דרושים » אבטחת מידע וסייבר » Cloud Security Engineer (Azure & AI Focus)

We are seeking a Cloud Security Engineer with 2-5 years of experience to provide advisory services to leading clients and support the design and security of cloud environments, with a growing focus on AI security.
This is a temporary position (maternity leave replacement).
Major Responsibilities
Advise clients on designing and securing cloud environments
Deliver cloud security solutions as part of client engagements
Lead requirements analysis, architecture design, and security controls planning
Perform cloud security assessments and configuration reviews
Act as a technical focal point for clients
Provide guidance on AI systems security, including risk identification and data protection.

We help organizations reinvent themselves.
Through data, technology, and strategic thinking, we lead transformation processes that reshape how organizations operate, make decisions, and grow.
If youre looking to work in an environment that encourages initiative, challenges ideas, and creates real impact - this is the place for you.
Integrity, excellence, and innovation are not just values - they are our standard.
we are looking for an excellent Cloud Security Expert .
Major Responsibilities:
Be part of our Great and growing Cloud security team to consult, design, develop, implement, and support our customers secure cloud environments
Deliver technology-related aspects of cloud security solutions and services to client engagements
Requirements discovery, architecture, design, and implementation of technical controls and cloud security tools
Cloud environments configuration reviews and assessment
Act as technical subject matter expert and the technical focal point for clients
When working with clients abroad, collaborate with our company member firms teams.

We are looking for a highly skilled Cloud Security Engineer who can embed security across cloud infrastructure, CI/CD pipelines, applications, and AI-enabled environments. This role is ideal for someone with deep hands-on experience in cloud security, automation, and secure software delivery, combined with growing or strong specialization in AI/ML security, LLM security, and modern data platform protection.
The ideal candidate will help design, implement, and scale security controls across our cloud-native ecosystem while partnering closely with engineering, platform, data, and AI teams to ensure security is built into every stage of development and deployment.
Job responsibilities
Design, implement, and manage security controls across cloud environments such as AWS, Azure, or GCP
Secure cloud infrastructure, Kubernetes clusters, containers, storage, networking, IAM, and secrets management
Define and enforce cloud security baselines, guardrails, and best practices using infrastructure-as-code and policy-as-code
Monitor cloud environments for misconfigurations, threats, and anomalous behavior, and drive remediation efforts
Support incident response, threat detection, vulnerability management, and post-incident reviews for cloud systems
Integrate security into CI/CD pipelines and software delivery processes
Implement automated security testing such as SAST, DAST, SCA, container scanning, IaC scanning, and secrets detection
Partner with engineering teams to improve secure SDLC practices and reduce security friction
Build reusable security automation and self-service controls for developers and platform teams
Collaborate with DevOps, SRE, and engineering teams to harden deployment pipelines and production environments
Partner with AI and data teams to secure AI/ML workflows, model development, and deployment pipelines
Define security controls for LLM applications, training data, vector databases, APIs, model endpoints, and agent-based systems
Help assess and mitigate AI-specific risks such as prompt injection, model abuse, sensitive data leakage, insecure plugins/tools, supply chain risks, and unauthorized model access.

As a Senior Information Security Engineer, youll be on the front lines of protecting the systems, users, and data at scale. This role is about turning strategy, architecture, and intent into enforced controls, effective detections, and resilient operations. Youll work hands-on with the tools, signals, and incidents that define our real security posture.
If you believe security should be practical, measurable, and embedded into daily operations-and not just documented-we want you on the team.
What the Role Looks Like in Practice
You will be the technical anchor of our internal security posture:
Architectural Ownership: Deploy, manage, and tune enterprise-grade security stacks (EDR, DLP, IAM, CASB, MDM) with a focus on deep integration and automation.
The AI Frontier: Lead the charge on AI Security. You will implement and secure AI-driven workflows, ensuring LLM use is governed and protected against emerging threats such as data leakage and prompt injection.
Proactive Defense: Build and maintain high-fidelity detections and guardrails that align with real-world attack techniques.
Cross-Functional Synergy: Partner as a peer with Engineering, IT, and DevOps to ensure security controls are frictionless, automated, and effective.

We are looking for a Security Engineer to join our Security Engineering team. This is a generalist, "all-rounder" role - you will work across all security domains, while leading and owning a specific security domain based on your expertise.
You will define and drive security programs, design and implement security controls, and make architecture-level decisions across your domain. You will work closely with R&D, DevOps, and engineering teams, embedding security into how we build and operate at scale, and help shape a security-first culture across the organization.
What You'll Work On:
Define and maintain security standards, policies, and controls across all security domains - including SSDLC processes and secure development standards across R&D
Work hands-on alongside R&D, engineering, and IT teams to implement security controls, drive adoption, and ensure execution
Lead and contribute to large-scale security projects with real organizational impact
Evaluate, integrate, and operate industry-leading security tooling and platforms - including emerging startups with cutting-edge technologies
Build automation, tools, internal processes, Terraform modules, GitHub Actions, and AI agents for engineering teams and for your own team
Conduct security assessments and threat modeling.
Lead containment, investigation, and forensic analysis during security incidents
Identify security gaps and misconfigurations across cloud environments, infrastructure, and internal processes - and drive remediation through scalable, long-term solutions
Contribute across all security domains - cloud, application, AI security, detection engineering, IT, and more

We are looking for a proactive Security Assurance Lead to advance our security program into a proactive validate and verify model. Your mission is to ensure our defenses arent just present, but effective. In this hands-on technical role will own and manage testing, validating and reporting on our security posture, through automated testing against our controls, and ensure our security stack is optimized, integrated, and fully utilized.
Key Responsibilities:
Security Assurance Management: Define, orchestrate and drive the security assurance program from vision to full implementation.
Continuous Control Validation: Design and execute automated testing (e.g., Breach & Attack Simulation) to verify that prevention and detection controls are functioning across cloud, SaaS and IT environments.
Central Visibility Hub: Build and maintain a real-time Security Posture Dashboard. This hub will provide a single pane of glass for the coverage and health of our security stack.
Tool Optimization & Efficacy: Review our existing security suite to ensure tools are properly configured, integrated, and delivering ROI. You will identify blind spots where tools are installed but not effectively monitoring or blocking.
Offensive Testing Strategy: Coordinate regular external offensive testing cycles such as Penetration Testing, Phishing, etc. and translate broken controls and findings into actionable items.
Operational Excellence: Define clear ownership, maintenance schedules, and lifecycle processes for all security technologies to prevent tool rot.

We are seeking a highly experienced Microsoft 365 Cloud Security Engineer to own the administration, configuration, and security of our enterprise Microsoft 365 tenant(s). The ideal candidate has proven hands-on expertise managing Microsoft 365 at scale, including Intune, Exchange Online, SharePoint/OneDrive, Teams, Entra ID, Defender, and related integrations
You will play a key role in ensuring availability, governance, identity and access control, endpoint compliance, and modern security posture across the entire Microsoft cloud ecosystem, with close collaboration across IT, Security, and business stakeholders.
Key Responsibilities
Microsoft 365 Tenant Administration
Administer and maintain enterprise-scale M365 tenants, including configuration, governance, and operational support.
Oversee service health, usage reporting, licensing, and user lifecycle management.
Maintain documentation of configurations, workflows, and operational procedures.
Microsoft Intune / Endpoint Management (Full Scope)

Own all aspects of Intune administration, including:
Device enrolment (Windows, macOS, iOS/iPadOS, Android)
Configuration profiles, compliance policies, and security baselines
Autopilot provisioning, device naming policies, and lifecycle
Conditional Access integration with device compliance
Endpoint security policies (AV, firewall, ASR rules, BitLocker, etc.)
Identity & Access Management (Entra ID / SSO)
Manage and secure Microsoft Entra ID (Azure AD) for identity, authentication, and access governance.
Configure and maintain SSO integrations with SaaS applications using SAML/OAuth/OIDC.
Implement and optimize:
Conditional Access policies
MFA enforcement and authentication methods policy
Privileged Identity Management
Identity Protection policies (risk-based controls)
Security & Threat Protection
Deploy and manage Microsoft Defender stack relevant to the organization
Integrate and manage endpoint security posture with non-Microsoft EDR platforms, such as Sentinel One/CrowdStrike
Collaborate with Security teams to implement detection and response workflows, ensure coverage, and align with organizational policy.
Messaging & Collaboration
Exchange Online
Administer Exchange Online policies and configurations
Implement email security best practices and support incident response when needed.
Microsoft Teams
Administer Teams policies and governance - Teams lifecycle policy, app permissions, meeting policies; External access and guest collaboration settings
SharePoint / OneDrive
Administer SharePoint Online and OneDrive settings, including:
Site governance, permissions, and sharing controls
Sensitivity labels and information protection controls (if used)
Sync and storage management, auditing and access policies.

The Application Security team treats security as a high-stakes engineering discipline, not an administrative task. We are looking for an Adversarial Builder to lead the defense of our Global Application Landscape-securing everything from our core SDLC and Software Supply Chain to our enterprise-wide AI adoption.
In this hands-on role, you will:
Engineer, Dont just triage: Move beyond manual reviews to build code-driven detection logic and custom AI agents that automate vulnerability hunting, triaging and remediation.
Security by design: Partner with R&D teams (including Infra and DevOps) to define the application-level technical guardrails for internal and external-facing products.
Scout the Frontier: Act as an early adopter of state-of-the-art systems, evaluating and integrating cutting-edge tech from frontier security startups in AI and Cloud Runtime security.

We are looking for proactive, analytical, talented people to join the Security Content team.
As a Research Engineer (Security Network & Apps), you will add content to our security and network products such as NGWF, CASB, DLP, and more.
Using agentic AI tools (Claude code, Cursor) and modern big data analysis frameworks (Redash, Athena), and network and web analysis tools to analyze network protocols and application traffic.
Joining us is an excellent opportunity for network security enthusiasts who are passionate about the future of Networking and Security.
Responsibilities:
Research and analyze network and application behavior as part of our security products (NGFW, CASB, DLP, and more).
Lead cross-team projects to deliver product development outcomes in partnership with Engineering and Product.
Focus on the customers impact and understand the business perspective.
Suggest and conduct new research vectors.
Work with AI tools and coding agents to automate your work and improve efficiency.
Utilize Catos Data Warehouse with big-data technologies to support your work.