דרושים » אבטחת מידע וסייבר » Principal Software Security Engineer

We are looking for a Cyber Security Architect to lead the design and implementation of robust security solutions that protect our radar systems from cyber threats.
In this role, you will define security architecture for radar hardware, embedded software, and communication interfaces, ensuring compliance with automotive cybersecurity standards and safeguarding mission-critical sensing technology.
Youll be part of a team shaping the future of autonomous driving. Our radar technology is a critical component in delivering safe, reliable, and intelligent mobility solutions. Youll work on innovative projects in a collaborative environment, with the opportunity to influence security strategy at a global scale.
What will your job look like?
Security Architecture Design - Develop and maintain end-to-end security architecture for radar systems, including hardware, firmware, and software components.
Threat Modeling & Risk Assessment (TARA) - Perform Threat Analysis and Risk Assessment for radar components, software modules, and communication channels; identify vulnerabilities and design mitigation strategies.
Secure Communication - Implement encryption, authentication, and integrity checks for radar data transmission between hardware and software layers.
Secure Software Design - Define and enforce security controls for APIs, middleware, and integration points between radar systems and other vehicle subsystems.
Compliance & Standards - Ensure radar systems meet ISO 21434, UNECE WP.29, and other relevant automotive cybersecurity regulations.
Collaboration with R&D - Work closely with radar engineers, embedded software developers, and system architects to embed security into the design process.
Incident Response Support - Provide architectural guidance during security incidents involving radar systems.
Technology Evaluation - Assess and recommend security tools, frameworks, and methodologies for radar-specific applications.

As a Staff Analyst on the Trust and Safety Analytics team, you will be responsible for identifying, making available, and leveraging critical data elements to optimize ability to fight fraud, protect its customers and enforce acceptable use of products and services. Specifically, you will focus on applying your analytical skills to design, support and scale tools, processes, and strategies that proactively identify and mitigate risks across the organization.
Responsibilities:
Collaborate closely with Engineering and Product teams to design, implement, and maintain analytics frameworks, tools, and data systems that support effective data monitoring and risk management strategies, enabling informed, data-driven decision-making.
Take an active role in the analytics team's efforts to manage and enhance Trust and Safety platform capabilities. Provide timely insights and actionable recommendations to strengthen platform performance and address emerging challenges. Develop tools and systems to measure platform health and assess risks, including designing dashboards to track performance metrics, analyze trends, and identify areas that require attention or intervention.
Ensure analytics systems are consistently reliable, accurate, and available. Establish proactive monitoring processes and implement thorough testing to detect and address issues, minimizing system disruptions or delays.
Contribute to effective incident management by using analytics to identify root causes, provide actionable insights, and continuously improve platform risk mitigation solutions.
Stay abreast of the latest developments in AI, and integrate insights into your analysis to address emerging risks

we are seeking a Staff-level Senior AI Security Researcher to join AI Adversarial Robustness Research (A2RS), a multidisciplinary team focused on securing AI and GenAI models and systems.
Were looking for innovative team players who love new challenges, enjoy cracking tough problems, and thrive in cross-functional environments.
In this role, you will partner with data scientists and security researchers to define how secures AI applications.
Responsibilities:
Research AI and GenAI systems from a security perspective to understand when and how they are vulnerable to a variety of threats
Blue team: Explore innovative ways to enhance the security of AI systems
Red team: Analyze the attack surface of state-of-the-art AI technologies
Center of Excellence: Collect and synthesize research literature and open-source tools to build and maintain a robust knowledge base for adversarial robustness of AI systems
Distill and share AI security knowledge within and externally through seminars, blogs, papers, and conference talks

We are looking for a versatile and innovative Attack-oriented Cyber Researcher to join our R&D team and become part of the revolution. You will conduct state-of-the-art research across multiple environments, ranging from Windows internals and kernel-level security to cloud platforms like AWS, Azure, Web technologies, etc' to stay one step ahead of real threat actors.
Your findings, your code and attack tools will feed directly into our automated attack platform, enhancing its capabilities with new offensive techniques and AI-powered decision-making algorithms.
Roles and Responsibilities:
Perform in-depth research in multiple areas such from AV/EDR evasion, binary exploitation, vulnerability discovery, and subversion of communication channels across both OS-level, domains, cloud-native domains, external surfaces.
Integrate research outputs into production-grade attack functionalities within our automation ecosystem.
Architect and develop AI-driven decision-making modules that enable the platform to mimic experienced attackers, making real-time choices during automated operations.
Develop production-ready attack capabilities using whatever technologies are necessary, Python, C/C++, C#, Java, Office Macros, Bash, PowerShell, Go, Ruby, Assembly, etc.
Mentor and collaborate with fellow R&D team members, fostering a culture of innovation and continuous learning.

We are seeking a Cyber Research Architect to join our cutting-edge Research Group. This is a full-time hybrid role where you will play a key part in shaping how our products evolve from a cyber perspective, operating as an innovation hub within the company.
You will have the freedom to explore new domains, identify gaps in our products, and pioneer techniques that will directly shape our product architecture and capabilities. From researching emerging technologies to discovering vulnerabilities and developing advanced attacks, you will push the boundaries of whats possible in automated offensive security.
Roles and Responsibilities:
Lead offensive research and vulnerability discovery across diverse and emerging technologies, identifying novel attack surfaces and spearheading new research domains.
Pioneer research into AI/ML systems and LLM-based applications, uncovering adversarial tactics and developing unique attack vectors.
Directly shape product architecture by converting research insights into scalable, high-fidelity offensive capabilities and sophisticated attack modules.
Architect and build advanced tools and frameworks that automate and scale security research operations across the organization.
Identify and emulate the most sophisticated real-world cyber attacks to continuously evolve the company's automated security validation engine.

As a Cloud Security Researcher, you will explore and exploit cloud-native attack surfaces, uncovering new vulnerabilities and researching misconfigurations across AWS, Azure, GCP, and container ecosystems. Youll work on offensive cloud security projects that blend creativity, technical depth, and innovation, contributing to cutting-edge tools and methodologies.
Roles and Responsibilities:
Research and develop novel attack techniques targeting cloud environments and infrastructure.
Analyze and exploit vulnerabilities across multi-cloud platforms (AWS, Azure, GCP).
Identify and document security flaws in cloud configurations, networking, and identity systems.
Perform hands-on testing in containerized and Kubernetes-based systems.
Collaborate with engineering and product teams to translate research into security features and best practices.
Develop PoCs, tools, and scripts to automate vulnerability discovery.
Contribute to the wider security research community through responsible disclosure and technical publications.
Stay ahead of emerging cloud threats, security trends, and adversarial TTPs (MITRE ATT&CK, OWASP Cloud-Native Top 10).

Were looking for an experienced GRC Manager to join our team in Israel. Were seeking someone with solid, hands-on experience who can take ownership and lead both technically and operationally.
You will lead the certification and accreditation processes for our company, managing all current compliance frameworks and certifications. This includes both preparation activities and direct engagement with external auditors, from readiness and gap analysis through to achieving final reports or certificates.
Roles and Responsibilities:
Lead internal and external audit and certification cycles, ensuring readiness and successful completion of assessments.
Maintain and continuously improve our companys internal control framework, ensuring that security and compliance controls are effective, documented, and aligned across ISO 27001, SOC 2, and privacy requirements.
Develop, maintain, and enhance security and compliance documentation, including policies, procedures, and evidence repositories.
Manage the ongoing risk management process by maintaining a centralized risk register and ensuring alignment between business objectives, regulatory obligations, and security controls.
Conduct internal audits and risk assessments to evaluate the effectiveness of technical and organizational controls.
Manage the cybersecurity onboarding and ongoing risk assessments of third-party vendors, while cooperating with Legal to ensure alignment with privacy compliance requirements.
Manage relationships with external auditors and consultants, ensuring timely completion of certification milestones.
Partner with cross-functional teams to strengthen the companys overall GRC posture and support continuous improvement initiatives.

the center of the country has a long-term full-time communications and information security person
The role includes: working on the organizations information security systems, working and experience with FIRE WALL of various information security manufacturers. Leading large projects and driving many processes and technologies in the organization.
Full-time long-term with promotion options.

The Chief Information Officer ( CIO ) is responsible for the strategic leadership, security, reliability, and evolution of all information systems, networks, communications, and IT services across the organization. This role oversees operations spanning highly classified environments as well as open and unclassified networks, ensuring strict separation, compliance, and resilience. The CIO leads system architecture, cybersecurity, networks, Help desk, communications platforms, and enterprise IT services while acting as a senior crisis manager, risk owner, and cross-organizational change leader.
Responsibilities:
Strategic Leadership: - Define and execute IT and information security strategy aligned with organizational objectives. - Advise executive leadership on technology, cyber risk, and operational resilience.
Systems, Networks, and Operations: - Oversee classified, unclassified, and open networks. - Ensure secure system architecture, segmentation, and access control. - Maintain a hands-on role in critical technical domains, including architecture decisions, cybersecurity posture, and complex operational issues
Cybersecurity & Risk Management: - Own enterprise technology and cyber risk management. - Ensure compliance with security and regulatory requirements.
Crisis Management & Incident Response: - Act as executive lead during IT or cybersecurity crises. - Coordinate response and recovery efforts.
Help desk & End-User Services: - Oversee Help desk and user support services.
Communications Systems: - Own secure and enterprise communication platforms.
Cross-Organizational Leadership: - Lead complex, multi-department initiatives.
Team Leadership: - Lead and develop IT and security teams.

we are looking for a Cyber ​​security expert