist with the deployment and assurance activities associated with Security controls with our company. .
Continuously monitor environments, detect threats, and lead effective incident response and remediation efforts.
Ensure compliance with global standards (e.g., GDPR, ISO 27001, NIST) by driving audits, risk assessments, and security governance processes.
Co-ordinate offensive security activities including penetration testing, red team exercises, and third-party risk evaluations.
Drive continuous improvement of security operations, championing automation, zero-trust architecture, and emerging security capabilities.

Our team is at the forefront of ensuring the security and resilience of this critical infrastructure, and we're looking for a visionary Security Architect to play a pivotal role in designing and implementing robust security solutions across our infrastructure and applications.

If you have a passion for building secure-by-design systems, a deep understanding of both infrastructure and application security principles, and the ability to translate complex requirements into actionable blueprints, we want to hear from you. You'll be instrumental in shaping our security landscape, ensuring our platform remains a trusted and secure environment for our global users.

What You'll Be Doing:
This is a hands-on position. You need to love writing Python, working with APIs, and codifying infrastructure. Lead the architectural design and implementation of security solutions for our cloud infrastructure, network, and applications.
Get your "hands dirty", fearlessly working on our most complex and risky problems involving production systems and networks.
Constantly push optimizations and best practices. Define and maintain security standards, frameworks, and best practices across the organization.
Collaborate closely with engineering, product, and operations teams to integrate security seamlessly into the development lifecycle and infrastructure deployments.
Evaluate and recommend security technologies and tools to enhance our security posture.
Develop security reference architectures and patterns to guide engineering teams in building secure solutions.
Participate in threat modeling and risk assessment activities to proactively identify and mitigate potential security threats.
Provide expert guidance and mentorship to engineering teams on security-related topics.
Stay current with the latest security trends, threats, and technologies, and translate them into actionable strategies for us.

We are seeking a Senior Software Architect to lead and shape the architectural vision of our SaaS healthcare platform, guide the adoption of cutting-edge AI technologies, and ensure our solutions remain scalable, secure, and future-ready.
This is a hands-on, strategic leadership role that combines visionary system design, proof-of-concept development, and AI-first innovation enablement.
Responsibilities:
1. Architectural Leadership
Define, communicate, and evolve the platforms architectural vision to ensure alignment with business goals.
Lead high-level design discussions and decisions for new and existing products.
Establish and maintain architectural principles, standards, and patterns across all engineering teams to ensure consistency and coherence.
Drive cloud-native architecture in AWS with a strong focus on scalability, availability, performance, and cost efficiency.
2. Innovation & Emerging Technology
Build POCs and pilots for new solutions, frameworks, and AI capabilities.
Evaluate emerging trends in AI, LLMs, MCPs, agents, and developer productivity tools, ensuring strategic adoption where relevant.
Initiate projects/features to solve widespread problems (including work with Support, DevOps, Infosec)
3. AI Tooling Evangelism
Spearhead engineering-wide adoption of AI-assisted development workflows, including developer productivity tools, code copilots, automated quality checks, and automated documentation.
Define best practices, guidelines, and governance for AI usage in development (e.g., Cursor configuration rules, prompt engineering standards).
Educate and mentor teams on effective AI utilization for engineering, product, and operational tasks, taking into account security, costs, and compliance.
4. Technical Governance & Best Practices
Overall ownership of the system scalability, COGS, and stability of the Navina product(s)
Define standards for coding, testing, CI/CD, and monitoring.
Enforce architectural and design reviews for key initiatives.
5. Cross-functional Collaboration
Work closely with Engineering, Product, Data Science, DevOps, and Security teams to deliver well-architected solutions.
Communicate complex technical concepts to non-technical audiences, including executives and external partners.