דרושים » אבטחת מידע וסייבר » Incident Management Analyst

we are looking for a Incident Response Director.
The Incident Response Director will be key to the success of Incident Response projects worldwide, and should possess strong leadership and client-facing skills, be highly technical and thrive in a fast-paced and dynamic environment.
Main Responsibilities :
Lead multiple teams of top-tier cyber security researchers and forensic experts responding to large-scale and complex cyber-attacks globally, beating real-world sophisticated threat actors.
Become a trusted advisor for client executives during incidents, and the main escalation point for crisis management.
Oversee all client-facing engagements within the EMEA region, assuring top quality delivery standards.
Train, guide and empower team leaders and team members, enhancing their technical, managerial, and consulting skills.
Support efforts to generate new business, by creating professional content and attending events, conferences and client meetings.
Be part of the management group Sygnias global IR department, lead and take part in cross-company projects and cooperations.

We are seeking an experienced Incident Response Global Manager based in Israel to lead and coordinate cyber incident response operations across multiple regions.
This role is responsible for managing high-impact security incidents, overseeing global IR delivery, and ensuring seamless collaboration across a follow-the-sun model. The ideal candidate will combine strong technical expertise with leadership and stakeholder management skills.
Key Responsibilities
Lead and manage end-to-end incident response engagements for global clients
Coordinate cross-regional IR teams to ensure 24/7 coverage and effective escalation
Act as the primary point of contact for customers during critical incidents
Oversee incident investigations, containment, eradication, and recovery efforts
Develop and refine IR processes, playbooks, and best practices
Support proactive services such as readiness assessments and tabletop exercises
Provide executive-level reporting and post-incident analysis
Mentor and develop IR team members across regions.

we are looking for a Managed Cloud Detection and Response Analyst to join our newly established team. The team is responsible for monitoring customers cloud environments and workloads, triaging security alerts, and mitigating cyber incidents.
WHAT YOULL DO
Continuously monitor customers cloud environments and workloads for security alerts and analyze potential cyber threats to identify and prioritize cyber security incidents.
Triage prioritized cyber incidents and coordinate appropriate response actions to mitigate risks effectively.
Work closely with customer teams to guide and assist with investigation and remediation of incidents.
Create and deliver incident reports that document findings and response actions taken for customers.
Write and implement custom detection rules and fine-tune alerts to enhance threat detection capabilities for the customers specific cloud environment.
Develop and maintain cyber incident response playbooks to standardize procedures and enhance the internal methodology of the team.
Stay up to date with the latest threats, vulnerabilities, and trends in cloud security to update response strategies and improve detection methods.

We are looking for a Security Analyst to join our MDR team. In this role, you will be part of our security function, focusing on proactive reviews and providing advanced guidance to customers. This is an opportunity to develop your expertise in cloud security while working closely with analysts, researchers, and engineers.
Responsibilities:
Assist in fine-tuning our detection and response mechanisms.
Support proactive reviews of customer environments to identify risks, exposed attack surfaces, and recommend improvements.
Lead and conduct in-depth security investigations, documenting outcomes and developing playbooks to enhance future detection and response.
Collaborate with Security Analysts, Research, and Backend teams to enhance detection quality.
Contribute to the handling of complex or critical incidents escalated from Tier 1/2.
Participate in recurring customer meetings, helping translate security findings into clear, actionable recommendations.
Stay up to date with emerging threats, attack techniques, attack surfaces, and best practices in cloud security.
Contribute to the development and training of AI-driven detection models, leveraging machine learning to improve investigation accuracy and response efficiency.

We are looking for a senior, hands-on Security Operations Lead to build, mature, and operate detection, response, and corporate security capabilities. You will own the engineering, workflows, and processes that keep secure day-to-day, while continuously improving visibility, automation, and operational resilience across both corporate and production environments. This role requires a technical operator who can architect scalable detection and response pipelines, manage endpoint and identity security controls, streamline GTM security enablement, and collaborate across the company to reduce risk. You will balance strategic direction with hands-on execution-ensuring threats are identified quickly, incidents are handled effectively, and the organizations operational security posture remains strong as grows.
Responsibilities:
Own and mature Detection & Response program, including alerting, triage workflows, incident playbooks, and end-to-end response processes.
Build and maintain detection logic, integrations, and automation across logging, SIEM, EDR, cloud telemetry, and internal monitoring systems.
Lead incident investigations, coordinate response across engineering and business teams, and ensure clear communication and post-incident reviews.
Manage Corporate Security Program, including identity and access management, endpoint posture management, corporate data security controls, and DLP practices.
Oversee privileged access workflows and JIT access for corporate and production systems in alignment with least-privilege principles.
Partner with engineering teams to ensure production environments maintain strong security baselines, logging, and monitoring coverage.
Collaborate with GTM/Sales teams to support Security Enablement, including third-party security questionnaires, customer assurance needs, and auditor inquiries.
Build automation-first operational processes that reduce manual overhead and provide consistent, repeatable security outcomes.
Develop and refine detection and response runbooks, escalation paths, and cross-team coordination models.
Maintain and improve incident and operational metrics, dashboards, and KPIs to measure operational efficiency and threat coverage.
Drive the intake and prioritization of security operations requests through Jira and internal workflows.
Work closely with Product Security, Cloud/DevOps, and GRC to ensure shared visibility and aligned operational practices.
Identify operational security gaps, propose improvements, and lead implementation efforts across tooling, processes, and controls.
Promote a culture of proactive detection, fast response, and shared responsibility for organizational security.

We are seeking a highly experienced and visionary Information Security Group Leader. As a part of this role, you will define strategy and roadmap, design and implement scalable controls, and ensure robust protection of enterprise systems, applications, and data across on‑prem, hybrid, and cloud environments.
This role requires deep technical expertise, risk-based decision-making, and the ability to drive security outcomes through cross-functional partnership with IT, R&D, and business stakeholders.
This role combines strategic leadership, hands-on technical expertise, and cross-functional collaboration to continuously reduce risk, improve detection and response, and enable the business to move fast while meeting security and compliance obligations.

What will you do?
Security Leadership & Operations
Manage and mentor a team of security professionals, set objectives, develop skills, and build a high-performing, service-oriented security function.
Lead risk assessments and threat modeling for infrastructure and applications, drive remediation plans and risk acceptance decisions.
Oversee security operations, monitoring, and incident response in partnership with internal teams and service providers.
Define KPIs/KRIs and report security posture to leadership; manage budget, tools lifecycle, and security vendor relationships.
Security Architecture & Design
Define and maintain enterprise security architecture across applications, network, endpoints, identity, and core infrastructure.

We are seeking a highly motivated GRC (Governance, Risk, and Compliance) Analyst to join our growing Security & Compliance team. In this role, you will be responsible for supporting the implementation, operation, and continuous improvement of our GRC framework. You will help ensure our organizations policies, procedures, and controls align with regulatory requirements and industry best practices.
Responsibilities:
Support the execution and enhancement of the organizations GRC strategy, including policy governance, risk assessments, compliance monitoring, and audit support.
Assist in maintaining compliance with security frameworks and standards such as ISO 27001, SOC 2, NIST, and GDPR.
Conduct periodic risk assessments and control gap analyses across departments.
Track remediation of audit findings, risks, and control deficiencies, and validate completion of corrective actions.
Support third-party risk management activities including vendor due diligence and ongoing assessments.
Help maintain the GRC tool and ensure timely updates of risk registers, controls, and evidence repositories.
Collaborate cross-functionally with IT, Legal, Engineering, and other business units to promote a culture of security and compliance.
Assist in the creation and maintenance of documentation such as policies, standards, and procedures.
Prepare reports and dashboards for management review.
Stay updated on emerging regulations, standards, and security trends.

we are looking for an experienced Cyber Security Consulting Manager (Engagement Manager) to lead proactive consulting engagements with clients worldwide. The appropriate candidate will be responsible for the engagement lifecycle - from engagement planning, throughout the day-to-day engagement execution, management of consulting team and client interaction, until the successful engagement presentation and delivery.
Main Responsibilities:
Lead a team of top cyber security consultants (matrix management), to conduct and deliver a variety of proactive cyber security assessments and resilience-enhancing engagements.
Work on multiple engagements in parallel, at client sites or remotely.
Ensure the timely and successful delivery of services according to the engagement scope, objectives, budget, timelines, and clients needs.
Develop and present status updates and summary reports to a variety of audiences, including technical teams, CISOs, CIOs/CTOs, and executive management.
Serve as the trusted advisor to industry-leading multinational organizations, acting as the primary point of contact with clients before, during, and after engagements.
Support the building of long-term relationships with clients, ensuring continuous client impact and success.
Participate in and lead business development activities, internal capability-building efforts, methodology development, and strategic discussions.

As a Security Support Specialist you will be tasked with driving operational security excellence within Data Centers while working with partner teams and leaders. The ideal candidate will manage communications and provide services as required. You will assist with electronic surveillance and access control requests, assisting Data Centre Security Managers streamline efficiency. You will write and implement security process and procedures. Your position will require you to extract metrics and observe improvements by looking at data. The successful candidate must have a proven track record of customer service, possess excellent verbal and written communication skills, and demonstrate good judgment and critical thinking.
An ideal candidate for this role will be able to work at all levels, from the theoretical knowledge of physical security principles to the practical application and real-world implementation of processes and measures. You should have a proven record of accomplishment in operations room/centre dispatching, data centre security operations, physical security, customer service; and the ability to multi-task.

Key job responsibilities:
You will manage a chat queue, phone communications, generate and/or manage trouble tickets, handle incoming chats, and provide support to customers.
Drive security awareness campaigns aimed at enhancing security vigilance and effectiveness.
You will manage workflow ticketing and extraction/development of performance metrics.
Configure physical security devices including cameras, readers, and panels.
Support daily operational security across a data centre campus.
Distil overarching security strategy into daily tactics to reach management goals.
Coordinate day-to-day activities and site security operations.
Coordinate with operations teams across a number of business units
Provide guidance and leadership across a number of team programs.
Building Partnerships through networking and innovation.
Extract metrics and seeking improvements by analyzing data and trends in order to influence positive change through targeted proactive incentives.
Verify Data Center security programs are delivered to meet defined global security standards
Assist in all media integrity related programs and activities
Assist in the training of new and existing personnel regards to compliance to security policies and procedures.
Handle escalations and resolve tasks delegated and/or assigned to the team.
Draft reports and prepare presentations on the status of physical security operations.
Collaborate with managers in writing and implementing security policies, processes and procedures based on regional or global security initiatives.
Serve as a customer advocate by identifying security-related opportunities and crafting innovative solutions that maintain uncompromising security standards
Participate in site audits, inspections.
Identifying, discussing and bringing forward issues and solutions to senior team members so to raise the security bar.