דרושים » אבטחת מידע וסייבר » Information Security Manager

This role oversees security governance, risk management, compliance, and incident readiness, while working closely with engineering, product, legal, MIS and other teams to embed security across the organisation and support customer trust and business growth.
Key Responsibilities
Develop and maintain the companys information security strategy, policies, and long-term roadmap. Both for production environments and for internal business by overseeing security of enterprise systems.
Lead security risk assessments, mitigation planning, and ongoing security monitoring.
Lead incident response planning, preparedness, and execution.
Manage security governance, including controls, documentation, and audit readiness.
Ensure compliance with relevant standards and regulations such as SOC 2, ISO 27001, GDPR, and emerging AI frameworks.
Direct security architecture reviews and support secure development practices across product and engineering teams.
Ensure security is integrated into engineering culture and delivery without hindering velocity, while aligning platform security with engineering practices and production resiliency requirements.
Oversee vendor security, penetration testing, and third-party risk management.
Serve as the primary security contact for customers, partners, auditors, and regulators, and own the security aspects of the companys products, in alignment with business and customers needs.
Provide regular updates to executive leadership on security posture, risks, and priorities.

In this position, you will have the autonomy to choose the best tools for the job, manage our corporate environment from the ground up, and have a direct impact on protecting the financial data of global enterprises while ensuring our team has the best technical tools to succeed.
What youll do
IT Operations & Employee Experience
Youll work closely with the CTO, engineering, and business teams, combining hands-on execution with real ownership and impact.
Manage corporate SaaS platforms, identity management (SSO), and Google Workspace.
Compliance & audits (SOC2, PCI)
Acting as the security point of contact for customers, auditors, and internal teams
Act as the primary technical point of contact for all employees, providing hands-on support and troubleshooting.
Deploy and operate endpoint security and management tools (EDR, MDM, DLP) across a distributed workforce.
Cloud & Infrastructure Security
Improve and maintain the security posture of our AWS/GCP-based cloud infrastructure.
Operate cloud security platforms, such as Upwind / Wiz / Oligo, or similar solutions to prioritize and remediate risks.
Design and enforce secure access controls and least-privilege IAM policies.
Investigate cloud security alerts and support incident response.
Application Security
Integrate security into the SDLC and CI/CD pipelines by automating SAST, SCA, and secret scanning.
Secure containerized workloads (Kubernetes / EKS) focusing on runtime protection and image hardening.
Provide guidelines and safeguards for AI-powered development processes and AI models within our SaaS platform.
Compliance & Security Culture
Support SOC2 and PCI DSS compliance initiatives and audit readiness.
Serve as the primary security focal point for external auditors.
Contribute to security awareness and best practices across the company, explaining the rationale behind security requirements.

We are seeking a skilled and experienced InfoSec & SecOps Lead to join our company (Formerly ActiveFence) CISO team. The ideal candidate will be responsible for driving the security initiatives. Responsibilities:
* Maintain holistically security corporate architecture and Hardening, including network, systems, applications. Evaluate and implement security remediations to enhance the organization security posture.
* Corporate Security: Oversee security measures, including access control, surveillance, and emergency response planning. Manage relationships with external security vendors related to TPRM and IR.
* Experience among others on SSPM/SaaS security, IDP, SIEM / SOC, Including conducting threat modeling exercises to identify potential vulnerabilities and risks where required.
* Security Operations: Oversee the day-to-day security operations, including monitoring, incident response, Analyze security logs and alerts to identify & respond to security incidents. Conduct regular security assessments and manage the remediations program. Develop and maintain an effective incident response plan.Conduct post-incident reviews to identify lessons learned and improve future response efforts.
* Experience with Vulnerability Management: Identify, prioritize vulnerabilities. Monitor and track vulnerability remediation efforts.
* Collaborate with other teams within the organization to ensure the overall security posture is maintained. This may include working with IT, DevOps, R&D, G&A to implement security policies and technical security procedures. Including all business units, educate employees on security best practices.
* AI Governance: Partner with Business Units to create safe-use guardrails for AI. Conduct security reviews for internal AI implementations, ensuring adherence to frameworks like the OWASP Top 10 for LLMs.
*  data Driven Metrics: Develop automated dashboards that track Real-Time security health, focusing on MTTR and reducing manual "toil" for the Security.

About us:
we are a trust, safety, and security company built for the AI era. We safeguard the communicative technologies people use to create, collaborate, and interact-whether with each other or with machines. In a world where AI has fundamentally changed the nature of risk, our company provides end-to-end coverage across the entire AI lifecycle. We support frontier model labs, enterprises, and UGC platforms with a comprehensive suite of solutions.

we are looking for a Cybersecurity Manager, AI Security Practice
Role Overview:
As a Manager in the Cybersecurity Practice with a focus on AI Security, you will drive strategic growth of offerings at the intersection of cybersecurity, artificial intelligence (AI), and governance risk & compliance (GRC). You will lead client engagements, shape innovative service offerings, influence go-to-market strategy, mentor delivery teams, and help organizations secure AI transformative initiatives.
This role sits at the convergence of consulting, technology, and risk advisory, requiring both deep technical expertise in AI and ML security architectures and senior client relationship leadership. You will work cross-functionally with global teams including cyber, cloud, data, AI and risk to embed security strategies into clients AI journeys.
Responsibilities:
Strategic Leadership & Practice Growth:
Define and execute the strategic roadmap for AI security offerings and solutions, including consulting frameworks, accelerators, and tool integrations.
Drive thought leadership in AI risk management, secure AI adoption, and cyber governance for emerging technologies.
Lead go-to-market strategy, including positioning, business development, proposals, pricing, and differentiation in AI security.
Influence global cyber offerings to incorporate AI risk, threat modeling, compliance, and resilience considerations.
Client Delivery & Engagement:
Lead complex client engagements end-to-end, from scoping through delivery, ensuring high quality, on-time and profitable execution.
Advise enterprise clients on secure AI adoption, AI threat landscape, governance frameworks, secure deployment patterns, and operational resiliency.
Architect secure AI and ML environments, including identification of risks such as data poisoning, model extraction, integrity attacks, and unauthorized access.
Integrate AI security with enterprise security programs, cloud, DevSecOps, identity and access management, and compliance controls.

We are looking for a highly skilled and motivated Cloud security Team Lead to lead a team of cloud security professionals. This role focuses on designing and implementing secure cloud environments, guiding clients through cloud security strategies, and driving innovation in cloud-native security solutions.
Responsibilities:
Lead and mentor a team of cloud security experts
Design and implement secure cloud architectures across AWS, Azure, and GCP
Develop cloud security strategies, policies, and governance frameworks
Support pre-sales activities and lead technical discussions with clients
Stay up to date with evolving cloud threats, technologies, and best practices
Promote a security-first mindset in digital transformation and cloud migration projects
Educate and collaborate with clients technical and management teams (CIOs, CTOs, Architects, DevOps, Security team, etc.)

We are currently seeking a skilled and dynamic Director of IT & Security to lead our IT department, managing on-prem and cloud infrastructure of the company.
In this pivotal role, you will lead the companys IT and Security strategy, overseeing both on-premises and cloud environments to ensure a robust, secure, and scalable infrastructure. Youll manage the full spectrum of IT operations, from system architecture and cybersecurity to vendor management and process optimization, ensuring business continuity and efficiency across all global sites.
Responsibilities
Oversee IT operations and supervise systems and IT staff both on-premises and cloud
Maintain and preserve a 24/7 production environment
Plan and manage the company's physical infrastructure and network design
Develop, manage, and track the IT department's annual budget including infrastructure, Software & Hardware in cloud and various geographical locations
Create and maintain processes and standards for selection, implementation, and support of systems
Lead the company Cyber security, operational and projects wise
Oversee the company's cybersecurity strategy, operations, and project execution.

We are looking for a Junior Cyber Security Specialist with a deep interest and basic knowledge of both information security and computer science. We are a cybersecurity firm specializing in advanced adversary simulation and offensive security testing. We deliver Red Team assessments for Fortune 500 companies, simulating sophisticated, real-world attacks across external, internal, cloud and Active Directory environments. Our services span both stealth-based Red Team operations and risk-focused assessments, covering a wide range of attack surfaces including on-premise and cloud environments.

Responsibilities:
Participate in Red Team and Risk assessments under the guidance of senior team members.
Assist in documenting findings, writing technical reports, and contributing to final deliverables for clients.
Learn and simulate attacker tactics, techniques, and procedures (TTPs).
Support Risk Assessments, where the objective is to identify vulnerabilities, especially in Active Directory, without the requirement for stealth. These engagements provide deep insight into systemic weaknesses and offer high exposure to internal infrastructure.
Contribute to external assessments, such as, perimeter testing, and reconnaissance.
Participate in our internal, hands-on training program, which covers red team TTPs, tool usage, internal methodologies, and real-world scenarios.

our companys Advanced Cybersecurity Center empowers global and Israeli organizations to build cyber resilience. As a Senior Cybersecurity Consultant on our Defensive Cybersecurity team, you will lead consulting engagements with strategic clients across multiple domains-including compliance, cloud security, application security, and more. You will conduct cyber risk assessments, design mitigation strategies, and guide clients through complex security challenges with confidence and clarity.
Job description
Lead end-to-end delivery of defensive cybersecurity consulting engagements-from scoping to executive read-out-covering Risk & Compliance, Cloud and Application Security, Security Operations, and more.
Advise CISOs and senior stakeholders on cybersecurity program maturity and co-develop strategic roadmaps toward enhanced cyber resilience.
Design actionable remediation plans and oversee their implementation to ensure measurable progress.
Collaborate cross-functionally to develop innovative service offerings, reusable accelerators, and thought leadership content.

Our Security team is looking for a highly skilled and security-savvy Application Security Engineer to lead our product and application security efforts. In this role, you will drive security design, ensure secure coding practices, and validate our services and environments against the highest security standards.

You will work closely with our R&D and Product teams to identify, mitigate, and prevent security risks throughout the software development lifecycle (SDLC). As a senior engineer, you will own security initiatives, mentor developers on security best practices, and play a key role in shaping the security posture of our products.

The ideal candidate is highly motivated, eager to learn, and has a security by design mindset. This role provides career growth opportunities, enabling you to deepen your expertise in AppSec, DevSecOps, and cloud security.

What you'll do:
Partner with development and product teams to integrate security best practices into the SDLC.
Lead threat modeling and architecture security reviews to proactively identify and mitigate risks.
Conduct security assessments, including code reviews, vulnerability scans, penetration testing, and secure product design reviews.
Stay up to date with emerging security threats, vulnerabilities, and industry trends, ensuring we remain ahead of evolving risks.
Support and contribute to security incident response activities, including root cause analysis and post-incident improvements.
Automate security processes and integrate security tools within CI/CD pipelines.
Develop and deliver secure coding training to engineering teams.

our companys Advanced Cybersecurity Center empowers global and Israeli organizations to build cyber resilience. As a Senior Cybersecurity Consultant on our Defensive Cybersecurity team, you will lead consulting engagements with strategic clients across multiple domains-including compliance, cloud security, application security, and more. You will conduct cyber risk assessments, design mitigation strategies, and guide clients through complex security challenges with confidence and clarity.
Job description
Lead end-to-end delivery of defensive cybersecurity consulting engagements-from scoping to executive read-out-covering Risk & Compliance, Cloud and Application Security, Security Operations, and more.
Advise CISOs and senior stakeholders on cybersecurity program maturity and co-develop strategic roadmaps toward enhanced cyber resilience.
Design actionable remediation plans and oversee their implementation to ensure measurable progress.
Collaborate cross-functionally to develop innovative service offerings, reusable accelerators, and thought leadership content.