לוח משרות דרושים מומחה אבטחת מידע / סייבר בתל אביב יפו

Were looking for a Pentest Product Associate to join our Product team and help expand the power of our company.
In this pivotal role, you will be the primary operator of our cutting-edge AI-driven Dynamic Application Security Testing (DAST) agent while simultaneously innovating detection mechanisms for cloud-native technologies.
You will bridge the gap between automated AI testing and cloud infrastructure, defining the "rules of engagement" for our agents to ensure they effectively simulate sophisticated attacks and accurately classify the modern attack surface.
WHAT YOULL DO
Engineer Detection & Attack Logic: Develop advanced detection algorithms to classify cloud technologies while fine-tuning the attack policies that define how our agents identify and exploit vulnerabilities.
Validate Complex Findings: Analyze cloud services, APIs, and log payloads to review complex attack paths, reducing false positives and ensuring compliance with industry standards.
Research Novel Threats: Stay at the forefront of novel attack vectors and emerging cloud/API threats, translating new techniques into executable behaviors for the company DAST engine.
Drive Product Evolution: Collaborate directly with Research, Backend, and R&D teams to turn operational insights into feature requests, positioning our company as the market leader in vulnerability management.

we are looking for highly capable Incident Response Expert. The Incident Response Expert role includes conducting in-depth forensic analysis, investigation and response to real-world cyber threats. A significant part of our investigations is performed onsite at the client location, in collaboration with the clients IT and security teams.
Main Responsibilities:
Participate in forensic and incident response investigations, including large scale sophisticated attacks, conduct log analysis, host and network-based forensics and malware analysis.
Participate in threat hunting: proactively hunt for targeted attacks and new emerging threats in clients networks; as well as security assessments and simulations.
Identify indicators of compromise (IOCs) and tools, tactics, and procedures (TTPs) to help ascertain whether and how breaches have occurred.
Utilize and develop tools and methodologies to improve existing investigative and hunting technological stack.
Collaborate with IT and Security teams during investigations.
Generate and present a comprehensive and professional report of findings from investigations.

Naval Intelligence / Think tanks & OSINT NGOs / Maritime Fusion & Security institutes / International Relations background

Proven experience in analyzing and visualizing research insights including analysis of GEOINT/OSINT/ADINT/ELINT etc. data



Responsibilities

Develop and deliver reports by analyzing data via the Windward platform, as well as with relevant open-source research tools
Provide insights from data analysis to support decision-making processes
Ensure and incorporate feedback to improve and maintain data quality
Seek to improve processes to exceed customer expectations
Provides clear documentation for all relevant processes when necessary

As VP of the Maritime Intelligence Operations Center (MIOC), you will lead flagship intelligence unit - the team that turns Maritime AI into the timely, decision-grade intelligence that shapes how governments, defense agencies, energy majors, and global financial institutions act on what is happening at sea.

You will own the agenda, the output, and the people. From sanctions evasion and dark fleet activity to live geopolitical events - Iran, the Red Sea, the Strait of Hormuz, the Russian shadow fleet - MIOC analysis is read by senior decision-makers in Israel and abroad, and increasingly drives the public narrative around maritime intelligence. You will continue to build the team, set the priorities, and make sure every report we publish raises the bar.

You will sit at the intersection of intelligence operations, product, and go-to-market - partnering closely with Product, R&D on tooling and platform requirements, with Marketing on the content engine, and with global subsidiaries to enable their cleared and in-market analytical work.

Core Responsibilities

1. Own and Operate the MIOC

Lead the Maritime Intelligence Operations Center end-to-end: people, process, output quality, and operational tempo.
Run an intelligence-grade operation capable of responding to breaking maritime and geopolitical events on demand.
Set the standards for tradecraft, sourcing, review, and quality control that make MIOC products trusted by the most demanding consumers.
2. Own the Intelligence Agenda

Define what MIOC researches and why - aligned to customer demand signals, geopolitical priorities, and strategic narrative.
Prioritize across recurring products (daily/weekly intelligence, situation rooms, deep-dive analyses) and event-driven rapid response.
Set the analytical methodology: sources, models, confidence levels, and how findings are corroborated and communicated.
3. Build Capacity - Hiring, Training, and Tradecraft

Recruit, develop, and retain a senior team of maritime, geopolitical, and intelligence analysts.
Build the training curriculum, career paths, and quality bar for analysts.
Scale the organization responsibly as demand grows - across functions, geographies, and time zones.

Were a team of builders and innovators who thrive on complex technical challenges. If youre energized by distributed systems, cloud-native architectures, and the opportunity to protect thousands of organizations worldwide, we want to hear from you.

Join us in expanding security platform, where innovation meets impact.

What Youll Do:

Architect and build scalable backend services that scan millions of cloud resources daily across multi-cloud environments

Design and implement distributed systems that process massive volumes of security data with high reliability and low latency

Develop agentless scanning capabilities for vulnerability detection, configuration assessment, and data security across cloud workloads

Collaborate cross-functionally with security researchers, product managers, and fellow engineers to deliver features that customers love

Own features end-to-end - from design and implementation through deployment, monitoring, and iteration

Drive technical excellence through code reviews, architectural discussions, and mentoring team members

Solve complex challenges in cloud security, data processing, and distributed systems at enterprise scale

As the Senior Knowledge Engineer, you will be the designer of a system that treats global infrastructure as a formal graph, where every node and edge is traced back to a versioned source of truth. This role is a part of the Product CTO organisation that includes a team of Technical Strategy leaders that bring outstanding ideas, the ability to execute cross functionally, and teamwork to a strategic, high future impact organisation.

The Vision:

The security industry is drowning in observed symptoms while starving for attestable truth. At CrowdStrike, we are building a high integrity infrastructure fabric - a platform that doesnt just scan for risks, but proves them through a deterministic digital twin of the enterprise.

The Challenge Youll Solve: How do you build a robust extensible framework that can connect to hundreds of different APIs, from mainstream cloud providers to niche security tools? How do you write the code that can parse and normalise their widely different schemas and data formats, and then efficiently map them into a canonical graph model? This is your build.

What You'll Do:
Build our Universal Translator Framework: You will be the primary builder of our data ingestion and semantic transformation pipelines. You will design and implement the core framework and specific connectors to parse API schemas and transform raw data into our canonical model.

Architect the Knowledge Construction Engine: You will implement the systems that turn data into knowledge. This includes building the code generators that compile our team's high level mapping configurations into low level artifacts, and developing the software for our entity resolution engine to fuse disparate data into unified conceptual entities.

Data Quality & Validation Strategy: You will contribute to a multi-backend graph architecture optimized for both real time temporal state and deep multihop path analysis.

Work Crossfunctionally: Work closely with the Principal Ontologist, Asset Platform, Risk Platform, Ingest, and Design Teams.

Lead, Mentor, and Align: Guide a diverse team of engineers, taxonomists, and subject matter experts in distilling vendor specific noise into a unified topography of risk.

Provide support to the wider CTO organization including the Falcon Fund, Privacy & Cyber Policy, Data Science and Detection Architecture teams, as well as the broader CrowdStrike organization as needed.

Work with industry analysts to provide product updates, briefings, and demonstrations.

This role is centered on gathering customers resources and insights from various cloud products, establishing connections between data sources, and handling large-scale data operations to run comprehensive evaluations and generate actionable posture intelligence.


What You'll Do:

You'll be responsible for processing vast amounts of customer data to create meaningful conclusions that help customers:

Discover misconfigurations, security risks, and compliance violations in cloud environments

Identify and prioritize security risk issues that require immediate attention

Gain valuable insights into their cloud resources and assets to enable faster, more effective investigations

Understand the potential risks associated with their assets and cloud environment

Make data-driven security decisions based on comprehensive analysis of their environment

This role is centered on gathering customers resources and insights from various CrowdStrike cloud products, establishing connections between data sources, and handling large-scale data operations to run comprehensive evaluations and generate actionable posture intelligence.


What You'll Do:

You'll be responsible for processing vast amounts of customer data to create meaningful conclusions that help customers:

Discover misconfigurations, security risks, and compliance violations in cloud environments

Identify and prioritize security risk issues that require immediate attention

Gain valuable insights into their cloud resources and assets to enable faster, more effective investigations

Understand the potential risks associated with their assets and cloud environment

Make data-driven security decisions based on comprehensive analysis of their environment

This role demands a solutions-oriented mindset, as you'll be expected to go above and beyond for customers by driving innovative outcomes. You'll collaborate across multiple teams to craft creative solutions, ensuring we exceed customer expectations and deliver exceptional value. You will leverage extensive resources to provide advanced digital risk monitoring expertise and analysis to safeguard our customers' environments. You will develop a trusted partnership by helping your customer identify and operationalize timely, actionable, and relevant threat intelligence and threat hunt findings.

This position offers exceptional growth opportunities, blending technical mastery with strategic advisory services, all powered by world-class intelligence and hunting capabilities.

Serve as a trusted advisor who maintains ownership of dedicated customer accounts, delivering outstanding experiences that build trust and facilitate high levels of satisfaction across all organizational levels.

Research dark web data and tailor threat intelligence for CAO Elite customer based on their specific requirements and environment

Prepare and deliver customer presentations relating to intelligence reports and dark web alerts on a regular basis

Partner across teams to develop and implement creative solutions that exceed customer expectations, focusing on delivering exceptional outcomes even when faced with complex challenges

Respond to customer requests relating to threat intelligence, threat hunting, and dark web monitoring

we are looking for a Product Security Engineer.
Responsibilities:
Own, maintain, and continuously improve the Secure Design Review process, ensuring security considerations are integrated early in the development lifecycle.
Develop, implement, and maintain Zenitys Application Security Program, including controls, standards, developer enablement, and automation.
Manage SAST and DAST tooling, including configuration, integrations, alerting, developer workflows, and program-wide reporting.
Monitor and enforce SDLC security controls, ensuring consistent application of secure development practices across all engineering teams.
Develop and maintain Zenitys Cloud Security Program, defining guardrails, policies, and automated controls for secure-by-default cloud deployments.
Manage CSPM tooling, including configuration, findings triage, reporting, and alignment with internal risk and compliance processes.
Partner with DevOps to design, implement, and maintain a fully secured CI/CD pipeline, ensuring that security checks, guardrails, and automated gates are embedded throughout build, test, and deployment stages.
Collaborate closely with engineering teams to deliver actionable guidance, model threats, advise on architecture, and support secure implementations.
Drive automation-first approaches to product and cloud security, reducing friction and enabling fast, safe development.
Define and track KPIs, metrics, and reporting for application and cloud security health.
Identify gaps in product, application, and cloud security posture and drive end-to-end remediation plans.
Promote a culture of security and developer empowerment by delivering clear, pragmatic, and scalable guidance.

We're seeking a Senior Security Researcher & Team Lead to own and drive Zenity's security research domain from the ground up. This is a leadership-first role - you'll build and guide a research team, define a new frontier in AI and agentic security, and shape the methodologies and standards that don't yet exist in the industry. If you thrive in ambiguity, love creating structure where there is none, and want to leave a real mark on an emerging security domain, this role is for you.
You'll investigate emerging attack surfaces, architect and implement detection mechanisms, and validate your findings in production environments protecting Fortune 500 customers. It's a high-ownership position that blends deep technical research with strategic thinking and team leadership - with a real sense of urgency to shape the AI security landscape not just for Zenity, but for the entire security community.
Responsibilities:
Lead and mentor a security research team, driving vulnerability and threat research that generates product value and protects Fortune 500 customers in production environments.
Take end-to-end ownership of detection mechanism design for agentic AI applications - from initial hypothesis through experimentation to production-grade implementation.
Apply expertise across cloud, identity, web, and API security to map and address the evolving AI threat landscape.
Apply LLMs, Agentic AI, and machine learning models to detect security vulnerabilities.
Collaborate closely with engineering and product teams to translate research into actionable, shippable security capabilities.

Were seeking a Senior Security Researcher to drive end-to-end research initiatives that strengthen Zenitys detection capabilities. In this role, youll investigate emerging attack surfaces, craft and implement innovative detection logic, and test your findings in real-world environments. Its a hands-on position ideal for someone eager to transform research insights into effective, production-grade security defenses.
Responsibilities:
Research AI Agent and LLM-related risks, such as prompt injection and jailbreaking and implement sophisticated detection strategies.
Conduct research on cloud, web, and API security to uncover new threats and attack vectors.
Develop, refine, and design world-class detection logic and rules to enhance Zenity's runtime protection.
Perform threat-hunting activities across large data sources to identify emerging attack patterns
Drive full-cycle research: from hypothesis and experimentation to production validation.
Collaborate with engineering and product teams to deliver actionable insights.

The Security & Information team is looking for someone who is passionate about technology and has a roll-up-their-sleeves mentality to join our global team. Youll play a crucial role in enhancing our security infrastructure, improving networking, ensuring scalability, and maintaining strong security as we continue to grow. If you want to be an industry leader, on a team experiencing hyper-growth, look no further!
Responsibilities :
Lead the design and implementation of AI-driven detection and response strategies to automate complex security investigations.
Operates as the primary escalation point for critical security alerts, performing deep-dive DFIR investigations, analyzing attacker techniques and vectors, proactively hunting threats, and directing incident response activities.
Lead SecOps projects from inception to execution, ensuring effective implementation and ongoing maintenance
Research how to leverage security telemetry and existing security solutions to improve triage and automated response.
Work cross-functionally to refine and evolve agentic workflows that drive automated security operations.
Coordinate investigation, containment, and other response activities with business stakeholders and groups.
Perform hands-on forensic investigations, log reviews, cloud investigations, and root-cause analysis
Develop incident analysis and findings reports for management, including gap identification and recommendations for improvement.

We are seeking an experienced Incident Response leader to own and lead the companys response to large-scale, high-impact cyber incidents. This role is responsible not only for technical response, but for cross-company crisis coordination, executive decision support, and ensuring fast, controlled mitigation across engineering, product, legal, communications, and leadership teams.
This is a leadership role for someone who has personally led complex incidents under pressure - including situations involving material business risk, customer impact, regulatory exposure, and executive visibility.

The Application Security team treats security as a high-stakes engineering discipline, not an administrative task. We are looking for an Adversarial Builder to lead the defense of our Global Application Landscape-securing everything from our core SDLC and Software Supply Chain to our enterprise-wide AI adoption.
In this hands-on role, you will:
Engineer, Dont just triage: Move beyond manual reviews to build code-driven detection logic and custom AI agents that automate vulnerability hunting, triaging and remediation.
Security by design: Partner with R&D teams (including Infra and DevOps) to define the application-level technical guardrails for internal and external-facing products.
Scout the Frontier: Act as an early adopter of state-of-the-art systems, evaluating and integrating cutting-edge tech from frontier security startups in AI and Cloud Runtime security.