דרושים » אינטרנט ודיגיטל » Senior Application Security Engineer

we are looking for a AI Security Engineer.
As AI capabilities accelerate across the bank, we need an engineer to design and enforce safe AI usage-protecting customer data, preserving model integrity, and meeting our regulatory obligations. You'll be the architect of guardrails, tooling, and policies that make AI both secure and useful for product and internal teams. This isn't about slowing things down; it's about building the trust layer that lets innovation move fast without breaking things.
What Youll Actually Be Doing:
Design enterprise AI guardrails across Azure and AWS (e.g., Azure AI Studio/Azure OpenAI, Amazon Bedrock/SageMaker): content filtering, PII redaction, prompt/response validation, and policy enforcement services.
Implement data minimization controls for GenAI/RAG workloads: context filtering, least‐privileged retrieval, document-level ACL enforcement, vector store hardening, and secure token/secret handling.
Threat model AI systems (apps, agents, RAG, fine-tuning pipelines) using frameworks like STRIDE and the OWASP Top 10 for LLM Apps; define misuse scenarios (prompt injection/jailbreaks/data exfiltration) and build mitigations.
Build monitoring and telemetry: privacy-preserving prompt/response logging, sensitive-data detection, safety/eval dashboards, drift/abuse signals, and incident hooks into our SIEM.
Integrate AI security into the SDLC: reusable libraries, pre-commit checks, CI/CD gates, policy-as-code, and secure-by-default reference architectures for product teams.
Evaluate third‑party AI vendors and internal apps: security reviews, data residency and retention requirements, SSO/SCIM integrations, DPA/TPRM inputs, and continuous control testing.
Partner across Security, Data, Privacy, and Engineering to map AI controls to FFIEC, SOC 2, and PCI DSS; document control evidence for audits.
Lead/participate in AI red‑teaming: automated jailbreak/prompt‑injection tests, safety benchmarks, purple‑team exercises, and response playbooks for AI incidents.
Enable the org with concise guidelines, examples, and training on safe AI development and usage.

we are looking for a Mid-Level, Security Engineer.
This role focuses on ensuring the security and compliance of cloud infrastructure by implementing and maintaining robust security controls across AWS environments. The position involves automation for security monitoring, adhering to best practices, and collaborating cross-functionally with other teams.
What Youll Actually Be Doing:
Cloud Security Implementation: Contribute to the design and implementation of security measures across AWS environments to ensure systems are secure, compliant, and aligned with industry best practices. Including implementation, automation and development of security policies
Conduct regular security assessments, control testing, and audits to proactively identify risks and vulnerabilities (and support remediation efforts with partner teams)
Collaboration with Internal Teams: Work closely with internal teams to integrate security best practices into development and operational workflows
Security Automation & Infrastructure Management: Design and implement automation strategies for security monitoring, auditing, and incident response
Cost Efficiency through Security: Contribute to cloud cost management by optimizing cloud resources without compromising on security.
Incident Response & Threat Management: Participate in incident response efforts to support timely identification, analysis, containment, and remediation of security threats. Contribute to post-incident reviews, help maintain incident response playbooks, and support internal teams by sharing learnings and updated procedures.

we're building the financial infrastructure that powers global innovation. With our cutting-edge suite of Embedded payments, cards, and lending solutions, we enable millions of businesses and consumers to transact seamlessly and securely. With 900+ employees worldwide and an R&D center of over 160 employees in Jerusalem - were reshaping how financial technology is developed and delivered..
The Role:
As AI capabilities accelerate across the bank, we need an engineer to design and enforce safe AI usage-protecting customer data, preserving model integrity, and meeting our regulatory obligations. You'll be the architect of guardrails, tooling, and policies that make AI both secure and useful for product and internal teams. This isn't about slowing things down; it's about building the trust layer that lets innovation move fast without breaking things.
Who You Are:
You're a security engineer who's excited about the AI wave-someone who sees GenAI and LLMs as fascinating puzzles to secure, not just threats to mitigate. You've spent 5+ years in Security Engineering, AppSec, or Cloud Security, and at least 1-2 of those years have been spent getting your hands dirty with AI/ML or data -intensive systems. You're equally comfortable dissecting a prompt injection attack as you are writing a Terraform module or shipping a Python library. You know your way around AWS and/or Azure, modern app stacks ( Python /TypeScript, REST/gRPC, containers/Kubernetes), and can translate security requirements into Developer -friendly tooling-not just PDF policies that gather dust. You communicate clearly in English and Hebrew, thrive in regulated environments, and understand that security in financial services means mapping controls to frameworks like FFIEC, SOC 2, and PCI DSS-and actually having the evidence to prove it.
What Youll Actually Be Doing:

* Design enterprise AI guardrails across Azure and AWS (e.g., Azure AI Studio/Azure OpenAI, Amazon Bedrock/SageMaker): content filtering, PII redaction, prompt/response validation, and policy enforcement services.
* Implement data minimization controls for GenAI/RAG workloads: context filtering, leastprivileged retrieval, document-level ACL enforcement, vector store hardening, and secure token/secret handling.
* Threat model AI systems (apps, agents, RAG, fine-tuning pipelines) using frameworks like STRIDE and the OWASP Top 10 for LLM Apps; define misuse scenarios (prompt injection/jailbreaks/ data exfiltration) and build mitigations.
* Build monitoring and telemetry: privacy-preserving prompt/response logging, sensitive- data detection, safety/eval dashboards, drift/abuse signals, and incident hooks into our SIEM.
* Integrate AI security into the SDLC: reusable libraries, pre-commit checks, CI/CD gates, policy-as-code, and secure-by-default reference architectures for product teams.
* Evaluate thirdparty AI vendors and internal apps: security reviews, data residency and retention requirements, SSO/SCIM integrations, DPA/TPRM inputs, and continuous control testing.
* Partner across Security, data, Privacy, and Engineering to map AI controls to FFIEC, SOC 2, and PCI DSS; document control evidence for audits.
* Lead/participate in AI redteaming: automated jailbreak/promptinjection tests, safety benchmarks, purpleteam exercises, and response playbooks for AI incidents.
* Enable the org with concise guidelines, examples, and training on safe AI development and usage.

Why Youll Love Working Here:

* Flexible hybrid work model: three days a week at our Jerusalem office
* Monthly wellness reimbursement - from therapy to gel manicure, it's up to you
* Full Keren Hishtalmut, private health and dental insurance
* Volunteer days, donation matching, Yoga and Pilates
* A supportive, collaborative culture that puts our people first
Next Step:
Hit Apply!

We are At our company, we're building the financial infrastructure that powers global innovation. With our cutting-edge suite of Embedded payments, cards, and lending solutions, we enable millions of businesses and consumers to transact seamlessly and securely. With 900+ employees worldwide and an R&D center of over 160 employees in Jerusalem - were reshaping how financial technology is developed and delivered..
The Role:
This role focuses on ensuring the security and compliance of cloud infrastructure by implementing and maintaining robust security controls across AWS environments. The position involves automation for security monitoring, adhering to best practices, and collaborating cross-functionally with other teams.
Who You Are:
A strong individual contributor who takes pride in delivering high-quality security outcomes while collaborating closely with peers and stakeholders. You are able to build trust, provide thoughtful input, and continuously grow your technical and operational expertise. You are passionate about exploring new technology and using it to make an actionable impact to the future of fintech. You can balance the needs of the business and the team's goals with strong value for code quality and adherence to implementing best practices. A highly skilled AWS Security Engineer with additional FinOps expertise to ensure the security and compliance of our cloud infrastructure. You are able to implement and maintain robust security controls across AWS environment. You are passionate about best practices, automation for security monitoring, and collaborating with other teams.
What Youll Actually Be Doing:

* Cloud Security Implementation: Contribute to the design and implementation of security measures across AWS environments to ensure systems are secure, compliant, and aligned with industry best practices. Including implementation, automation and development of security policies
* Conduct regular security assessments, control testing, and audits to proactively identify risks and vulnerabilities (and support remediation efforts with partner teams)
* Collaboration with Internal Teams: Work closely with internal teams to integrate security best practices into development and operational workflows
* Security Automation & Infrastructure Management: Design and implement automation strategies for security monitoring, auditing, and incident response
* Cost Efficiency through Security: Contribute to cloud cost management by optimizing cloud resources without compromising on security.
* Incident Response & Threat Management: Participate in incident response efforts to support timely identification, analysis, containment, and remediation of security threats. Contribute to post-incident reviews, help maintain incident response playbooks, and support internal teams by sharing learnings and updated procedures.

Why Youll Love Working Here:


* Flexible hybrid work model: three days a week at our Jerusalem office
* Monthly wellness reimbursement - from therapy to gel manicure, it's up to you
* Full Keren Hishtalmut, private health and dental insurance
* Volunteer days, donation matching, Yoga and Pilates
* A supportive, collaborative culture that puts our people first

we are looking for a Senior Backend Engineer GO.
As a Senior Software Engineer, youll design, develop, and deploy robust software systems across our platform. Youll have ownership of end-to-end projects, the autonomy to lead from idea to implementation, and the opportunity to work across product lines - from scalable APIs and secure infrastructure to machine learning.
The role also brings unique engineering challenges shaped by regulatory and compliance requirements - pushing your creativity and technical capabilities.
What Youll Actually Be Doing:
Design, build, test, and deploy backend systems for high-scale financial applications
Lead architecture reviews and drive decisions across technologies and platforms
Write well-tested code and review peers work for quality and clarity
Collaborate with Product, DevOps, and Security teams to deliver seamless experiences
Own and improve development lifecycles including CI/CD, observability, and cloud automation
Debug production issues and lead efforts to ensure system reliability and uptime
Contribute to internal documentation and onboarding processes
Participate in a Tier 2/3 on-call rotation to support business-critical systems

we are looking for a Senior Back-End Engineer.
As a Senior Software Engineer, youll design, develop, and deploy robust software systems across our platform. Youll have ownership of end-to-end projects, the autonomy to lead from idea to implementation, and the opportunity to work across product lines - from scalable APIs and secure infrastructure to machine learning.
The role also brings unique engineering challenges shaped by regulatory and compliance requirements - pushing your creativity and technical capabilities.
What Youll Actually Be Doing:
Design, build, test, and deploy backend systems for high-scale financial applications
Lead architecture reviews and drive decisions across technologies and platforms
Write well-tested code and review peers work for quality and clarity
Collaborate with Product, DevOps, and Security teams to deliver seamless experiences
Own and improve development lifecycles including CI/CD, observability, and cloud automation
Debug production issues and lead efforts to ensure system reliability and uptime
Contribute to internal documentation and onboarding processes
Participate in a Tier 2/3 on-call rotation to support business-critical systems

Were looking for a Senior Microsoft Dynamics 365 Configurator / Developer to take the lead in building seamless, scalable internal systems that power our operations. This role is critical to deliver world-class experiences for both our teams and end users by configuring and integrating Microsoft Dynamics 365 CRM and the full Power Platform suite.
Youll have significant autonomy, working across Power Pages, Power Automate, Teams, and SharePoint to design and implement best-in-class solutions. Your work will directly support regulatory compliance, partner success, and internal workflows, reducing tech debt and improving user experience.
As part of a remote-friendly team working mostly NY hours, youll collaborate with peers across time zones while growing your technical leadership.
What Youll Actually Be Doing:
Configure and develop solutions in Dynamics 365 CRM, Power Pages, Power Automate, and Power Apps
Design and lead scalable integrations across Microsoft and legacy systems
Customize D365 apps, implement Power BI dashboards, and build automation flows
Maintain source control, CI/CD pipelines, and application lifecycle management
Collaborate closely with solution architects and stakeholders across time zones
Lead technical workshops, user training, and support
Ensure best practices for system security, usability, and performance

We are At Cross River, we're building the financial infrastructure that powers global innovation. With our cutting-edge suite of embedded payments, cards, and lending solutions, we enable millions of businesses and consumers to transact seamlessly and securely. With 900+ employees worldwide and an R&D center of over 160 employees in Jerusalem - we’re reshaping how financial technology is developed and delivered. .

The Role:
As the Security Engineering Operations Assistant, you'll be the organizational backbone for the VP, Security Engineering—ensuring requests move forward, deadlines stay visible, and nothing gets lost in the shuffle. This isn't about being an admin; it's about being the force multiplier that lets security leadership focus on strategy and technical priorities while you keep the machine running smoothly. If you're the person who naturally keeps lists, follows up before being asked, and gets satisfaction from bringing order to chaos—this role was made for you.

Who You Are:
You're the person everyone relies on to remember the thing that was supposed to happen last Tuesday. You've got 2–5 years of experience in technical coordination, support roles, or security/IT/engineering operations environments, and you know how to work alongside technical teams without needing your hand held. You're exceptionally organized—not in a "my desk is clean" way, but in a "nothing falls through the cracks" way. You communicate clearly in writing and conversation, you're comfortable working closely with senior leadership, and you handle sensitive information with discretion. You're not intimidated by technical discussions—even if you're not the one configuring the firewall, you can follow along, capture the key decisions, and know what questions to ask to make sure everyone's aligned on next steps. You're proactive, dependable, and genuinely curious about how things work.

What You’ll Actually Be Doing:
Direct Support to Security Engineering Leadership
* Assist the VP, Security Engineering with tracking requests, action items, and follow-ups arising from meetings, emails, and discussions
* Maintain organized lists of open items, next steps, and pending decisions
* Perform routine follow-ups with internal teams and external vendors on behalf of Security Engineering
* Help ensure deadlines and commitments are visible and monitored
* Surface overdue items or risks that may require attention Coordination & Task Tracking
* Support coordination of security engineering activities across Security, IT, Engineering, GRC, and external partners
* Track progress of assigned tasks and initiatives using established tools and processes
* Assist in scheduling, preparation, and follow-up for security-related meetings
* Help organize priorities and timelines across multiple parallel efforts Technical Awareness & Documentation
* Maintain familiarity with core security engineering domains, including: Identity and Access Management, Endpoint and device management, Cloud security basics (AWS and Azure), Security tooling and operational workflows
* Capture key outcomes, decisions, and action items from technical discussions
* Maintain documentation, trackers, and status updates
* Ask clarifying questions to ensure expectations and next steps are understood Communication & Information Flow
* Support intake and coordination of inbound requests to the Security Engineering team
* Prepare clear summaries and status updates as needed
* Help ensure relevant information is shared with appropriate stakeholders
* Support prioritization discussions by maintaining visibility into current workload and commitments


Why You’ll Love Working Here:

* Flexible hybrid work model: three days a week at our Jerusalem office
* Monthly wellness reimbursement – from therapy to gel manicure, it's up to you
* Full Keren Hishtalmut, private health and dental insuranc

were looking for a highly skilled Full Stack Developer to join our engineering team. in this role, youll design, develop, and maintain both backend and frontend systems that power mobileyes production and internal applications. youll work across teams to deliver user-facing features end to end, building scalable, high-availability solutions that support production environments and future web-based platforms. what will your job look like?
design, develop, and maintain scalable backend services primarily using Node.js (and Python where applicable), applying modern web frameworks and industry best practices.
build rich, responsive user interfaces using React, angular, or vue.
develop end-to-end features, integrating frontend and backend components into cohesive, production-ready solutions.
design and manage databases (sql and nosql), focusing on performance, reliability, and solid data modeling.
support and enhance production applications, ensuring high availability, resilience, and smooth operation across environments.
build, containerize, and deploy applications using docker and kubernetes in Linux -based setups.
implement and maintain ci/cd pipelines using gitlab ci for automated testing, integration, and deployment.
work with aws services to deploy, monitor, and scale cloud-based applications.
contribute to system architecture, participate in code reviews, and mentor junior developers when needed.
collaborate closely with product, design, and cross-functional engineering teams to deliver high-quality user experiences.

A leading technology company developing advanced Cyber security solutions for Embedded platforms is seeking an experienced DevOps Engineer to join a multidisciplinary team.