דרושים » אבטחת מידע וסייבר » Information Security Manager

משרות על המפה
 
בדיקת קורות חיים
VIP
הפוך ללקוח VIP
רגע, משהו חסר!
נשאר לך להשלים רק עוד פרט אחד:
 
שירות זה פתוח ללקוחות VIP בלבד
AllJObs VIP
כל החברות >
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
 
משרה בלעדית
2 ימים
דרושים בריקרוטיקס בע"מ
Job Type: More than one
Our company specializes in cybersecurity consulting and is currently expanding our team. We offer a dynamic and challenging role in a company that greatly values human capital.

Job Description:
Lead and manage the company's cybersecurity strategies and processes.
Enhance cybersecurity across both on-premises and cloud networks.
Draft and maintain documents, including information security policies, procedures, and reports.
Provide consultancy on cybersecurity solutions and controls.
Requirements:
At least 1 year of experience in a CISO or CTO role.
Knowledge of web security and familiarity with the OWASP Top 10 security risks is advantageous.
Extensive knowledge of cybersecurity best practices for network and cloud infrastructure.
Professional certification in information technology/security.
Familiarity with privacy protection regulations and certifications such as ISO 27001 and SOC2.
Strong organizational skills, team-oriented, and service-focused.
Hands-on experience with technical security controls (FW, EDR, etc).
High proficiency in English.
This position is open to all candidates.
 
Hide
הגשת מועמדות
עדכון קורות החיים לפני שליחה
8705455
סגור
שירות זה פתוח ללקוחות VIP בלבד
משרות דומות שיכולות לעניין אותך
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
22/06/2026
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
Required Senior Cybersecurity Engineer
Why is this role so important?
As a Senior Cybersecurity Engineer reporting directly to the Chief Information Security Officer (CISO), you will play a key role within our security team. In this position you will drive impactful security initiatives that support the companys business objectives, leveraging innovative technologies and practical solutions to strengthen our security posture while enabling the business to operate securely and efficiently.
You will collaborate with cross-functional teams across the organization, including IT, R&D, Product, and other stakeholders, to ensure that security is embedded throughout our products, services, and operations. You will help identify and mitigate risks, implement effective security controls, and continuously enhance our security capabilities in a dynamic, fast-growing, technology-driven environment.
Responsibilities:
Implement, manage, and continuously enhance security controls across cloud environments (AWS, GCP, Azure), endpoints, SaaS platforms, and applications.
Administer, optimize, and maintain security technologies, including EDR/XDR, SIEM, CDR, CNAPP, DLP, IAM, SASE, MFA, network security solutions, and more.
Take a leading role in securing our adoption of Generative AI & LLM-based technologies, assessing risks, defining security controls, and establishing guardrails for AI agents, MCP-based integrations, and AI-powered applications across the organization.
Design, implement, and automate security processes, workflows, and controls to improve operational efficiency, visibility, and risk reduction across the organization.
Partner with IT, DevOps, Engineering, and Product teams to drive security-by-design principles across system architecture, software development and AI lifecycles, cloud infrastructure, and business operations.
Lead vulnerability management initiatives, including identification, assessment, prioritization, remediation tracking, validation, and reporting across applications and environments.
Implement, manage, and maintain secure configuration baselines, hardening standards, and technical controls aligned with industry frameworks and best practices, including CIS Benchmarks, NIST(CSF), and ISO/IEC 27000 series.
Take an active role in security operations activities, including threat detection, IR, security investigations, and continuous monitoring of the organization's security posture.
Lead GRC initiatives through control implementation, assessments, audit support, customer security & Due Diligence Questionnaires (DDQs), and remediation efforts related to SOC 2, SOX, ISO 27001, and other compliance frameworks.
דרישות:
5+ years of experience in Information Security, Cybersecurity, or a related technical field.
Experience securing cloud environments (AWS, GCP, Azure), SaaS platforms, and enterprise applications (APIs and Integrations).
Experience implementing and managing security technologies such as EDR/XDR, SIEM, CNAPP, IAM, SSO, MFA, Identity Providers (IdPs), WAF, VPN, DLP, ZTNA, and secure connectivity solutions
Strong understanding of security frameworks, standards and best practices, such as NIST CSF, CSA, CIS Controls, MITRE ATT&CK, OWASP, SOC 2, or ISO/IEC 27000 series.
Experience with vulnerabilities/CVEs management, assessment, incident response, and security operations processes.
Experience working with DevOps, R&D, and IT teams to integrate security into OS, cloud infrastructure, SDLC, applications, and operational processes, including authentication and authorization technologies such as SSO, SAML, OAuth, and OpenID Connect.
Experience with scripting and automation using Python, Bash, PowerShell, or similar technologies.
Familiarity with AI security concepts, including risks and controls related to Generative AI, LLMs, AI agents, MCP-based integrations, and AI-powered applications.
Experience supporting GRC initiatives, audits, compliance programs, and security assurance activities המשרה מיועדת לנשים ולגברים כאחד.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8704911
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
2 ימים
חברה חסויה
Location: Petah Tikva
Job Type: Full Time
Were looking for an experienced and passionate Information Security compliance expert, to help drive organization wide security compliance and risks processes such as Risk Assessment, Mitigation Planning, Compliance with security standards, Internal and External Audits preparations and execution, and supporting customer Security requirements operations.
Key Responsibilities:
Planning, performing, and tracking cyber security gap analysis and risk assessment processes
Performing internal & external, hands-on technical and procedural security audits
Develop, implement and track technical risk control/mitigation plans
Working with the company business owners and IT Business applications and infrastructure to implement security controls, solutions and software qualifications and compliance and monitoring.
Manage information security related tasks, track progress and report to management
Plan and execute Security processes and InfoSec group controls
Write, Update and implement security related procedures
Lead audit and compliance activities as SOX, SOC2, ISO27001, FedRamp and more and provide Privacy technical guidance
Contributor to GDPR and privacy, working closely with the company legal department.
Responsible to handle Internal and third-party security qualification processes, vendor risk management and assign required controls
Responsible on customers RFP security risk assessment questionnaire; in a business-driven approach and a prompt response time
Always pushing to modernize compliance solutions with efficiencies and business facing approach
Requirements:
3+ years of experience in security Governance, Risk and Compliance in hi-tech global company.
Proven experience with security compliance audit and management (NIST, ISO, SOC2, SOX, FedRamp and/or DoD)
Hands-on experience with ISMS in audits, Security Risk Management, and mitigation planning
Experience in working with customers and 3rd party qualification processes
Experience in cloud security compliance and risks
Background and experience in R&D infrastructure (an advantage)
Familiar with security vulnerabilities, trends, tools and practices
Professional certifications as Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC) or Certified Information Security Professional (CISSP) - an advantage
Ability to multi-task in a dynamic work environment
Ability to motivate others in a matrix management structure
A true team player and easy to collaborate with
A true proactive and can do approach
High level English with an emphasis on writing skills
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8713074
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
28/05/2026
Location: Herzliya
Job Type: Full Time
we are seeking a Cybersecurity Architect (GRC & Risk) to join our cybersecurity architecture team. In this role, you will lead security governance, risk, and control assessments, conduct third-party due diligence, support maturity assessments, and drive mitigation and architectural review processes. Youll work closely with CISOs, security leaders, engineering teams, and customers to develop risk-focused methodologies and improve security frameworks. This position is best suited for candidates with a technical GRC, risk, or security assessment background who excel in analysis, interpretation, and structuring of security information.

Responsibilities
Lead customer third‑party security due diligence assessments.
Lead mitigation workshops to translate penetration test and assessment findings into prioritized remediation workplans.
Perform security maturity assessments, including reviews of organizational policies, standards, procedures, and governance practices, aligned with the NIST CSF 2.0 cybersecurity framework.
Develop and refine security methodologies, processes, and architectural guidance.
Maintain internal documentation and ensure alignment between frameworks, processes, and practical implementation.
Analyze technical findings and map them to governance, risk, and control gaps.
Produce clear, structured reports and executive‑ready summaries for technical and non‑technical audiences.
Requirements:
3-4 years in cybersecurity GRC, IT risk, compliance, audit/assurance, or related process‑oriented security roles.
Strong understanding of governance, risk management, and operational processes.
Familiarity with cybersecurity frameworks (NIST CSF, ISO 27001 concepts), risk assessment, mitigation planning, and third‑party risk management.
Basic conceptual understanding of cloud/SaaS shared responsibility models.
Ability to communicate technical issues in business‑aligned language.
Hands-on experience with security controls - an advantage.
Strong writing, communication, and facilitation skills.
Comfortable collaborating with internal stakeholders and external customers.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8671044
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
14/06/2026
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
Were looking for a driven, motivated, and ambitious GRC Specialist to join our growing Security team . Here, were redefining how security teams operate - not by buying more tools, but by building smarter, AI-driven programs from the ground up. As our GRC Specialist, you'll own the compliance programs that underpin trust with our customers and partners, while actively shaping how we use AI and automation to make compliance faster, more rigorous, and less manual. This isn't a checkbox role. It's a builder role for someone who sees compliance as a competitive advantage and AI as the engine to get there.
Responsibilities:
Compliance Program Ownership
Own and lead security compliance programs across SOC 2, ISO 27001, C5 BSI, and ISO 42001, ensuring continuous readiness and alignment with evolving requirements.
Lead the scoping, planning, and implementation of new compliance frameworks as the business scales into new markets and regulatory environments.
Act as the primary point of contact for audits - managing evidence collection, auditor relationships, and remediation tracking end-to-end.
AI-Driven Compliance Operations
Design and operate continuous compliance monitoring programs leveraging AI and automation - replacing point-in-time snapshots with real-time assurance.
Build internal AI-powered tooling and workflows (in partnership with the AI Transformation Lead) to automate evidence gathering, control validation, and risk signal aggregation.
Evaluate and adopt emerging AI compliance methodologies, including AI-specific frameworks like ISO 42001, and translate them into actionable internal programs.
Risk & Vendor Management
Manage the third-party risk program (TPRM), including vendor assessments, security questionnaires, and ongoing monitoring of the vendor landscape.
Maintain and actively drive the risk register in close collaboration with the CISO, ensuring risks are tracked, owned, and remediated on time.
Policy & Culture
Develop and maintain security policies, standards, and procedures that are practical, current, and aligned with both compliance requirements and business objectives.
Drive security awareness training across the organization and champion secure development practices in collaboration with engineering and product teams.
Cross-functional Collaboration
Serve as a trusted partner to the CISO, Information Security Manager, HR, Legal, and AI Transformation Lead on matters of risk, compliance, and security governance.
דרישות:
A self-starter mindset: comfortable with ambiguity, able to set priorities without heavy direction, and capable of building structure where none exists.
Demonstrated ability to build compliance and security programs from scratch, not just maintain inherited ones.
2+ years of hands-on experience in information security and GRC, ideally in a fast-moving SaaS or tech environment.
Deep familiarity with major frameworks and regulations - SOC 2, ISO 27001, NIST, CIS, DORA, GDPR, and related standards.
Practical experience with security and IT tooling across cloud environments (AWS, Azure, or GCP), application security, and infrastructure security.
Exposure to SOC (cybersecurity operations center) environments and cybersecurity incident response.
Strong written and verbal communication skills - able to translate technical risk into clear language for executives, auditors, and non-technical stakeholders.
Hands-on experience with IT and Security tools
AI Orientation (Non-Negotiable)-
Genuine curiosity and working knowledge of AI tools, LLMs, and automation - you've used them, not just read about them.
Experience building or operating AI-assisted workflows for compliance, risk, or security operations is a strong plus.
Ability to think critically about AI risk, including how to govern and assess AI systems under frameworks like ISO 42001.
Visionary outlook: you see the 2-year horizon where AI has transformed how GRC functions and you want to be the person who builds that future המשרה מיועדת לנשים ולגברים כאחד.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8692757
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
31/05/2026
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
The Security & Information team is looking for someone who is passionate about technology and has a roll-up-their-sleeves mentality to join our global team. Youll play a crucial role in enhancing our security infrastructure, improving networking, ensuring scalability, and maintaining strong security as we continue to grow. If you want to be an industry leader, on a team experiencing hyper-growth, look no further!
Responsibilities :
Lead the design and implementation of AI-driven detection and response strategies to automate complex security investigations.
Operates as the primary escalation point for critical security alerts, performing deep-dive DFIR investigations, analyzing attacker techniques and vectors, proactively hunting threats, and directing incident response activities.
Lead SecOps projects from inception to execution, ensuring effective implementation and ongoing maintenance
Research how to leverage security telemetry and existing security solutions to improve triage and automated response.
Work cross-functionally to refine and evolve agentic workflows that drive automated security operations.
Coordinate investigation, containment, and other response activities with business stakeholders and groups.
Perform hands-on forensic investigations, log reviews, cloud investigations, and root-cause analysis
Develop incident analysis and findings reports for management, including gap identification and recommendations for improvement.
Requirements:
5+ years experience working in an Incident Response/Cyber Security Operations Center (in-house or outsourced) addressing, escalating, and managing security incidents and creating incident reports.
Extensive experience in managing the lifecycle of security incidents in a global, 24/7 production environment..
Collaborating with various cross-organizational stakeholders to drive incident response and remediation.
Development of common runbooks for most frequent or critical incident types.
Strong development fundamentals with experience delivering and maintaining production-grade code.
Coding & Scripting: Hands-on programming experience (Python, Bash, etc.) with proven ability to build automation processes.
Proven expertise in attack and mitigation methods within Cloud and SaaS environments
Solid understanding of system and security controls on at least two OSs (Windows, Linux / Unix, and MacOS (Advantage), including host-based forensics and experience with analyzing OS artifacts.
Problem solver, an in-depth thinker with a growth mindset.
Excellent communication skills and ability to work collaboratively with other teams
Preferred Qualifications
Bachelors degree in Computer Science, Information Technology, or related field
Solid understanding of LLM concepts and architectures, with hands-on experience applying them in practice.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8673515
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
2 ימים
חברה חסויה
Location: Tel Aviv-Yafo
Job Type: Full Time
In this position, you will have the autonomy to choose the best tools for the job, manage our corporate environment from the ground up, and have a direct impact on protecting the financial data of global enterprises while ensuring our team has the best technical tools to succeed.
What youll do
IT Operations & Employee Experience
Youll work closely with the CTO, engineering, and business teams, combining hands-on execution with real ownership and impact.
Manage corporate SaaS platforms, identity management (SSO), and Google Workspace.
Compliance & audits (SOC2, PCI)
Acting as the security point of contact for customers, auditors, and internal teams
Act as the primary technical point of contact for all employees, providing hands-on support and troubleshooting.
Deploy and operate endpoint security and management tools (EDR, MDM, DLP) across a distributed workforce.
Cloud & Infrastructure Security
Improve and maintain the security posture of our AWS/GCP-based cloud infrastructure.
Operate cloud security platforms, such as Upwind / Wiz / Oligo, or similar solutions to prioritize and remediate risks.
Design and enforce secure access controls and least-privilege IAM policies.
Investigate cloud security alerts and support incident response.
Application Security
Integrate security into the SDLC and CI/CD pipelines by automating SAST, SCA, and secret scanning.
Secure containerized workloads (Kubernetes / EKS) focusing on runtime protection and image hardening.
Provide guidelines and safeguards for AI-powered development processes and AI models within our SaaS platform.
Compliance & Security Culture
Support SOC2 and PCI DSS compliance initiatives and audit readiness.
Serve as the primary security focal point for external auditors.
Contribute to security awareness and best practices across the company, explaining the rationale behind security requirements.
Requirements:
5+ years of experience in Security Operations, Cloud Security, or IT Systems Administration in a high-growth environment.
Experience owning and managing employee-facing systems and IT environments- a must
Strong hands-on experience with cloud platforms (preferably AWS) - a must.
Experience with identity platforms and SaaS security (Google Workspace / SSO).
Familiarity with cloud security platforms (Upwind / Wiz / Orca or similar).
Experience securing container environments (Kubernetes / AWS EKS).
Strong Service-oriented mindset with excellent collaboration and communication skills.
Fluent English
Nice to Have
Experience in fintech or highly regulated environments.
Practical experience with PCI DSS and SOC2 audits.
Familiarity with MDM solutions (e.g., Kandji, Jamf) and EDR tools.
Working experience with Jira and GitHub.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8713097
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
Location: Tel Aviv-Yafo
Job Type: Full Time
We're building something special in our Israel-based Offensive Security organization, and we're hiring multiple people across three key areas:
Penetration Testing
Red Team Product
Security Research
While these roles share a common foundation in offensive security tradecraft, each brings its own unique focus and impact.
We're looking for deep expertise in at least one of these areas, with the ability to grow across others. We have multiple openings and are looking for talent at various levels. As we get to know you through the interview process, we'll work together to identify the best fit matching your expertise and interests with the specific role and level (Senior, Lead, or Principal) that makes the most sense for both you and the team.
Role Overview
We are seeking a highly skilled offensive security professional to join our elite team. This role is ideal for someone who thrives on breaking systems, finding creative attack paths, and using their findings to drive meaningful security improvements across our company's products and infrastructure.
You will work alongside some of the best minds in security, operating with significant autonomy and impact. Whether you specialize in deep application level penetration testing, red teaming, security research or vulnerability discovery, we want to hear from you-you don't need to be an expert in all three domains. What unites these roles is a relentless attacker mindset, a drive to find and demonstrate real-world impact, and the ability to translate offensive findings into lasting security improvements.
Responsibilities
Conduct advanced penetration testing, red team operations, or security research targeting our company's cloud infrastructure, applications, and services
Discover, exploit, and document security vulnerabilities using creative and methodical approaches
Develop custom tools, exploits, and attack techniques to simulate real-world adversaries
Collaborate with product teams to remediate vulnerabilities and improve secure design practices
Contribute to the maturity of our offensive security program through automation, tooling, and process improvements
Mentor and share knowledge with team members, fostering a culture of continuous learning
Present findings and security insights to technical and executive audiences
Stay ahead of emerging threats, attack techniques, and offensive security tradecraft.
Requirements:
5+ years of hands-on experience in offensive security (Senior), 7+ years (Lead), or 10+ years (Principal).
Deep, demonstrable expertise in at least one of the following domains: penetration testing, red teaming, application security research, or vulnerability discovery, with strong foundational knowledge and willingness to learn across other offensive security disciplines.
Proven ability to identify and exploit complex vulnerabilities in web applications, APIs, cloud environments, or infrastructure.
Strong programming/scripting skills (e.g., Python, Go, Bash, PowerShell) for tooling and automation.
Deep understanding of attack frameworks (MITRE ATT&CK), common vulnerability classes (OWASP, CWE), and exploitation techniques.
Excellent written and verbal communication skills, with the ability to clearly document technical findings.
Self-motivated, intellectually curious, and comfortable working independently or as part of a team.
Preferred Qualifications
Experience in cloud security (AWS, GCP, Azure) and containerized environments (Kubernetes, Docker).
Background in offensive security research, including CVE discoveries or contributions to security tools.
Familiarity with CI/CD pipeline security, supply chain attacks, or infrastructure-as-code security.
Experience with social engineering, physical security testing, or adversary simulation.
Active participation in the security community (bug bounties, CTFs, conferences, open-source contributions).
Relevant certifications (OSCP, OSCE, OSWE, GXPN, or equivalent).
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8670402
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
חברה חסויה
Location: Bnei Brak
Job Type: Full Time and Hybrid work
We are looking for a GRC Specialist to support our Governance, Risk, and Compliance (GRC) program, reporting directly to the CISO.

This is a hands‑on, execution‑focused role responsible for maintaining and scaling our compliance posture, reducing audit friction, addressing vendor risk, and supporting the integration of newly acquired companies into our security and compliance frameworks.

You will work closely with Security Engineering, IT, Legal, Privacy, Sales/Revenue, Procurement, Product, HR, and other business stakeholders to ensure security controls, compliance activities, and risk management processes are practical, effective, and aligned with business needs.


The day‑to‑day:
Lead audit preparation and ongoing compliance maintenance for frameworks such as SOC 2 / SOC 3, ISO 27001, ISO 27701, ISO 22301, NIST, and GDPR, including evidence collection, gap tracking, and remediation coordination.
Own and execute vendor and third‑party security assessments, helping reduce backlog and improve risk visibility across suppliers and partners.
Respond to customer security questionnaires and audits, partnering with Sales and Security teams to support deal velocity and customer trust.
Support the integration of newly acquired companies into our security, risk, and compliance programs, including gap assessments and remediation planning.
Maintain and improve the ISMS, governance processes, policies, standards, and procedures.
Act as a central point of contact for internal security and compliance inquiries from business and technical teams.
Support the administration and continuous improvement of GRC and compliance tooling, including workflows, evidence management, and reporting.
Contribute to the Security Awareness Program and cross‑organizational education efforts.

The perks:
Hybrid, flexible work environment.
Extended private health (including mental) insurance.
Personal and professional development programs.
Occasional Cross company long weekends.
Requirements:
Ideally, were looking for:
1-2 years hands‑on experience in GRC, information security, audit, or compliance, with a strong focus on execution and coordination.
Practical experience working with ISO 27001, SOC 2, GDPR, and/or NIST CSF, including audits and ongoing compliance activities.
Solid understanding of risk management, control design, and governance processes in a SaaS or cloud environment.
Experience performing vendor / third‑party risk assessments and driving remediation.
Strong ability to work cross‑functionally with technical and non‑technical stakeholders.
Clear, concise written and verbal communication skills in English, including customer‑facing documentation.
Strong organizational skills and attention to detail, with the ability to manage multiple parallel workstreams.


These would also be nice
Relevant certifications such as CISA, CISM, CRISC, or ISO 27001 Lead Auditor / Implementer.
Experience with privacy governance, DPIAs/PIAs, and collaboration with legal and privacy teams.
Familiarity with cloud and SaaS environments, particularly AWS.
Experience with GRC platforms or compliance automation tools.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8669028
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
Location: Tel Aviv-Yafo
Job Type: Full Time
We are seeking a seasoned security leader to manage a high-caliber research team focused on the security of Identity, SaaS, and Cloud ecosystems. In this role, you will provide technical mentorship and strategic vision, guiding research into service risk profiling and adversarial TTPs analysis. You will be the bridge between cutting-edge research and product innovation, ensuring our findings translate into high-impact security outcomes to stay ahead of modern adversaries.
Key Responsibilities
Define the research roadmap for Identity, SaaS, and Cloud risks, ensuring the team's outputs align with the evolving threat landscape and company goals.
Lead and grow a diverse team of security researchers, providing the technical guidance and career development necessary to maintain a world-class research organization.
Leverage your experience in a product-focused environment to ensure research outcomes directly influence service security strategies and customer-facing solutions.
Oversee the execution of high-fidelity attack simulations and TTP deconstruction, ensuring the 'how-to' of secure service usage is clearly defined and actionable.
Partner with Engineering, Product Management, and Threat Intel teams to transform raw research into robust mitigation strategies and resilient service blueprints.
Represent the team's research internally and externally, positioning the organization as a premier authority on Identity-centric and Cloud security.
Requirements:
2+ years of experience in technical leadership or people management, with a proven track record of directing high-impact security research projects.
Proven experience leading, mentoring, or managing a team of technical security researchers.
Deep technical expertise in security research related to Identity platforms (e.g., Azure AD, Okta), SaaS applications, and major cloud environments (AWS, Azure, GCP).
Demonstrated ability to define and execute a strategic research agenda.
Preferred Qualifications
Experience working in a product-driven cybersecurity company, translating research into product features or security solutions.
A track record of public speaking at security conferences or publishing research papers.
Experience with adversarial tactics, techniques, and procedures (TTP) analysis and simulation.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8713881
סגור
שירות זה פתוח ללקוחות VIP בלבד
סגור
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
סגור
v נשלח
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
22/06/2026
חברה חסויה
Location: Petah Tikva
Job Type: Full Time
As a Solution Engineer for Next-Gen Trust Security (NGTS), you are the premier technical subject matter expert for our company's Machine Identity Management portfolio. Following our integration with CyberArk, you will lead the technical charge in transforming how enterprises manage cryptographic trust.
You will be responsible for defining technical solutions that secure critical business imperatives, evangelizing our "better together" integration of Certificate Lifecycle Management (CLM) and Zero-Touch Public Key Infrastructure (ZTPKI) within the Strata Cloud Manager (SCM) platform. You will serve as the technical bridge between the Network Security teams and Identity stakeholders, ensuring that enforcement systems (NGFW/SASE) stay synchronized as certificate lifecycles compress.
Your Impact
Technical Win Leadership: Lead Proof of Value (PoV) engagements and technical validations for NGTS, ensuring a high technical win rate by demonstrating operational resilience and outage elimination.
Solution Architecture: Design unified cryptographic governance models within Strata Cloud Manager that align certificate operations with network enforcement.
Strategic Execution: Identify critical projects and actions required to achieve a customer's desired security end-state; eliminate sales obstacles through creative and adaptive problem-solving.
Market Evangelism: Act as a thought leader on the "Cryptographic Reset," educating CISOs and VP-level stakeholders on the risks of 47-day certificate lifecycles and the path to Post-Quantum Cryptography (PQC).
Product Advocacy: Share industry experience regarding customer usage patterns to provide feedback to product teams on how to make NGTS/MIM easier for customers to adopt fully.
Strategic Discovery: Conduct deep-dive discovery sessions to uncover unmanaged or "rogue" certificates using network-native discovery tools.
Cross-Functional Collaboration: Partner with Solutions Consultants (SCs), Account Managers, and the CyberArk MIM Specialist team to build and execute account-based pursuit strategies.
Platformization: Drive the adoption of Secure Flex credits by showing customers how to consolidate siloed CLM/PKI tools into a centralized control plane.
Requirements:
Your Experience:
Professional Background: 5+ years of Sales Engineering or Consulting experience with a proven track record in a cybersecurity software vendor.
Deep Domain Expertise: Extensive experience in Certificate Lifecycle Management (CLM), PKI architecture (ZTPKI, Microsoft ADCS), and SSL/TLS protocols.
Technical Proficiency: Experience with automated provisioning (ACME, SCEP), Cloud-native connectors (Azure, GCP, AWS), and hardware/virtual security appliances.
DevOps & Modern Infrastructure: Hands-on experience with DevOps tools (Terraform, Git, Kubernetes, Ansible) and container technologies (Docker) is a significant benefit.
Network Security Foundation: Strong understanding of NGFW, SASE, and GlobalProtect architectures, particularly how they handle decryption, inspection, and certificate-based authentication.
Consultative Selling: Proven ability to simplify complex cryptographic concepts into business-value outcomes (e.g., preventing service outages).
Communication: Excellent written communication skills; bilingual proficiency in German is a requirement for this role.
Education & Certification: CISSP or equivalent Information Security certifications are preferred.
Technical Qualifications (Must-Haves)
PKI & Certificate Governance: Comprehensive knowledge of Public Key Infrastructure, including certificate authorities, lifecycle management, and trust models.
Cryptography Fundamentals: Deep understanding of symmetric and asymmetric encryption, key management, and cryptographic standards.
Network Protocols: Mastery of TLS/SSL handshakes, S/MIME, and secure communication protocols.
This position is open to all candidates.
 
Show more...
הגשת מועמדותהגש מועמדות
עדכון קורות החיים לפני שליחה
עדכון קורות החיים לפני שליחה
8705650
סגור
שירות זה פתוח ללקוחות VIP בלבד