דרושים » אבטחת מידע וסייבר » Automation Security Analyst

Requirements:
3+ years of experience in Security Operations & IR
Hands-on experience with SIEM platforms
Strong knowledge of cloud security (AWS, Azure, or GCP).
Experience with SaaS products required.
Proven experience creating and tuning detection rules, dashboards, and reports.
Experience with automation tools
Familiarity with EDR, WAF, DLP, and vulnerability management tools.
Solid understanding of network protocols, logs, and common attack techniques.
Experience working with ticketing systems
Excellent problem-solving, analytical, and communication skills.
Ability to work in a fast-paced environment and manage multiple priorities.
Knowledge in Python - Advantage
Deep understanding of the MAC OS and Windows environments

Requirements:
3+ years of hands-on experience in security operations, incident response, or a similar cybersecurity role.
Strong hands-on experience in IT security, endpoint protection, identity security, and general security operations.
Solid understanding of cloud platforms (GCP/AWS/Azure) and practical experience improving cloud security.
Strong knowledge of SIEM technologies (Splunk, ELK) and experience with incident response and DFIR workflows.
Proficiency with Python, Bash, or PowerShell for automation and scripting.
Familiarity with SOAR platforms and building automated playbooks.
Strong communication skills with the ability to collaborate across DevOps, IT, R&D, and business teams.

Requirements:
A background of at least 7 years in:
Blue Teaming / Threat Hunting
Incident Response
Red Teaming / Penetration Testing - Advantage
Malware analysis experience - Advantage
Solid understanding of various enterprise technologies, such as:
OS internals, EDR
Active Directory, Office 365
Cloud technologies such as AWS, Microsoft Azure and GCP
Network protocols and security products
Identity & SSO products such as Okta, Auth0 and OneLogin
Kubernetes
Experience with Python, SQL or similar data analysis capabilities
Experience around working with customers - Advantage
Experience around writing blog posts, research papers, and public speaking - Advantage
Experience with mentoring and training of security researchers - Advantage
Proficient in English (both written and spoken)

Requirements:
2+ years of experience in a Security Operations Center or Managed Detection and Response, specifically involving cloud environments.
Solid knowledge in Cloud Security, with familiarity in cloud services, Kubernetes, cloud architecture, and major providers (AWS, GCP, Azure).
Strong analytical skills with a detail-oriented mindset, capable of assessing complex security incidents, separating false positives from true compromise, and providing actionable insights.
Passion for continuous learning and improvement, staying up-to-date on the latest trends, threats, and best practices in cloud security.
Excellent communication skills verbal and written both in Hebrew and English.

Requirements:
6+ years of hands-on experience in network security architecture, cloud network security, or related infrastructure/security roles.
Strong expertise in AWS networking and cloud architecture: VPC design, routing, TGW, NACLs/SGs, multi-region patterns.
Deep understanding of enterprise network architecture, segmentation, routing, firewalls, and secure network design principles.
Proven experience performing architecture reviews, providing design recommendations, and influencing technical decision-making.
Experience evaluating and implementing security tools, cloud security technologies, and PoCs in production environments.
Strong familiarity with threat modeling, risk assessments, and secure design frameworks.
Experience collaborating with R&D, DevOps, and IT teams in fast-paced product environments.
Hands-on understanding of cloud-native security, identity/security controls, and modern network-security concepts (Zero Trust, IAM, secrets management, etc.).
Ability to independently lead complex architecture initiatives end-to-end.
Excellent communication skills, with the ability to translate complex technical risks into clear, actionable insights.
Proactive mindset, strong analytical abilities, and passion for designing secure and scalable systems.

Requirements:
5+ years of experience in cyber-security, cyber-incident response, and threat hunting.
Solid foundation in Cloud Security, with familiarity in cloud services, Kubernetes, cloud architecture, and major providers (AWS, GCP, Azure).
In-depth knowledge of OS internals for both Windows and Linux.
Strong analytical skills with a keen attention to detail.
Experience with scripting languages and querying languages.
Excellent communication skills, both verbal and written, in Hebrew and English.
Passion to solve any problem and to thrive as an independent and innovative Incident Responder.

Requirements:
What Will Make You Stand Out?
At least 5 years of hands-on experience in security leadership roles, ideally in fast-paced or hyper-growth environments
Proven experience securing AWS cloud-native infrastructure
Deep understanding of modern threat landscapes and experience implementing proactive defense strategies
Experience with compliance frameworks (e.g. SOC 2, ISO 27001, GDPR, HIPAA)
Strong background in security incident response, vulnerability management, and risk assessment
Familiarity with securing Kubernetes environments and CI/CD pipelines
Excellent communication skills with the ability to drive awareness and foster a security-first culture across technical and non-technical teams, including high level of spoken and written English
Experience working with remote and hybrid engineering teams.

Requirements:
Bachelors degree or equivalent in the fields of Information Security,
Computer Science, Data science, Advanced mathematics or a related field preferred.
5 years of experience in cybersecurity, risk management or product engineering, with 3 years focused on cloud security.
Strong knowledge of information security frameworks, standards and best practices (e.g. ISO 27001, NIST, COSO, CoBIT, MITRE, etc.)
Certifications in the information security field (CISSP, CISA, CISM, SANS, CEH) and a demonstration of continuous learning preferred.
Strong knowledge of cloud platforms (Microsoft Azure, Google GCP, Amazon AWS) and their security features and roadmaps. Certifications related to cloud providers are highly desired.
Strong knowledge of Content Delivery Networks and Web Application Cloud Security (API).
Hands-On Experience with CSPM technologies.
Excellent leadership, communications and interpersonal skills.
Professional-level English required to collaborate with global teams.

Requirements:
* Minimum 3 to 5 years of information security experience; specifically, incident response, malware analysis, and technical investigations.
* Experience with common security technologies (EDR/Endpoint technologies, IDS/IPS, Firewall/Proxy, SIEM, etc.).
* Demonstrated proficiency in one or more high-level programming languages (e.g., PythongreenTxtBg!).
* Good understanding of Linux Kernel or Windows internals.
* Good understanding of cloud technologies (AWS/Azure and office365).
* Strong written and oral communication skills, with the ability to produce detailed investigation reports, articles, and webinars.
* Bachelors in Computer Science, Engineering, or other relevant field or equivalent work experience an advantage

Requirements:
* 3–5 years of experience in security operations, cloud security, or DevOps roles
* Strong hands-on experience with AWS services and cloud security concepts.
* Familiarity with CI/CD pipelines and security tooling (e.g., Jenkins, GitLab CI).
* Understanding of IaC frameworks (Terraform, CloudFormation) and related security practices.
* Experience with SAST/DAST tools, container scanning, and vulnerability management in DevSecOps workflows.
* Nice to have: knowledge of compliance frameworks (SOC 2, ISO 27001, NIST, CIS Benchmarks).
* Nice to have - AWS Certified Security, AWS Solutions Architect Associate, or DevSecOps-related certifications. About the Company: Appdome's mission is to protect every mobile app worldwide and its users. We provide mobile brands with the only patented, centralized, data-driven Mobile Cyber Defense Automation platform. Our platform delivers rapid no-code, no-SDK mobile app security, anti-fraud, anti-malware, anti-cheat, anti-bot implementations, configuration as code ease, Threat-Events™ threat-aware UI/UX control, ThreatScope™ Mobile XDR, and Certified Secure™ DevSecOps Certification in one integrated system. With Appdome, mobile developers, cyber and fraud teams can accelerate delivery, guarantee compliance, and leverage automation to build, test, release, and monitor the full range of cyber, anti-fraud, and other defenses needed in mobile apps from within mobile DevOps and CI/CD pipelines. Leading financial, healthcare, m-commerce, consumer, and B2B brands use Appdome to upgrade mobile DevSecOps and protect Android & iOS apps, mobile customers, and businesses globally. Today, Appdome's customers use our platform to secure over 50,000+ mobile apps, with protection for over 1 billion mobile end users projected.
Appdome is an Equal Opportunity Employer. We are committed to diversity, equity, and inclusion in our workplace. We do not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or any other characteristic protected by law. All qualified applicants will be considered for employment without regard to these characteristics.