דרושים » אבטחת מידע וסייבר » Threat Intelligence Analyst

We are seeking an experienced and analytical Intelligence Methodologist to join our new Gen AI team .
You will collaborate with analysts, product managers, data scientists and developers to design and optimize investigative workflows, ensuring our solutions address real-world intelligence challenges effectively.
This is a unique opportunity to combine your expertise in intelligence methods with cutting-edge conversational Gen AI technology.
you will:
Fostering cross-functional communication and bridging collaboration between Product Management, Data Science, and Development teams to design knowledge structures, training logic, and investigative methodologies that drive LLM-based conversational AI.
Develop and curate high-quality domain-specific datasets for training and evaluation.
Communicate findings, progress to stakeholders, and provide recommendations for further enhancements.
Provide expert knowledge and insights to ensure the LLM agent understands and processes domain-specific language accurately.
Design, document, and refine methodologies for conducting intelligence investigations.
Train intelligence analysts on the use of methodologies and tools.
Create documentation and training materials to support effective adoption of workflows.
Collaborate with internal teams and external partners to understand operational requirements.

we are looking for a Manager Cyber Defense Center
Responsibilities
Lead, mentor, and manage a team of analysts and incident responders, fostering a culture of continuous improvement and collaboration.
Oversee real-time monitoring, analysis, and escalation of security events using SIEM, SOAR, and other security tools.
Develop, implement, and optimize SOC processes, playbooks, and standard operating procedures.
Coordinate incident response activities, ensuring timely investigation, containment, eradication, and recovery from cyber incidents.
Serve as the primary point of contact for major security incidents, coordinating with internal stakeholders and external partners as needed. Ensuring effective communication and coordination among stakeholders throughout the lifecycle of security incidents.
Stay informed on the latest cyber threats, vulnerabilities, and regulatory developments to adapt the organizations security posture proactively.
Prepare and deliver regular reports, metrics, and presentations to executive management regarding Cyber Defense Center's performance and emerging risks.
Support compliance efforts and audits related to cybersecurity frameworks (e.g., SOC2, ISO 27001).
Manage Cyber Defense Center's technology stack, including evaluating and recommending tools and solutions for threat detection and response.
Establish and lead a dedicated purple team to enhance detection, response, and resilience against threats.

We are looking for a Senior Security Technical Program Management - Threat protection research.
As a Technical Program Manager for Security Threat Research, you will own the strategy, planning, and execution of global threat research programs in the area of attack response automation, with a strong emphasis on quality, operational excellence, and AI-driven innovation to enhance the protection value to cusotmers.
Were looking for an experienced professional with proven program management expertise and solid technical security knowledge, who can bring clarity, structure and a proactive approach to complex, cross-functional environments.
Youll collaborate closely with threat researchers, data scientists, product managers, and engineering teams across Defender XDR and related security and AI technologies to deliver programs that advance threat response automation and strengthen protection for customers worldwide.
Responsibilities:
Drive the creation and execution of threat response quality programs and processes, incorporating insights and AI across global research and product teams.
Develop and maintain program plans, timelines, OKRs, and KPIs to ensure high-quality and timely delivery.
Act as a technical and strategic advisor, collaborating across teams to share knowledge, influence decisions, and shape future directions.
Provide guidance and coaching that promote an inclusive culture and a growth mindset across teams.

Required DFIR Expert
Herzliya, Israel, Full Time, hybrid
Our DFIR team is responsible for responding to our clients' cyber incidents and crises.Our group is expanding. If you see yourself in the front line of the cybersecurity domain as a digital forensic and incident response (DFIR) talent, your place is with us. As a DFIR team member, you will participate in hands-on security research and investigations, helping our customers understand and mitigate cyber threats and attacks.
Responsibilities
Perform incident response lifecycle and real-time activities, including detection and analysis, containment and eradication, and recovery
Perform incident response in a cloud environment (Azure, AWS etc.).
Perform digital forensics investigations
Research and analyze tactics, techniques, and procedures (TTPs) used by malicious actors
Perform hunt-evil and find-evil activities for proactively detecting attacks
Work closely with our in-house red team, CTI, and cyber architect teams
Work closely with worldwide companies, CISOs, and technology experts.

We are looking for a talented, tech-savvy individual to join our Cyber Security team and help us tackle the toughest security challenges in cutting-edge ecosystem.
In this role, you will be a subject matter expert and play a major part in our efforts to build and maintain security infrastructure, design secure architectures, enforce security best practices, and automate security processes.
The Cyber Security team is composed of strong and experienced security engineers, responsible for defining the security strategy and managing all of infrastructure.
Responsibilities:
Define, implement, and maintain security policies, standards, and methodologies; ensure they evolve with new threats and technologies.
Design, deploy, and operate detection, prevention, and response technologies across a scaled, diverse, and complex environment (hybrid infrastructure: public cloud + on-premises).
Build and operate secure infrastructure: hands-on ownership of security configurations and system hardening.
Conduct security assessments, secure-design reviews and architecture assurance reviews to identify and mitigate possible security risks.
Automate security processes: configuration deployments, infrastructure management, detection, response, compliance checks, patching, configuration drift, etc.
Design, develop, and implement secure software development and deployment pipelines, incorporating best practices, automation, and CI/CD methodologies.
Stay ahead of emerging cyber threats and technologies: research, evaluate, pilot, and integrate where relevant.
Participate in creating incident response playbooks, coordinate incidents investigations, root cause analysis, and lessons learned.

We are looking for a Senior Security Researcher - Red Team.
As a Senior Security Researcher, you will lead proactive vulnerability research, developing novel proofs-of-concept and exploit chains that emulate real-world attackers.
You will discover vulnerabilities across AI systems, validate exploitability, and work closely with engineering and product teams to drive remediation. The vulnerabilities you will find will impact hundreds of millions of users!
Responsibilities:
Become a founding member of the AIAL group as part of Red Team. Help shape the team culture and practices.
Research and discover zero-day vulnerabilities in AI applications, models, and AI service ecosystems. Work closely with Red Team operators and engineering teams to address findings and strengthen resilience of AI-driven systems.
Analyze a wide array of data sources to identify potential security weaknesses and breach points within AI infrastructure.
Develop tools and techniques to scale and accelerate adversary emulation and vulnerability discovery.
Advocate for security change across the company through building partnerships and clearly communicating impact of risks.

We are seeking a security researcher, who enjoys unraveling the mysteries and unique patterns of corporate computing environments and attackers techniques in enormous scale of signals and security mechanisms, to join our Israeli research team and help provide our customers with tools to improve their security posture.
The job includes performing both low level and high-level research of attackers techniques, security mechanism and controls and data analysis over various types of telemetries.
We value diversity and welcome candidates with different experiences and perspectives. If you are a team player who loves creating products for and with customers, come join us and be part of building a better world.
Responsibilities:
Analyze and research security controls, attackers techniques and anomalous patterns
Explore massive amounts of data to come up with new security posture insights, which can then be translated into security findings for our customers
Work together with the different engineering teams to develop the code to support the research findings
Collaborate with multiple product teams to design sensors, implement discovery & detection logics and validate their effectiveness using a data-driven approach
Collaborate with other teams across and come up with innovative ideas which should be part of future versions of the produc

As a SOC Analyst Tier 1, you will:
Work in shifts 247, including weekends and holidays
Proactively hunt and monitor cyber threats
Analyze raw data, traffic and TTPs to maintain a dynamic comprehensive threat model
Develop dashboard to handle security alerts and incidents
Work with forensic tools.

We are looking for an Application Security Pen Tester to join the Application Security team responsible for application security.
The successful candidate will be responsible for contributing to our Cloud/On-prem strategic security program.
Responsibilities:
Conduct on-going Penetration testing activities across all platforms and services
Identify and facilitate remediation of application and cloud security exposures and vulnerabilities
Work to obtain the right mandate to ensure no new products or services are launched without the appropriate security controls
Take a part in development lifecycle and integration of security features into all phases of software design and development
Manage, aggregate, triage and track Vulnerabilities identified by external Assessors.
Assist in implementing Security Testing tools (Dynamic, Static and Runtime) in the Testing pipeline
Assist in defining testing scenarios for the Continuous Integration tests to cover identified vulnerabilities
Work closely with R&D to enhance application security on all layers

We are seeking a security researcher, who enjoys unraveling the mysteries and unique patterns of corporate computing environments and attackers techniques in enormous scale of signals and security mechanisms, to join our Israeli research team and help provide our customers with tools to improve their security posture.
The job includes performing both low level and high-level research of attackers techniques, security mechanism and controls, and data analysis over various types of telemetries.
Responsibilities include:
Analyze and research security controls, attackers techniques and anomalous patterns
Explore massive amounts of data to come up with new security posture insights, which can then be translated into security recommendations for our customers
Work together with the different engineering teams to develop the code to support the research findings
Collaborate with multiple product teams to design sensors, implement discovery & detection logics and validate their effectiveness using a data-driven approach
Collaborate with data science teams to understand and identify detection gaps, capabilities, assumptions and improvements
Collaborate with other teams across and come up with innovative ideas which should be part of future versions of the product