דרושים » אבטחת מידע וסייבר » Information Security Specialist

Artlist is a leading creative technology company on a mission to empower creators and brands to bring their vision to life with video. Offering cutting-edge AI tools and models for image, video, and voiceover creation, alongside high-quality creative assets and powerful editing tools, Artlist enables creators to stay on trend, and achieve their creative goals. Trusted by over 30 million creators worldwide and top brands including Google, Amazon, Microsoft, and Versace, Artlist provides a seamless, subscription-based platform with a global license, giving creators everything they need to produce professional video content efficiently. For more information, visit artlist.io We’re seeking a GRC (Governance, Risk & Compliance) Lead to join our Security & IT team — a strategic role at the crossroads of cloud security, AI governance, and compliance management. As GRC Lead, you’ll own Artlist’s governance and risk strategy across our cloud-native and AI-driven environments , ensuring alignment with frameworks such as SOC 2, ISO 27001, and GDPR. You’ll work closely with Product, R&D, Legal, and IT leadership to build scalable policies, oversee audits, and support the secure growth of our technology platforms and AI initiatives. This is a key position for someone who can translate security and compliance principles into business value, helping Artlist innovate securely at global scale. Responsibilities Governance & Policy Management
* Develop, maintain, and communicate information security and AI governance policies, standards, and procedures.
* Establish clear guidelines for the secure use and development of AI tools and data-driven products.
* Collaborate with IT, DevOps, and Legal to ensure compliance alignment across GCP-based infrastructure and global operations. Risk Management & Compliance
* Lead Artlist’s governance and risk program — identifying, assessing, and tracking security and compliance risks across cloud and AI systems.
* Drive and coordinate all external audits and certifications (SOC 2, ISO 27001, GDPR, etc.).
* Conduct internal control testing and readiness assessments to ensure a strong compliance posture.
* Oversee vendor and third-party risk management, including SaaS platforms and AI technology providers. Security Program & Cross-Functional Collaboration
* Partner with Product and Engineering teams to embed “security and privacy by design” practices into product workflows.
* Support the secure adoption and monitoring of AI systems, ensuring compliance with privacy, data residency, and model governance standards.
* Collaborate with IT and DevOps on business continuity, disaster recovery, and incident response readiness. Reporting & Continuous Improvement
* Deliver management reports, dashboards, and risk summaries with actionable insights.
* Identify opportunities to automate compliance evidence collection and risk assessments across GCP and SaaS environments.
* Continuously track new regulatory, AI, and security frameworks to future-proof Artlist’s compliance strategy.

were looking for an experienced CISO to join the team. You will be responsible for all aspects of our security programs such as Enterprise information security assurance, policy, compliance, and security audits, vulnerability and security assessments, including testing of our infrastructure, internal applications, and solution offerings. In addition, you will be in charge of the incident response and security awareness employee training.



Responsibilities:

Enhance and implement the security strategy, including objectives, architecture, information access model, budget, schedule, staffing, and vendor engagement.
Ensure that solution and service offerings meet required compliance levels.
Represent the security program externally with customers, prospects, and partners, and internally with employees.
Collaborate with the Operations and Engineering teams to integrate security requirements into the product roadmap, implementation, operation, and support.
Collaborate with IT and HR on corporate security, physical security, workplace safety matters, and personnel security.
Develop and maintain our privacy program, own GDPR/CCPA compliance, handle data-subject requests, conduct DPIAs, and train the business on privacy best practices.
Manage security incidents in the production and IT environments.
Lead remediation from audit findings or security incidents.
Own the company's security awareness program and training.

We are seeking a Senior AI Product Security Engineer to join our innovative team at our company . As our Senior AI Security Engineer, you will lead the development and implementation of security frameworks for our AI systems, combining strategic thinking with hands-on technical expertise. This role presents an outstanding opportunity for a professional who is passionate about AI security and driven to advance the field. Working alongside professionals who share your commitment to excellence, you will be at the forefront of securing our AI products. We value professionals who embrace challenges and demonstrate the ability to quickly adapt to and master new technologies.

Key Responsibilities:

Lead security evaluation and enhancement initiatives across our AI products
Drive innovation through research and implementation of advanced AI security technologies
Conduct comprehensive code reviews, threat modeling, and vulnerability assessments
Design and implement robust security architectures for AI systems
Collaborate with cross functional teams to track security defects and align with them on remediation steps.
Provide technical leadership and mentorship in AI security best practices

Required Security Research Manager - Cloud - Security Automation ( Cortex)
Your Career
Are you excited about leading a team of researchers who are redefining how cloud security is automated? Do you want to shape the future of an Autonomous SOC by building the next generation of remediation and response content?
As the Cloud Cybersecurity Research Manager, you will lead a team of talented researchers creating autonomous remediation plans for cloud runtime and posture issues. You will drive innovation, mentor researchers, and ensure our automation content is precise, safe, and impactful. This role combines hands-on technical knowledge with strategic leadership, empowering your team to deliver solutions that protect customers at scale.
Your Impact
Lead and mentor a team of cloud security researchers, fostering technical excellence, innovation, and collaboration
Define research priorities and guide the design of robust, testable, and autonomous remediation plans for cloud runtime and posture issues (CSPM, DSPM, CIEM, CNAPP, IAM, etc.)
Ensure high-quality delivery of SOAR playbooks and automation content aligned with customer needs and company vision
Collaborate with product, engineering, and threat research teams to maximize the impact of remediation content
Establish processes, KPIs, and best practices to continuously improve research output, playbook quality, and operational efficiency
Stay up to date with attacker TTPs, cloud-native threats, and emerging technologies to guide team direction.

About the Engineering Team
Were a team of smart, curious engineers building scalable, reliable systems that power content creation for millions. We work with modern web technologies, tackle real-world challenges in distributed systems, and keep things practicalno overengineering, just solid solutions. If you love solving tough problems, moving fast, and building tech that creators actually use, youll fit right in.
On your day to day
we are looking for a Head of Security. In this role, you will be responsible for defining and executing our security strategy across infrastructure, applications, and corporate environments. Youll establish and enforce security best practices, proactively monitor and respond to threats, and ensure compliance with relevant regulations and standards. You will also work cross-functionally with Engineering, Legal and Finance to embed security into everything we do. With our company scaling rapidly, youll be making a critical impact from day one.

Required IT & Security Operations Specialist
Responsibilities:
Lead and manage E2E complex projects in the IT, IS and Security department
Coordinate and work closely with security teams
Establish effective relationships with stakeholders, communicate project updates and risks, collaborate with business units to understand their needs.
Develop and maintain project documentation, prepare reports and departments statistics.
Experience in managing projects related to security infrastructure, compliance, risk, GRC, IAM, or cloud security.

At our company, were reinventing DevOps to help the worlds greatest companies innovate -- and we want you along for the ride. This is a special place with a unique combination of brilliance, spirit, and just all-around great people. Here, if youre willing to do more, your career can take off. And since software plays a central role in everyones lives, youll be part of an important mission. Thousands of customers, including the majority of the Fortune 100, trust our company to manage, accelerate, and secure their software delivery from code to production -- a concept we call liquid software. Wouldn't it be amazing if you could join us on our journey?The companyCSO Security team is looking for a Senior Application Security Researcher. In this role, you will perform vulnerability research, assess existing architectures, and build and run tools to secure the company application landscape at scale. You will work closely with R&D and DevOps teams and be the focal point for identifying and solving complex security challenges. This is a hands-on, development-focused role with the goal of ensuring our company products adhere to the stringent security requirements of our thousands of customers.
As a Senior Application Security Researcher at our company you will
Continuously assess and challenge our companys overall security posture to ensure optimal and up-to-date platform security in our products and systems
Evaluate architecture, design, and code to ensure they are free from potential vulnerabilities and security risks
Train and mentor developers about security frameworks, testing, vulnerabilities, and best practices to ensure code compliance
Evaluate new technologies and standards in the application security domain
Plan and lead cross-company efforts with the R&D that will improve our companys security posture.

The company CSO Office is seeking an Application Security Engineer. In this role, you will contribute to driving security across the SDLC at scale, empowering developers, and enabling secure development through automation, process, and tooling. Youll work as part of a team of security engineers focused on SSDLC automation, vulnerability management, and proactive engagement with R&D.
This is a hands-on technical role that combines architecture, coding, and collaboration, working closely with Product, Engineering, DevOps, and Security stakeholders.
As an Application Security Engineer at our company you will...
Assist in the development of internal security tools and AI agents
Support the design and implementation of SSDLC practices and automated security controls across the CI/CD pipeline
Contribute to building and operating scalable vulnerability management frameworks across cloud-native services and SaaS products
Integrate security into Agile and DevOps processes, including threat modeling, SAST, DAST, and SCA
Develop Internal application security Tools and Automations
Partner with development and DevOps teams to embed security early and often
Contribute to secure code reviews and assist with remediation strategies
Track, triage, and report vulnerabilities across product lines
Support the adoption of secure development best practices.

XM Cyber is a global leader in hybrid cloud security. XM Cyber brings a new approach that uses the attacker’s perspective to find and remediate critical attack paths across on-premises and multi-cloud networks. The XM Cyber platform enables companies to rapidly prioritize and respond to cyber risks affecting their business-sensitive systems.
About the role: Are you a super-talent Senior Software Engineer with a deep passion for cybersecurity and a profound understanding of AI-driven attack techniques? We are looking for a highly professional and responsible R&D member to join our team.
This role is for someone who thrives on technical challenges and is ready to leverage their expertise to identify, analyze, and defend against advanced cyber threat
Responsibilities: As a Senior Software Engineer in R&D, you will be a key player in the design, development, and deployment of our cybersecurity platform. Your responsibilities will include: ? Leading the research and implementation of techniques to identify and mitigate AI-related attack methods, such as data manipulation and adversarial attacks on security systems. ? Developing and integrating new security features into our platform to proactively defend against modern cyber threats. ? Collaborating with our team to define technical requirements and architectural solutions for cutting-edge security features. ? Tackling challenging technical problems at the intersection of cybersecurity and low-level systems.

we are looking for an experienced Incident Responder to join our newly established team. The team will support customers in responding to cloud incidents and proactively hunt for undetected threats.
WHAT YOULL DO
Investigate real-world cyber-attacks on customers cloud environments and cloud workloads, understanding their root causes and the full scope of compromise, leveraging the company platform.
Perform proactive threat hunting to identify undetected cyber-attacks and cloud threats within customer environments.
Collaborate with customer teams during engagements to effectively respond to threats.
Develop and deliver professional engagement reports, including high-level summaries and deep dives into technical findings.
Develop and document incident response methodologies, best practices, and standard operating procedures tailored to cloud environments and cloud workloads.
Collaborate with the threat research and engineering groups to refine and enhance incident response detections, tools, and features, based on real-world investigation experiences.