דרושים » אבטחת איכות QA » Senior Manager, Linux & Cloud Detection Engineering

Required Fraud Group Manager
Tel Aviv-Yafo, Gush Dan, Israel
We offer the industrys only platform that fuses customer identity and anti-fraud solutions - customer identity management, identity verification, and fraud prevention.
We sell to industries with large, consumer-facing businesses such as: banking, financial services, insurance, fintech, gaming, ecommerce/retail, telco / media, utilities, etc.
About the Role:
The Fraud Group Manager leads the professional organization responsible for the "Intelligence Core" of our fraud detection products. You manage three specialized teams-Fraud Data Science, Fraud Research, and Fraud Analytics-that implement the core logic our customers use to fight fraud.
In this role, you aren't just a strategist; you are a Production Owner. You are responsible for the health, observability, and continuous improvement of detection logic in live environments. You work in a high-impact triad with Product Management and Platform Engineering, serving as the bridge between deep technical expertise and the customers who rely on our product to protect their business.
What youll do:
Group Leadership & Customer Engagement
Direct Management: Lead and scale a multidisciplinary organization of Data Scientists, Researchers, and Analysts.
Customer Fronting: Act as the primary technical fraud authority for our customers. You will join high-stakes meetings with CISOs and Fraud Heads to explain our detection logic, address performance concerns, and align our roadmap with their evolving threat landscape.
Stakeholder Orchestration: Partner with Product Management to define the "what" and Platform Engineering to ensure the "how" (infrastructure) meets your group's logic requirements.
Production Ownership & Quality Systems
Detection Observability: Own the end-to-end monitoring and health of fraud detection in production. You ensure that we have the visibility to know if a model is degrading or a specific customers detection is underperforming.
On-Call for Performance: Serve as the escalation point for critical detection failures or sudden spikes in false positives/negatives, ensuring rapid mitigation for impacted customers.
Quality Assurance Framework: Create and maintain a robust quality system (CI/CD for fraud logic) to ensure smooth, ongoing updates to detection models and heuristics without disrupting customer environments.
Lifecycle Management: Oversee the continuous tuning and optimization of live detection logic based on real-world feedback loops.
Technical Execution
Hands-on Vetting: Maintain deep technical fluency. You must be able to review Python code, validate complex SQL queries, and interpret model performance metrics to ensure they meet our high standards.
Logic Governance: Define the schemas and standards for how detection logic is developed, ensuring that research insights are effectively operationalized by the Data Science team.

Required Fraud Lead (Technical Architect)
Tel Aviv-Yafo, Gush Dan, Israel
We offer the industrys only platform that fuses customer identity and anti-fraud solutions - customer identity management, identity verification, and fraud prevention.
We sell to industries with large, consumer-facing businesses such as: banking, financial services, insurance, fintech, gaming, ecommerce/retail, telco / media, utilities, etc.
About the Role:
The Fraud Lead is the principal technical authority for our fraud detection and response engine. You own the professional logic that powers our product, ensuring that the "Brain" of our platform is technically cohesive, scientifically rigorous, and market-leading.
You act as a System Architect for the fraud domain, connecting the dots between Research, Data Science, and Analytics. Crucially, you serve as the primary technical consultant for our customers, helping them understand, integrate, and optimize the fraud logic that protects their environments. You work alongside a separate Product group (who defines the roadmap) and a Platform Engineering group (who builds the infrastructure).
What youll do:
Technical Domain Architecture
Logic Blueprinting: Design the end-to-end technical logic for detection features-from telemetry ingestion to real-time response actions.
Cross-Team "Glue": Ensure that Fraud Research insights are effectively operationalized by the Data Science team and surfaced correctly by the Analytics team.
Architecture Governance: Set the technical standards for how detection logic is built, ensuring it is scalable and compatible with the Platform Engineering teams infrastructure.
Customer Fronting & Technical Advisory
Technical Subject Matter Expert: Act as the lead technical consultant for high-value customers. You will lead "deep-dive" sessions with client-side engineers and fraud experts to explain our detection methodologies and data requirements.
Integration Strategy: Advise customers on how to best leverage our technical logic within their specific business contexts.
Feedback Loop: Translate complex customer technical needs and "edge case" fraud patterns back into technical requirements for the internal fraud group.
Expert Implementation
Hands-on Prototyping: Remain an expert practitioner in Python and SQL. You will prototype new detection methodologies and perform technical validation of production models.
Quality & Observability: Design the technical frameworks that ensure our detection logic remains performant and observable in live customer environments.

we are seeking a Detection & Response Manager to lead and mature our security operations and adversary defense capabilities.
This role owns SOC operations, incident response, red teaming, and security automation (SIEM & SOAR) across cloud, data center, and enterprise environments.
The ideal candidate combines operational excellence, threat-adversary thinking, and automation-first execution.
Key Responsibilities
Security Operations Center (SOC) Leadership
Own day-to-day SOC operations across cloud, data center, and corporate environments
Define detection strategy aligned to our company threat models and crown jewels
Ensure high-quality alerting, triage, escalation, and reporting
Continuously reduce false positives and alert fatigue
Incident Response & Crisis Management
Lead end-to-end incident response for high-severity security incidents
Own incident command during crises (technical, executive, and regulatory coordination)
Ensure post-incident reviews lead to real control improvements
Maintain and regularly test incident response playbooks
Red Team & Adversarial Testing
Manage red team and purple team activities (internal and external)
Translate real-world adversary TTPs into detection and response improvements
Ensure findings from red team exercises are remediated and verified
Partner with product, cloud, and physical security teams on attack simulations
SOC Automation (SIEM & SOAR)
Own SIEM and SOAR strategy, architecture, and roadmap
Drive automation of detection, enrichment, response, and reporting
Integrate identity, cloud, CI/CD, and physical security telemetry
Measure SOC effectiveness using MTTD, MTTR, and coverage metrics
Threat Intelligence & Continuous Improvement
Operationalize threat intelligence into detections and playbooks
Track emerging threats relevant to cloud, AI, and infrastructure providers
Continuously improve detection coverage against prioritized attack paths
What Success Looks Like (12 Months)
Measurable reduction in MTTD and MTTR for high-severity incidents
Majority of high-risk incidents detected internally, not externally
Red team findings consistently detected and contained
SOC automation meaningfully reduces manual effort
Clear, trusted security reporting to CISO and leadership.

We are looking for an experienced Security Engineer to join our security operations team with a strong focus on detection and response.
This is a unique opportunity to leverage your threat detection and response experience and build some of the foundational systems and services to keep our infrastructure free from malicious actors and threats. You will partner closely with all engineering teams, IT administrators, and compliance analysts to ensure that we maintain sufficient visibility into our environments and develop effective programs and practices to ensure that our environments are always secure. Tooling and automation will be key to success as we scale our environments to meet customer demand.
What You Will Do:
Collaborate with different teams for building and setting up pipelines needed to gather relevant security telemetry.
Build and maintain an effective and scalable security monitoring infrastructure solution.
Develop detection strategies to identify anomalous activity and ensure that our critical infrastructure and services operate in a safe environment.
Triage alerts and drive security incidents to closure while reducing their potential impact to Semperis.
Build processes and workflows to triage security alerts and respond to real incidents.
Research new threat attack vectors and ensure that our detection and response capability is in line with the current threat landscape.
Proactively improve the quality of our detection rules and strive to eliminate classes of issues by working directly with engineering teams.
Contribute to strategy, risk management, and prioritization for all efforts around detection and response.
Collaborate with the compliance team to maintain and audit security controls and processes, ensure compliance with relevant security frameworks and certifications.
Pragmatic implementing business-focused controls to safeguard the companys multi-cloud entities.

The eBPF APM team builds Datadogs zero-instrumentation observability platform, enabling automatic service discovery, Layer 7 protocol classification, traffic decoding, and high-fidelity RED (requests, errors, duration) metrics from both plaintext and TLS-encrypted traffic-without requiring customer code changes.

This work spans kernel-space eBPF, user-space Go services, and large-scale distributed systems, operating reliably across diverse Linux kernels, distributions, runtimes, and real-world production environments. The team tackles challenges in protocol evolution, TLS detection across languages and frameworks, and performance-critical data collection at scale.

We are looking for a Staff Engineer who will act as a technical owner and multiplier-driving architecture, influencing the roadmap, and ensuring our APM platform remains robust, scalable, and easy to adopt us and our customers grow.

What Youll Do:
Own major technical areas of the zero-instrumentation APM system, from design through long-term evolution and operational maturity.
Define and drive architecture for kernel-level traffic capture, L7 protocol decoding, and metric extraction using eBPF and Go.
Lead high-impact initiatives addressing protocol parsing, TLS visibility, kernel compatibility, and performance at scale.
Set technical direction and standards for reliability, performance, and maintainability across the team.
Partner cross-functionally with Agent, Tracing, Security, Runtime, and Product teams to align on system design and roadmap priorities.

This is a Software Development Engineer (SDE) role in the engineering team that delivers the sensor (lightweight agent) on Linux. This role will be part of the team designing and implementing new features in the sensor to secure cloud workloads. The work leverages eBPF and other technologies. These features will extend the power of the Falcon platform to provide seamless visibility, detection, and prevention for container processes running in orchestration environments like Kubernetes.
SDEs in the team own design and development of core features of the product. Features will cross-cut most core OS subsystems such as file system, memory, process, and networking. The team operates under the Agile development principles and ships frequently.
About the Product:
our company Falcon is a two-component security product. One component is a sensor, which is a lightweight agent installed on client machines that observes system activity and recognizes malicious behavior, then provides on-box prevention capability and remote telemetry to the Falcon cloud. The cloud component aggregates sensor telemetry for each customers network, can correlate malicious behavior across multiple machines, and presents our customers operations teams with a prioritized summary of the threats detected in their environments.
What You'll Do:
Design and develop Linux software for deployment on server
Own features from design to delivery
Collaborate with multi-functional team in various physical locations
Troubleshoot issues with the product as reported from customers responsively
Other projects as assigned.

Shape the Future of Cybersecurity with Us Are you driven by deep curiosity, bold innovation, and the desire to transform cutting-edge AI research into real-world cybersecurity impact? Join Cynet, an established yet rapidly growing cybersecurity startup, where you’ll help build next-generation AI-powered security products from the ground up. You’ll be part of a small, elite, cross-disciplinary team working closely with security researchers, R&D engineers, data engineers, and product leaders.
Here, you’re not just joining a company, you’re stepping into a place where you can envision, build, and deploy foundational AI technologies that protect organizations worldwide. You will have the rare opportunity to drive innovation end-to-end, shape our future technology, and create AI systems that make a real difference in defending against modern cyber threats.
This is a role for someone who wants to put their soul into their craft, someone hungry to learn fast, experiment boldly, and turn ambitious ideas into production-ready AI solutions.

What will you do:

* Drive innovation by combining deep security research with modern AI techniques to build impactful, customer-facing security capabilities.
* Build and refine intelligent generative AI agents that drive automated cybersecurity reasoning, investigation workflows, and threat analysis.
* Extend and enhance our next-generation AI antivirus engine by designing new feature representations, building file parsers, and developing ML models end-to-end.
* Engineer and implement core parser and model components in C++ and Python to seamlessly integrate into the Cynet Endpoint Agent and platform infrastructure.
* Use Cynet’s ML experimentation pipelines to run experiments, optimize performance, and deliver production-ready detection models.
* Serve as the cybersecurity expert within the Data Science team, guiding threat modeling, malware understanding, and security-driven AI design decisions.

About Us:
Cynet is a leader in threat detection and response, designed to simplify security for organizations of all sizes. Our mission is to empower lean security teams and their partners with an AI-powered, unified platform that autonomously detects, protects, and responds to threats - backed by 24×7 security experts. With a Partner First mindset , we focus on helping customers and partners stay protected, operate confidently, and achieve their goals. Our vision is to give every organization true cybersecurity peace of mind, providing fast, accurate protection without the noise or complexity.

we are architecting a new approach to the enterprise data stack built for the AI era. The company Data Platform sets the standard for AI infrastructure with a cloud and AI-native software solution that can be deployed anywhere. It transforms legacy data silos into data pipelines that make GPUs, AI, and other performance-intensive workloads run faster, work more efficiently, and consume less energy.
we are a pre-IPO, growth-stage company on a hyper-growth trajectory. Weve raised $375M in capital with dozens of world-class venture capital and strategic investors. We help the worlds most innovative enterprises and research organizations, including 12 Fortune 50, reach discoveries, insights, and outcomes faster and more sustainably. Were passionate about helping our customers overcome complex data challenges to accelerate their innovation and help grow their businesses. We invite you to join us on this exciting journey if you share our passion.
Staff Engineer, Core Infrastructures: Key Responsibilities
The Staff Engineer for Core Infrastructures, part of our company's Core group, is a hands-on technical leadership role vital to the reliability, performance, and overall quality of our distributed data platform. This position involves direct contributions to, and technical guidance for, the team focused on developing and maintaining essential internal tools (for testing, debugging, and development) and the core build infrastructure.
Core Responsibilities:
Lead Build and Development Infrastructure Evolution: Spearhead the design, development, and adoption of our company's next-generation build system to significantly enhance developer experience and velocity. This includes improving workflows, unit/component testing, and debug/instrumentation tools.
Boost Cross-Organizational Efficiency: Collaborate closely with DevOps, QA, and development teams to ensure a unified approach that maximizes overall quality and efficiency across the engineering lifecycle.
Integrate AI for Scale: Scale the development environment by incorporating AI-driven solutions for automated test generation, intelligent workload synthesis, and proactive anomaly detection.
Technical Leadership & Mentorship: Lead global development efforts (Israel and Europe) while maintaining a strong hands-on involvement (at least 60% of time spent on development). Act as a key influencer and mentor, cultivating a high-velocity, efficiency-focused engineering culture across teams.

At our company, were building the next-generation testing platform that will redefine how complex distributed systems are validated at scale. Our mission is to create an automated, intelligent testing environment that continuously validates the correctness, performance, and resilience of the company Data Platform across every layer of the stack. This is an opportunity to reinvent how next-gen infrastructure is tested, leveraging both proven engineering techniques and the latest AI-driven approaches. Youll work on solving some of the hardest challenges in large-scale systems engineering: How do you validate correctness in deeply parallel I/O systems? How do you uncover reliability gaps that appear only under extreme concurrency? How can AI tools help us automatically generate test scenarios, analyze failures, and predict weak spots before they occur? As a Staff Software Engineer, youll be at the center of these questions. Youll set the technical direction, design testing frameworks that scale with our product, and partner across engineering to raise the bar for quality.
What Youll Do:
Design and implement a next-generation testing and quality framework for distributed systems, enabling automated validation of functionality, performance, and resilience.
Leverage AI-driven tools to scale the testing environment, including automated test generation, intelligent workload synthesis, and anomaly detection.
Create end-to-end testing environments that simulate real-world scale, stress, and failure conditions.
Define and drive the technical strategy for testing across our company, setting the standard for quality engineering.
Mentor and influence engineers across teams, fostering a culture of technical rigor and reliability obsession.
Collaborate with product and infrastructure teams to ensure the testing platform is deeply integrated into our development lifecycle.

We are on the lookout for a driven and experienced hands-on Team Leader to lead a group of cyber security experts responsible for our detection platform.
In this role, you will lead a team of security engineers and own the security coverage and accuracy of our detection platform to guide development and strengthen our customers' resilience to emerging unknown threats. Your expertise in cyber security will drive our true AI-driven detection platform.
:Responsibilities
Mentor engineers, grow the team, and foster a culture of technical excellence and innovation.
Work closely with developers and data scientists to produce AI detection models.
Apply your cyber expertise to investigate emerging threats and define technical requirements to mitigate them.
Continuously assess and evaluate security coverage and accuracy.
Architect and build scalable solutions for evaluating the platform security metrics.
Bring your excellent interpersonal skills to foster collaboration and maintain a positive attitude within the team.