דרושים » אבטחת מידע וסייבר » Cybersecurity Technical Account Manager (Senior) עבור חברה טכנולוגית במרכז

Required Fraud Group Manager
Tel Aviv-Yafo, Gush Dan, Israel
We offer the industrys only platform that fuses customer identity and anti-fraud solutions - customer identity management, identity verification, and fraud prevention.
We sell to industries with large, consumer-facing businesses such as: banking, financial services, insurance, fintech, gaming, ecommerce/retail, telco / media, utilities, etc.
About the Role:
The Fraud Group Manager leads the professional organization responsible for the "Intelligence Core" of our fraud detection products. You manage three specialized teams-Fraud Data Science, Fraud Research, and Fraud Analytics-that implement the core logic our customers use to fight fraud.
In this role, you aren't just a strategist; you are a Production Owner. You are responsible for the health, observability, and continuous improvement of detection logic in live environments. You work in a high-impact triad with Product Management and Platform Engineering, serving as the bridge between deep technical expertise and the customers who rely on our product to protect their business.
What youll do:
Group Leadership & Customer Engagement
Direct Management: Lead and scale a multidisciplinary organization of Data Scientists, Researchers, and Analysts.
Customer Fronting: Act as the primary technical fraud authority for our customers. You will join high-stakes meetings with CISOs and Fraud Heads to explain our detection logic, address performance concerns, and align our roadmap with their evolving threat landscape.
Stakeholder Orchestration: Partner with Product Management to define the "what" and Platform Engineering to ensure the "how" (infrastructure) meets your group's logic requirements.
Production Ownership & Quality Systems
Detection Observability: Own the end-to-end monitoring and health of fraud detection in production. You ensure that we have the visibility to know if a model is degrading or a specific customers detection is underperforming.
On-Call for Performance: Serve as the escalation point for critical detection failures or sudden spikes in false positives/negatives, ensuring rapid mitigation for impacted customers.
Quality Assurance Framework: Create and maintain a robust quality system (CI/CD for fraud logic) to ensure smooth, ongoing updates to detection models and heuristics without disrupting customer environments.
Lifecycle Management: Oversee the continuous tuning and optimization of live detection logic based on real-world feedback loops.
Technical Execution
Hands-on Vetting: Maintain deep technical fluency. You must be able to review Python code, validate complex SQL queries, and interpret model performance metrics to ensure they meet our high standards.
Logic Governance: Define the schemas and standards for how detection logic is developed, ensuring that research insights are effectively operationalized by the Data Science team.

We are looking for a Senior Engineering Manager to lead our Linux & Cloud Workload Detection team. This role owns the evolution of behavioral detection capabilities across Linux endpoints, servers, containers, and Kubernetes environments. You will manage a team of highly skilled detection engineers, drive the strategy for Linux and cloud workload visibility, and ensure our products stay ahead of emerging threats targeting modern infrastructure.
What will you do?
Technical & domain ownership
Own Linux & Cloud Workload behavioral detection strategy across endpoints, servers, containers, and Kubernetes.
The team focuses on behavioral detections and agent-side logic, rather than signature-based or IOC-driven rules.
Define what high-fidelity detection means for modern Linux and cloud-native attacks.
Drive coverage of attacker techniques using behavioral signals, not signatures.
People & org leadership
Lead and grow a team of senior detection engineers.
Set technical standards, review detection logic, and raise the bar on quality and impact.
Build strong collaboration with Research, Product, and Platform teams.

Systems Development Engineering (SDE) at our company is a role where you manage services and systems at scale. SDEs creatively put their engineering discipline to use automating the mundane and reducing toil. We dont just write code to fix bugs, but emphasize the development of tools and solutions that fix classes of problems. We know its hard to control what you cant measure - so we focus on observability: instrumenting first, then turning data into knowledge, and finally knowledge into action. We know that the operational efficiency of our company systems, services, virtual compute environments and the operating systems that power them impact the environment, not just the bottom line. We know that working together we can do more, and that community matters.
our company brings together people with a wide variety of backgrounds, experiences and perspectives. We encourage them to collaborate, think big and take risks in a blame-free environment. We promote self-direction to work on meaningful projects, while we also strive to create an environment that provides the support and mentorship needed to learn and grow.
Together we engineer and build the infrastructure, tools, access and telemetry for systems that enable orchestration of our company-scale services. Come build things that matter.
The Managed Services Technology team plays a vital role in the Managed Threat Defense service delivery life-cycle. We are responsible for provisioning Security Operations (SecOps) and third-party security technology. This role focuses on deploying and integrating customer security technologies.
In this role, you will collaborate with enterprise clients, customers, internal stakeholders, and cross-functional teams to quickly and accurately provision and integrate SecOps and other customer-managed security technologies.
Part of our company Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. Mandiant's cybersecurity expertise has earned the trust of security professionals and company executives around the world. Our unique combination of renowned frontline experience responding to some of the most complex breaches, nation-state grade threat intelligence, machine intelligence, and the industry's best security validation ensures that Mandiant knows more about today's advanced threats than anyone.
Responsibilities
Oversee the security technology provisioning lifecycle for new and existing customers.
Develop technical implementation plans based on customer expectations and shared information.
Facilitate project management and technical support during onboarding. Collaborate closely with customers and internal teams.
Collaborate with customers to triage and implement remediations and recommendations.
Document all implementation details and collaboration meeting notes in the internal tracking system.

As the Technical Director for Reactive Services, you will serve as a senior-level consultant and client advocate, providing expert guidance on all facets of cybersecurity and data breach response. You will deliver strategic and technical leadership to a diverse range of clients, helping them navigate complex security incidents. Your expertise will be critical in shaping response strategies and ensuring clients effectively mitigate and recover from cyber threats.
Key Responsibilities
Provide expert-level strategic and technical guidance to clients during active data breach response and cybersecurity incidents.
Lead complex client engagements from initial scoping and resource allocation through to technical execution and final reporting.
Apply deep knowledge of forensic processes, including chain of custody, and advanced computer and memory acquisition techniques.
Utilize industry-standard forensics tools (e.g., EnCase, FTK, SleuthKit, Volatility) for in-depth analysis across major operating systems.
Challenge curiously by maintaining hyper-current knowledge of the threat landscape, emerging vulnerabilities, and attacker TTPs to inform response strategies.
Conduct detailed analysis of malware, identify persistence mechanisms, and triage threats to determine root cause and impact.
Proactively collaborate with internal teams and client stakeholders, ensuring alignment and communicating clear, actionable findings.
Develop and automate scripts and processes to simplify and enhance the efficiency of incident response scenarios.

we are seeking a Detection & Response Manager to lead and mature our security operations and adversary defense capabilities.
This role owns SOC operations, incident response, red teaming, and security automation (SIEM & SOAR) across cloud, data center, and enterprise environments.
The ideal candidate combines operational excellence, threat-adversary thinking, and automation-first execution.
Key Responsibilities
Security Operations Center (SOC) Leadership
Own day-to-day SOC operations across cloud, data center, and corporate environments
Define detection strategy aligned to our company threat models and crown jewels
Ensure high-quality alerting, triage, escalation, and reporting
Continuously reduce false positives and alert fatigue
Incident Response & Crisis Management
Lead end-to-end incident response for high-severity security incidents
Own incident command during crises (technical, executive, and regulatory coordination)
Ensure post-incident reviews lead to real control improvements
Maintain and regularly test incident response playbooks
Red Team & Adversarial Testing
Manage red team and purple team activities (internal and external)
Translate real-world adversary TTPs into detection and response improvements
Ensure findings from red team exercises are remediated and verified
Partner with product, cloud, and physical security teams on attack simulations
SOC Automation (SIEM & SOAR)
Own SIEM and SOAR strategy, architecture, and roadmap
Drive automation of detection, enrichment, response, and reporting
Integrate identity, cloud, CI/CD, and physical security telemetry
Measure SOC effectiveness using MTTD, MTTR, and coverage metrics
Threat Intelligence & Continuous Improvement
Operationalize threat intelligence into detections and playbooks
Track emerging threats relevant to cloud, AI, and infrastructure providers
Continuously improve detection coverage against prioritized attack paths
What Success Looks Like (12 Months)
Measurable reduction in MTTD and MTTR for high-severity incidents
Majority of high-risk incidents detected internally, not externally
Red team findings consistently detected and contained
SOC automation meaningfully reduces manual effort
Clear, trusted security reporting to CISO and leadership.

We seek a dedicated and proactive Senior SecOps Engineer to join our InfoSec team and take ownership of all security-related tasks across the organization. In this role, you will be key in aligning security goals with infrastructure, R&D and IT requirements. You will be responsible for integrating security into our CI/CD pipelines, managing cloud infrastructure security, ensuring compliance with security standards, and protecting our infrastructure from vulnerabilities.

A day in the life and how youll make an impact:

Implement and manage security tools such as static code analysis, cloud posture monitoring, and penetration testing tools.
Embed security into the DevOps lifecycle, including CI/CD pipelines, IaC (Infrastructure as Code), and software development workflows.
Design and enforce security policies for cloud architecture, ensuring secure configurations and monitoring.
Lead incident response activities, vulnerability management, and forensic investigations to mitigate threats.
Drive compliance efforts (ISO 27001, SOC 2, GDPR, etc.) and audit readiness for the organization.
Work closely with stakeholders (CISO, COO, System Architects, DevOps, IT, Finance, HR, etc) to identify requirements and prioritize security needs.
Continuously monitor systems and infrastructure for vulnerabilities, intrusions, and misconfiguration.
Perform or manage penetration testing initiatives to identify security weaknesses.