דרושים » ניהול ביניים » Senior Enterprise Security Engineer

As a Senior Information Security Engineer, youll be on the front lines of protecting the systems, users, and data at scale. This role is about turning strategy, architecture, and intent into enforced controls, effective detections, and resilient operations. Youll work hands-on with the tools, signals, and incidents that define our real security posture.
If you believe security should be practical, measurable, and embedded into daily operations-and not just documented-we want you on the team.
What the Role Looks Like in Practice
You will be the technical anchor of our internal security posture:
Architectural Ownership: Deploy, manage, and tune enterprise-grade security stacks (EDR, DLP, IAM, CASB, MDM) with a focus on deep integration and automation.
The AI Frontier: Lead the charge on AI Security. You will implement and secure AI-driven workflows, ensuring LLM use is governed and protected against emerging threats such as data leakage and prompt injection.
Proactive Defense: Build and maintain high-fidelity detections and guardrails that align with real-world attack techniques.
Cross-Functional Synergy: Partner as a peer with Engineering, IT, and DevOps to ensure security controls are frictionless, automated, and effective.

We are seeking an experienced Security Engineer to join our team and take ownership of our enterprise security infrastructure. In this role, you will be responsible for managing, monitoring, and optimizing our security stack to protect the organization against evolving cyber threats. You will play a critical role in ensuring the security and integrity of our network, endpoints, cloud services, and email communications.
What youll do:
Manage and maintain FortiGate firewalls, including policy configuration, VPN setup, traffic monitoring, and firmware updates to ensure robust network perimeter security, Hands-on experience with next-generation firewalls, preferably FortiGate
Administer Cisco Meraki cloud-managed networking infrastructure, including security appliances, access points, and network segmentation policies
Oversee Netskope CASB and SASE solutions to enforce cloud security policies, manage data loss prevention (DLP), and ensure secure access to cloud applications
Monitor and respond to security incidents using CrowdStrike EDR, including threat hunting, investigation, containment, and remediation of endpoint threats
Manage Abnormal Security platform to detect and respond to advanced email threats, including business email compromise (BEC), phishing, and account takeover attacks
Administer Kandji MDM solution for Apple device management, ensuring endpoint compliance, software deployment, and security policy enforcement across the Mac and iOS fleet
Secure and manage Google Workspace environment, including user access controls, security configurations, and audit log monitoring
Develop and maintain security documentation, playbooks, and incident response procedures
Collaborate with IT and DevOps / R&D teams to implement security best practices across the organization
Conduct regular security assessments, vulnerability scans, and risk analyses
Stay current with emerging threats and security trends to continuously improve the organization's security posture
Experience managing cloud-based networking solutions such as Cisco Meraki

We are seeking a highly experienced Microsoft 365 Cloud Security Engineer to own the administration, configuration, and security of our enterprise Microsoft 365 tenant(s). The ideal candidate has proven hands-on expertise managing Microsoft 365 at scale, including Intune, Exchange Online, SharePoint/OneDrive, Teams, Entra ID, Defender, and related integrations
You will play a key role in ensuring availability, governance, identity and access control, endpoint compliance, and modern security posture across the entire Microsoft cloud ecosystem, with close collaboration across IT, Security, and business stakeholders.
Key Responsibilities
Microsoft 365 Tenant Administration
Administer and maintain enterprise-scale M365 tenants, including configuration, governance, and operational support.
Oversee service health, usage reporting, licensing, and user lifecycle management.
Maintain documentation of configurations, workflows, and operational procedures.
Microsoft Intune / Endpoint Management (Full Scope)

Own all aspects of Intune administration, including:
Device enrolment (Windows, macOS, iOS/iPadOS, Android)
Configuration profiles, compliance policies, and security baselines
Autopilot provisioning, device naming policies, and lifecycle
Conditional Access integration with device compliance
Endpoint security policies (AV, firewall, ASR rules, BitLocker, etc.)
Identity & Access Management (Entra ID / SSO)
Manage and secure Microsoft Entra ID (Azure AD) for identity, authentication, and access governance.
Configure and maintain SSO integrations with SaaS applications using SAML/OAuth/OIDC.
Implement and optimize:
Conditional Access policies
MFA enforcement and authentication methods policy
Privileged Identity Management
Identity Protection policies (risk-based controls)
Security & Threat Protection
Deploy and manage Microsoft Defender stack relevant to the organization
Integrate and manage endpoint security posture with non-Microsoft EDR platforms, such as Sentinel One/CrowdStrike
Collaborate with Security teams to implement detection and response workflows, ensure coverage, and align with organizational policy.
Messaging & Collaboration
Exchange Online
Administer Exchange Online policies and configurations
Implement email security best practices and support incident response when needed.
Microsoft Teams
Administer Teams policies and governance - Teams lifecycle policy, app permissions, meeting policies; External access and guest collaboration settings
SharePoint / OneDrive
Administer SharePoint Online and OneDrive settings, including:
Site governance, permissions, and sharing controls
Sensitivity labels and information protection controls (if used)
Sync and storage management, auditing and access policies.

We are looking for a highly skilled Cloud Security Engineer who can embed security across cloud infrastructure, CI/CD pipelines, applications, and AI-enabled environments. This role is ideal for someone with deep hands-on experience in cloud security, automation, and secure software delivery, combined with growing or strong specialization in AI/ML security, LLM security, and modern data platform protection.
The ideal candidate will help design, implement, and scale security controls across our cloud-native ecosystem while partnering closely with engineering, platform, data, and AI teams to ensure security is built into every stage of development and deployment.
Job responsibilities
Design, implement, and manage security controls across cloud environments such as AWS, Azure, or GCP
Secure cloud infrastructure, Kubernetes clusters, containers, storage, networking, IAM, and secrets management
Define and enforce cloud security baselines, guardrails, and best practices using infrastructure-as-code and policy-as-code
Monitor cloud environments for misconfigurations, threats, and anomalous behavior, and drive remediation efforts
Support incident response, threat detection, vulnerability management, and post-incident reviews for cloud systems
Integrate security into CI/CD pipelines and software delivery processes
Implement automated security testing such as SAST, DAST, SCA, container scanning, IaC scanning, and secrets detection
Partner with engineering teams to improve secure SDLC practices and reduce security friction
Build reusable security automation and self-service controls for developers and platform teams
Collaborate with DevOps, SRE, and engineering teams to harden deployment pipelines and production environments
Partner with AI and data teams to secure AI/ML workflows, model development, and deployment pipelines
Define security controls for LLM applications, training data, vector databases, APIs, model endpoints, and agent-based systems
Help assess and mitigate AI-specific risks such as prompt injection, model abuse, sensitive data leakage, insecure plugins/tools, supply chain risks, and unauthorized model access.

Required Senior Product Security Architect
As a Product Security Architect, you will shape how security is built, not just review it. Youll work closely with engineering to influence architecture, guide design decisions, and ensure security is embedded across our platform from the earliest stages where decisions matter most, not just where they are validated. Youll take on complex, real-world challenges across cloud-native systems and AI-driven features, where security must evolve alongside scale and speed. This role is not about checklists or gatekeeping, but about applying strong technical judgment, making pragmatic trade-offs, and enabling teams to build secure systems by design. If youre looking to have a meaningful impact on a real product, collaborate with high-caliber engineering teams, and help define modern product security at scale, youll find this role both challenging and rewarding.
What Makes This Role Unique
A product where security decisions truly matter - processes and analyzes highly sensitive customer conversations at scale, creating unique challenges around data protection, privacy, and trust.
AI is core to the product, not a side project - Youll work in an environment where AI/ML is deeply embedded, addressing real-world security challenges that go beyond traditional application security.
A platform operating at a meaningful scale - Youll deal with high-volume data, distributed systems, and production environments where security decisions have immediate and visible impact.
The opportunity to shape a growing security domain - Product security is still evolving, giving you the ability to influence direction, introduce new ideas, and build things the right way.
A culture that values practical, engineering-driven security - Security is approached with a focus on real risk and practical solutions, not just compliance or process.
High ownership with room to grow - Youll have the autonomy to take initiative, drive changes, and expand your impact as the company and platfWhat Youll Do
Shape security architecture where it matters most, partner with engineers early in the design phase to influence system architecture, define secure patterns, and make critical decisions before code is written
Work hands-on with engineering teams to secure real systems review designs, dive into code and PRs when needed, and build small tools or proofs-of-concept to validate security assumptions
Lead threat modeling and deep design reviews identify trust boundaries, abuse cases, and high-impact attack paths, and ensure controls hold up in real production environments
Own security design for authentication, authorization, and APIs, including identity flows (OAuth/OIDC), session management, and multi-tenant access control.

We are looking for a proactive Security Assurance Lead to advance our security program into a proactive validate and verify model. Your mission is to ensure our defenses arent just present, but effective. In this hands-on technical role will own and manage testing, validating and reporting on our security posture, through automated testing against our controls, and ensure our security stack is optimized, integrated, and fully utilized.
Key Responsibilities:
Security Assurance Management: Define, orchestrate and drive the security assurance program from vision to full implementation.
Continuous Control Validation: Design and execute automated testing (e.g., Breach & Attack Simulation) to verify that prevention and detection controls are functioning across cloud, SaaS and IT environments.
Central Visibility Hub: Build and maintain a real-time Security Posture Dashboard. This hub will provide a single pane of glass for the coverage and health of our security stack.
Tool Optimization & Efficacy: Review our existing security suite to ensure tools are properly configured, integrated, and delivering ROI. You will identify blind spots where tools are installed but not effectively monitoring or blocking.
Offensive Testing Strategy: Coordinate regular external offensive testing cycles such as Penetration Testing, Phishing, etc. and translate broken controls and findings into actionable items.
Operational Excellence: Define clear ownership, maintenance schedules, and lifecycle processes for all security technologies to prevent tool rot.

We are looking for a Security Engineer to join our Security Engineering team. This is a generalist, "all-rounder" role - you will work across all security domains, while leading and owning a specific security domain based on your expertise.
You will define and drive security programs, design and implement security controls, and make architecture-level decisions across your domain. You will work closely with R&D, DevOps, and engineering teams, embedding security into how we build and operate at scale, and help shape a security-first culture across the organization.
What You'll Work On:
Define and maintain security standards, policies, and controls across all security domains - including SSDLC processes and secure development standards across R&D
Work hands-on alongside R&D, engineering, and IT teams to implement security controls, drive adoption, and ensure execution
Lead and contribute to large-scale security projects with real organizational impact
Evaluate, integrate, and operate industry-leading security tooling and platforms - including emerging startups with cutting-edge technologies
Build automation, tools, internal processes, Terraform modules, GitHub Actions, and AI agents for engineering teams and for your own team
Conduct security assessments and threat modeling.
Lead containment, investigation, and forensic analysis during security incidents
Identify security gaps and misconfigurations across cloud environments, infrastructure, and internal processes - and drive remediation through scalable, long-term solutions
Contribute across all security domains - cloud, application, AI security, detection engineering, IT, and more

As an innovator at heart, you will rethink the way SOCs do security. Join the analytics research group to build our analytics module by defining detection use cases, data, and content. You will collaborate with an amazing team of researchers to protect our customers across multiple domains such as Cloud, Kubernetes, SAAS, and Email security while working on a startup-level product within the biggest security company to revolutionize the security market.
Key Responsibilities
Build a startup-level security product within a corporate environment, blending agility with enterprise resources to deliver cutting-edge solutions.
Explore how email threats evolve into Cloud, SaaS, Endpoint, and Network domains, developing detection mechanisms to counter complex attack vectors.
Gain expertise across diverse domains, including endpoint, cloud, and SaaS security, to foster a comprehensive understanding of the threat landscape.
Design advanced detection systems using machine learning and LLMs to identify and mitigate threats.
Simulate and analyze sophisticated attacks to anticipate and counter evolving threats.
Share insights with the security community through blogs, white papers, and conferences.
Collaborate with a skilled team to innovate and enhance security offerings across various domains.

Were looking for a hands-on incident response expert thats passionate about investigating real threats, building scalable detections, and improving automation across modern cloud-native environments. This is a high-impact role within our security group, ideal for someone who thrives on both investigation and building long-term solutions. In your day-to-day, youll:
Investigate complex security incidents in cloud (AWS/GCP), containerized (Kubernetes), and endpoint environments
Design and maintain detection rules and anomaly-based logic to identify emerging threats in production systems
Automate forensic evidence collection and response actions across diverse platforms and services
Collaborate with SOC analysts, Security Architects, and Engineering teams to improve detection coverage and data visibility
Lead incident retrospectives and document technical findings, response steps, and process improvements
Develop and maintain investigation playbooks, chain-of-custody protocols, and sprint-based IR deliverables
Participate in on-call rotations and contribute to incident readiness exercises and escalation protocols.