דרושים » אבטחת מידע וסייבר » Senior Product Security Engineer

משרות על המפה
 
בדיקת קורות חיים
VIP
הפוך ללקוח VIP
רגע, משהו חסר!
נשאר לך להשלים רק עוד פרט אחד:
 
שירות זה פתוח ללקוחות VIP בלבד
AllJObs VIP
כל החברות >
משרה זו סומנה ע"י המעסיק כלא אקטואלית יותר
מיקום המשרה: תל אביב יפו
סוג משרה: משרה מלאה
משרות דומות שיכולות לעניין אותך
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
17/06/2026
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
Senior Security Engineer to act as a hands-on technical leader inside our security org, part builder, part architect, part trusted partner to R&D. You'll sit in design reviews, push back (constructively) on architecture choices, prototype the controls we're missing, and help R&D ship faster and safer.

This role suits an engineer who thinks in systems, codes when needed, and is energized by securing modern AI-driven, multi-cloud environments.

What you'll do:
Act as a security architect for new initiatives. Join design and solution-concept meetings with R&D before code is written and help shape architectures that are secure by default. Produce threat models, reference designs, and decision docs that engineers actually use.
Partner with R&D as a peer, not a gatekeeper. Embed with product and engineering teams. Translate security requirements into engineering language, and engineering trade-offs into risk language for leadership.
Own security across our multi-cloud footprint (AWS, GCP, Azure). Design and implement controls for identity, network, workload, and data protection that work consistently across environments.
Drive AI security. Build our defenses against threats specific to LLM and ML systems: prompt injection, model abuse, training-data integrity, agentic-workflow risks, MCP/tool-use exposure, secrets in prompts, and supply-chain risk in the AI stack. Help define what "secure AI development" means for us in practice.
Lead data security initiatives. Classification, encryption, key management, DLP, access governance, and data-flow mapping.
Evaluate and implement new technologies. Run POCs and deploy new tooling end-to-end. We expect you to have strong opinions on the security stack and to evolve it as the threat landscape shifts.
Write code. Automate controls, build internal tools, contribute to detection pipelines, and integrate security into CI/CD.
Requirements:
Must-haves:
5+ years in security engineering, application security, or cloud security, with meaningful time in a hands-on technical capacity.
Strong software development background - you've shipped production code and read others' code fluently.
Deep experience securing multi-cloud environments, including IAM, networking, workload security, and infrastructure-as-code.
Architect-level thinking: ability to look at a system diagram and identify trust boundaries, blast radius, failure modes, and the controls that actually matter
Hands-on experience with data security at scale, classification, encryption, key management, access controls.
Demonstrated experience introducing and operationalizing new security technologies, not just maintaining existing ones.
Track record of working closely with engineering teams; you're comfortable in design reviews and code reviews.
Direct experience with AI/ML security, securing LLM applications, agentic systems,model deployments, or AI infrastructure.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8698523
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
22/06/2026
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
Required Senior Cybersecurity Engineer
Why is this role so important?
As a Senior Cybersecurity Engineer reporting directly to the Chief Information Security Officer (CISO), you will play a key role within our security team. In this position you will drive impactful security initiatives that support the companys business objectives, leveraging innovative technologies and practical solutions to strengthen our security posture while enabling the business to operate securely and efficiently.
You will collaborate with cross-functional teams across the organization, including IT, R&D, Product, and other stakeholders, to ensure that security is embedded throughout our products, services, and operations. You will help identify and mitigate risks, implement effective security controls, and continuously enhance our security capabilities in a dynamic, fast-growing, technology-driven environment.
Responsibilities:
Implement, manage, and continuously enhance security controls across cloud environments (AWS, GCP, Azure), endpoints, SaaS platforms, and applications.
Administer, optimize, and maintain security technologies, including EDR/XDR, SIEM, CDR, CNAPP, DLP, IAM, SASE, MFA, network security solutions, and more.
Take a leading role in securing our adoption of Generative AI & LLM-based technologies, assessing risks, defining security controls, and establishing guardrails for AI agents, MCP-based integrations, and AI-powered applications across the organization.
Design, implement, and automate security processes, workflows, and controls to improve operational efficiency, visibility, and risk reduction across the organization.
Partner with IT, DevOps, Engineering, and Product teams to drive security-by-design principles across system architecture, software development and AI lifecycles, cloud infrastructure, and business operations.
Lead vulnerability management initiatives, including identification, assessment, prioritization, remediation tracking, validation, and reporting across applications and environments.
Implement, manage, and maintain secure configuration baselines, hardening standards, and technical controls aligned with industry frameworks and best practices, including CIS Benchmarks, NIST(CSF), and ISO/IEC 27000 series.
Take an active role in security operations activities, including threat detection, IR, security investigations, and continuous monitoring of the organization's security posture.
Lead GRC initiatives through control implementation, assessments, audit support, customer security & Due Diligence Questionnaires (DDQs), and remediation efforts related to SOC 2, SOX, ISO 27001, and other compliance frameworks.
דרישות:
5+ years of experience in Information Security, Cybersecurity, or a related technical field.
Experience securing cloud environments (AWS, GCP, Azure), SaaS platforms, and enterprise applications (APIs and Integrations).
Experience implementing and managing security technologies such as EDR/XDR, SIEM, CNAPP, IAM, SSO, MFA, Identity Providers (IdPs), WAF, VPN, DLP, ZTNA, and secure connectivity solutions
Strong understanding of security frameworks, standards and best practices, such as NIST CSF, CSA, CIS Controls, MITRE ATT&CK, OWASP, SOC 2, or ISO/IEC 27000 series.
Experience with vulnerabilities/CVEs management, assessment, incident response, and security operations processes.
Experience working with DevOps, R&D, and IT teams to integrate security into OS, cloud infrastructure, SDLC, applications, and operational processes, including authentication and authorization technologies such as SSO, SAML, OAuth, and OpenID Connect.
Experience with scripting and automation using Python, Bash, PowerShell, or similar technologies.
Familiarity with AI security concepts, including risks and controls related to Generative AI, LLMs, AI agents, MCP-based integrations, and AI-powered applications.
Experience supporting GRC initiatives, audits, compliance programs, and security assurance activities המשרה מיועדת לנשים ולגברים כאחד.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8704911
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
We're looking for a Senior Security Engineer to own and elevate the security posture of our
cloud-native, AI-driven SaaS platform. Reporting to the Director of DevOps, you'll be the technical
anchor for security across our product, infrastructure, and organization - combining hands-on
engineering with the strategic judgment to translate risk into clear, actionable priorities.
This is a high-ownership role for someone who can operate end to end: threat modeling a new feature
in the morning, hardening cloud infrastructure in the afternoon, and briefing leadership on risk posture
by the end of the week. As we scale our platform and deepen our use of AI/ML, you'll define how we
build, ship, and operate securely - often standing up programs and controls that don't yet exist.
You'll work cross-functionally well beyond engineering, partnering with Customer Success, Marketing,
Finance, and Legal to make security a shared, business-aware practice rather than a gate at the end of
the line.
What You'll Do:
Own the day-to-day security engineering function across cloud infrastructure, application, and data
layers.
Lead threat modeling, penetration testing, and vulnerability management across the product and
platform lifecycle.
Design, implement, and continuously improve cloud security controls across AWS, GCP, and/or
Azure environments.
Assess and secure our AI/ML systems, addressing the unique risks they introduce - from data
pipelines to model and LLM behavior.
Drive compliance readiness and audit support for frameworks such as SOC 2, ISO 27001, and
GDPR.
Embed security into the SDLC and CI/CD pipelines, partnering closely with DevOps and engineering
teams.
Translate technical risk into clear business and board-level language, and advise leadership on
prioritization and trade-offs.
Partner cross-functionally with non-engineering teams (Customer Success, Marketing, Finance,
Legal) to build security awareness and practical, low-friction controls.
Lead or support incident response, including detection, containment, remediation, and post-incident
review.
Requirements:
8+ years in security engineering, security architecture, or a CISO/Security Officer role.
Deep cloud security experience (AWS / GCP / Azure).
Hands-on with threat modeling, penetration testing, and vulnerability management.
Working knowledge of AI/ML systems and their unique security challenges.
Experience with compliance frameworks: SOC 2, ISO 27001, GDPR (or equivalent).
Strong communication - translates technical risk into business and board language.
Comfortable operating cross-functionally with non-engineering teams (CS, Marketing, Finance).
Nice to Have
Prior experience in a fast-scaling SaaS or AI-driven product company.
Hands-on red-teaming of LLM-based systems.
Familiarity with the OWASP LLM Top 10 and NIST AI RMF.
Certifications: CISSP, CISM, CCSP, or equivalent.
Experience standing up a security program from scratch (rather than scaling an existing one).
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8718587
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
We are looking for a Security Engineer to join our Security Engineering team. This is a generalist, "all-rounder" role - you will work across all security domains, while leading and owning a specific security domain based on your expertise.
You will define and drive security programs, design and implement security controls, and make architecture-level decisions across your domain. You will work closely with R&D, DevOps, and engineering teams, embedding security into how we build and operate at scale, and help shape a security-first culture across the organization.
Requirements:
5+ years in security engineering with strong hands-on expertise across both application and cloud/infrastructure security
Hands-on experience with SAST, DAST, SCA, WAF, threat modeling, secure code review, and API security
Experience defining and driving secure development lifecycle programs (SSDLC), including embedding security gates into CI/CD pipelines and GitOps workflows
Experience securing cloud-native environments (AWS preferred, GCP/Azure a plus), including containers, Kubernetes workloads, and microservices
Hands-on experience with Terraform, CSPM/CNAPP tooling, and misconfiguration remediation
Solid understanding of networking fundamentals (TCP/IP, DNS, TLS, network segmentation) with practical experience implementing zero trust architectures and ZTNA
Experience with Okta, Google Workspace, SSO/SAML/OIDC, and least-privilege access models
Familiarity with industry-leading security platforms and tooling across MDM, EDR, SIEM, CSPM/CNAPP, ASPM, WAF, DAST/SAST, ZTNA, and identity security platforms
Proficiency in scripting and automation - Python, JavaScript, Bash, or similar
Broad generalist mindset with the ability to operate across multiple security domains and connect the dots between them
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8703264
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
Location: Tel Aviv-Yafo
Job Type: Full Time
Were looking for people who are relentlessly curious and committed to continuous learning. AI is reshaping every function across our business, and we enable every team member, regardless of role or level, to build fluency in AI tools and concepts. Those who thrive here actively seek out new solutions, experiment thoughtfully, and apply what they learn to drive better, faster, smarter outcomes.
As a Senior Hyperautomation Engineer - Wayfinder MDR, you will be tasked with designing, building, and operating the automation layer that powers Wayfinder MDR. Join our Wayfinder MDR organization, an elite Managed Detection & Response service protecting some of the worlds largest and most complex environments. You will work closely with Threat Service Engineers (TSEs), SOC analysts, Threat Hunters, and R&D teams to transform manual SOC processes into scalable, reliable, and efficient automation workflows. This role focuses on engineering and automation, not alert triage. You will help shape how MDR operates at scale by reducing manual workload, improving signal-to-noise ratio, and enabling faster and more consistent threat detection and response.
What Will You Do?
Primary responsibilities include:
Design, develop, and maintain hyperautomation workflows that support alert triage, enrichment, investigation, and response.
Convert SOC playbooks, investigation logic, and threat-hunting processes into automated, production-grade workflows.
Proactively identify repetitive or high-volume SOC tasks and implement automation to improve efficiency and consistency.
Build and maintain integrations with internal platforms and third-party security tools using APIs, webhooks, and event-driven mechanisms.
Collaborate closely with Threat Service Engineers (TSEs) and SOC teams to fine-tune existing detections and automation logic.
Improve and optimize MDR operational processes to ensure fast response times and effective threat mitigation.
Own automation workflows end-to-end, including design, deployment, monitoring, troubleshooting, and continuous improvement.
Create and maintain automation playbooks, templates, and best practices to support incident response at scale.
Work closely with R&D and product teams to provide operational feedback and help shape future detection and response capabilities.
Requirements:
Ideal candidates will have:
5+ years of experience in Security Engineering, Automation Engineering, SOC Tooling, Backend Engineering, or similar technical roles.
Strong experience with Python (required); experience with SQL is highly preferred.
Experience building and operating automation workflows or backend services in production environments.
Solid understanding of SOC operations, incident response workflows, and security alert lifecycles.
Experience working with APIs, integrations, and distributed systems.
Strong problem-solving skills with the ability to translate operational challenges into scalable engineering solutions.
Professional and articulate, with strong written and verbal communication skills.
Ability to manage multiple workstreams and prioritize effectively in a fast-paced environment.
Experience working in MDR, SOC, Threat Hunting, or Incident Response environments.
Familiarity with cloud platforms (AWS preferred).
Experience with security telemetry, alerting pipelines, SIEM/XDR concepts, or internal SOC tooling.
Experience building internal tools for operational or security teams.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8713846
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
Location: Tel Aviv-Yafo
Job Type: Full Time
We're hiring a Senior Security Researcher to be the security authority behind our AI agents, and the person who decides what "good" means. As our agents take on more of the security workflow, the hardest question stops being "can we build it?" and becomes "is the agent actually right?" Answering that takes someone who understands how vulnerabilities are found, exploited, and remediated at a deep level, and who can turn that judgment into rigorous, repeatable benchmarks the whole team builds against. You'll own those benchmarks. You'll encode your security expertise directly into the agents - the guidelines, heuristics, and domain knowledge they reason with, and guide how they improve over time. You'll help us understand the real complexity behind the features we want to build, and break them into deliverable pieces. And you'll do it with a genuine appetite for experimental AI - comfortable getting your hands dirty with frontier models and agent tooling, not intimidated by it.
What you'll do:
Own our benchmarks and evaluations. Define what "correct" and "high quality" mean for AI agents that detect, prioritize, and remediate security issues. Build and maintain the benchmark datasets, scoring methods, and ground truth that the team measures itself against - and keep raising the bar.
Guide how our agents get better. Dig into where agents fail - false positives and negatives, bad or unsafe fixes, missed exploitability, wrong prioritization - and translate that into concrete improvements to prompts, tools, data, and agent design alongside engineers.
Be the security ground truth. Bring deep, hands-on AppSec judgment to bear on agent outputs: threat-model the edge cases, label the hard examples, and think adversarially about where an autonomous security agent could be confidently wrong.
Scope and decompose new features. Assess the security complexity and feasibility of new capabilities we want to build, explain the risks and trade-offs clearly, and help break ambiguous, research-heavy problems into small, shippable deliverables.
Be our early adopter of experimental AI. Stay on the frontier of models, agent techniques, and tooling. Test what's new, figure out what's real, and bring the useful parts back into the team.
Requirements:
Deep, hands-on application security or vulnerability research experience - you understand how vulnerabilities across SAST, SCA, secrets, IaC, and containers are discovered, exploited, and fixed, and you can tell a real finding from a false one.
The judgment to act as human ground truth: given an agent's finding or fix, you can authoritatively say whether it's correct, and why.
A measurement mindset - comfort defining metrics, building evaluation datasets, and reasoning rigorously about quality rather than relying on gut feel.
A real appetite for AI: hands-on experience with LLMs and/or AI agents, prompt engineering, and a willingness to work with experimental, fast-moving tooling without being thrown by it.
Strong communication - you can explain complex security topics to engineers and PMs, and break big problems into clear, ordered pieces of work.
Coding literacy: comfortable reading code across languages and scripting (e.g. Python) to build evals and analyze results.
Nice to have:
Experience building or evaluating LLM/agent systems, or working with eval frameworks.
Offensive security background - pentesting, exploit development, CTFs.
Detection engineering / security rule authoring.
Published research, CVEs, or conference talks.
Familiarity with ASPM, SAST, or SCA tooling from the building or operating side.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8739202
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
Location: Tel Aviv-Yafo
Job Type: Full Time
We're building something special in our Israel-based Offensive Security organization, and we're hiring multiple people across three key areas:
Penetration Testing
Red Team Product
Security Research
While these roles share a common foundation in offensive security tradecraft, each brings its own unique focus and impact.
We're looking for deep expertise in at least one of these areas, with the ability to grow across others. We have multiple openings and are looking for talent at various levels. As we get to know you through the interview process, we'll work together to identify the best fit matching your expertise and interests with the specific role and level (Senior, Lead, or Principal) that makes the most sense for both you and the team.
Role Overview
We are seeking a highly skilled offensive security professional to join our elite team. This role is ideal for someone who thrives on breaking systems, finding creative attack paths, and using their findings to drive meaningful security improvements across our company's products and infrastructure.
You will work alongside some of the best minds in security, operating with significant autonomy and impact. Whether you specialize in deep application level penetration testing, red teaming, security research or vulnerability discovery, we want to hear from you-you don't need to be an expert in all three domains. What unites these roles is a relentless attacker mindset, a drive to find and demonstrate real-world impact, and the ability to translate offensive findings into lasting security improvements.
Responsibilities
Conduct advanced penetration testing, red team operations, or security research targeting our company's cloud infrastructure, applications, and services
Discover, exploit, and document security vulnerabilities using creative and methodical approaches
Develop custom tools, exploits, and attack techniques to simulate real-world adversaries
Collaborate with product teams to remediate vulnerabilities and improve secure design practices
Contribute to the maturity of our offensive security program through automation, tooling, and process improvements
Mentor and share knowledge with team members, fostering a culture of continuous learning
Present findings and security insights to technical and executive audiences
Stay ahead of emerging threats, attack techniques, and offensive security tradecraft.
Requirements:
5+ years of hands-on experience in offensive security (Senior), 7+ years (Lead), or 10+ years (Principal).
Deep, demonstrable expertise in at least one of the following domains: penetration testing, red teaming, application security research, or vulnerability discovery, with strong foundational knowledge and willingness to learn across other offensive security disciplines.
Proven ability to identify and exploit complex vulnerabilities in web applications, APIs, cloud environments, or infrastructure.
Strong programming/scripting skills (e.g., Python, Go, Bash, PowerShell) for tooling and automation.
Deep understanding of attack frameworks (MITRE ATT&CK), common vulnerability classes (OWASP, CWE), and exploitation techniques.
Excellent written and verbal communication skills, with the ability to clearly document technical findings.
Self-motivated, intellectually curious, and comfortable working independently or as part of a team.
Preferred Qualifications
Experience in cloud security (AWS, GCP, Azure) and containerized environments (Kubernetes, Docker).
Background in offensive security research, including CVE discoveries or contributions to security tools.
Familiarity with CI/CD pipeline security, supply chain attacks, or infrastructure-as-code security.
Experience with social engineering, physical security testing, or adversary simulation.
Active participation in the security community (bug bounties, CTFs, conferences, open-source contributions).
Relevant certifications (OSCP, OSCE, OSWE, GXPN, or equivalent).
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8738936
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
22/06/2026
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time and Temporary
?We Are KPMG Israel We help organizations reinvent themselves. Through data, technology, and strategic thinking, we lead transformation processes that reshape how organizations operate, make decisions, and grow. If you’re looking to work in an environment that encourages initiative, challenges ideas, and creates real impact - this is the place for you. Integrity, excellence, and innovation are not just values - they are our standard. We are looking for a Cloud Security Engineer who combines strong technical skills with a client-facing mindset, to help design, secure, and evolve cloud environments for leading organizations. This role offers exposure to real-world enterprise challenges across Azure, Microsoft 365, and modern security architectures, with growing involvement in AI security topics. What you’ll do:
* Work hands-on with clients to design and secure Azure and Microsoft 365 environments
* Deliver cloud security solutions across identity, data protection, and monitoring
* Conduct security assessments and configuration reviews in enterprise environments
* Support architecture design and implementation of security controls
* Act as a trusted technical advisor for clients
* Take part in projects involving AI systems, focusing on risks, data protection, and security best practices


תת מחלקה:
יעוץ סייבר ואבטחת מידע
Requirements:
* 2-5 years of experience in cloud / cyber security roles
* Strong experience with Microsoft Azure and Microsoft 365 security - Must
* Experience with tools such as Defender, Sentinel, Entra ID, Conditional Access
* Familiarity with Microsoft security ecosystem (Intune, Purview, CASB, Zero Trust)
* Understanding of cloud infrastructure and networking concepts - Advantage
* Experience with automation tools (Terraform, Ansible, or similar) - Advantage
* Interest or exposure to AI security - Advantage
* Strong communication skills in English (written and spoken) Why join us
* Work on high-impact projects with leading clients across industries
* Gain hands-on experience with the latest Microsoft security technologies
* Be part of a growing team focusing on Cloud and AI security
* Develop both technical depth and client-facing skills The position is open for all genders as well as people with disabilities.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8705504
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
We are seeking an Incident Response Engineer to join the IR team. This technical role focuses on active investigation, threat mitigation, and the continuous improvement of the security organizations posture through detection engineering and automation development.

The successful candidate will be responsible for the full lifecycle of security incidents, from initial triage to recovery. Beyond reactive response, this role involves tuning SIEM correlation rules and developing SOAR workflows to increase operational efficiency.

What Youll Be Doing
Incident Management: Execute the IR lifecycle (Triage, Containment, Eradication, Recovery) for complex security events.
Technical Investigation: Perform root cause analysis and forensic examination across Windows, Mac, and Linux environments.
Detection & Tuning: Collaborate with the IR team to create, test, and tune SIEM rules and dashboards to reduce false positives and improve visibility.
Automation Engineering: Build and refine SOAR playbooks and automated response actions to streamline repetitive investigation tasks.
Cloud Security: Monitor and mitigate cloud-native threats across Azure, AWS, and GCP environments.
Requirements:
Requirements
Experience as a SecOps/IR Analyst or Engineer with a heavy focus on active investigation.
Deep understanding of the Incident Response lifecycle (Triage, Containment, Eradication, Recovery).
Hands-on experience handling and managing security alerts, performing root cause analysis, and leading investigations.
Experience working across cloud providers (Azure, AWS, GCP) to identify and mitigate cloud-native threats.
Strong knowledge of operating systems (Mac, Windows, Linux) and their respective artifacts.
Proficiency with Splunk or other SIEM platforms for log analysis and threat hunting.
Experience with XSOAR or other security automation tools from an end-user/analyst perspective.
Strong knowledge of security technologies, including EDR, Mail Relay, Vulnerability Scanning, Secure Access, and MDM.
Scripting experience with Python or Bash to assist in data parsing and investigation tasks.

Nice to Have
Detection Engineering: Ability to build and improve SIEM rules, correlations, and dashboards.
Automation Development: Experience developing new SOAR workflows, automated actions, and response playbooks.
Technical Literacy: Familiarity with REST APIs and Regex for advanced querying and tool integration.
Container Security: Familiarity and experience with K8S (Kubernetes).
Consultative Skills: Ability to guide best practices in Cloud Security and SIEM operations.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8738196
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
1 ימים
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
We're looking for a Security Engineer - Product to spread our power. The ideal candidate will have experience performing security reviews, vulnerability management, and detection and response operations in cloud-native environments. Youll get to collaborate with our software development and DevOps teams to secure our products, CI/CD infrastructure, and production infrastructure. Youll also have the opportunity to influence our product roadmap to assess, monitor, and harden our environments.
WHAT YOULL DO
Lead threat modeling and security review exercises across our production and CI/CD environments - identifying and mitigating risks in our products and the cloud services that support them
Drive vulnerability management and remediation efforts - prioritizing issues, implementing mitigations, and designing strategic preventative controls
Extend our detection and response capabilities - building scalable solutions to identify malicious activity, triage alerts, and investigate and remediate incidents
Collaborate with our Federal team - extending our DevSecOps and Product Security practices to our FedRAMP environment and ensure it meets key security requirements
Build deep functional partnerships with our engineering and operations teams - helping them deliver secure-by-design solutions .
Requirements:
WHAT YOULL BRING
5+ years of experience in security engineering or security operations work in cloud environments, with a focus on a combination of the below:
AWS platforms and services (we will also consider equivalent experience in Azure and GCP)
Kubernetes (AWS EKS) and container infrastructure
IAM and managing cloud identities at-scale
Secure development and application of IAC solutions (Terraform, Helm)
Cloud-native observability and management tools
Experience with automation and tooling development in one or more: Python, Go, Shell, HCL, Rego
PREFERRED QUALIFICATIONS
Bachelor's degree in computer science or a related field and / or candidates with equivalent job experience in lieu of a degree
Experience working with remote, globally distributed teams
Experience working in organizations that develop software and / or operate managed infrastructure and technology services for their own customers
Experience with CNAPP, CSPM, or CIEM solutions.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8740853
סגור
שירות זה פתוח ללקוחות VIP בלבד