לוח משרות דרושים מומחה אבטחת מידע / סייבר בתל אביב יפו

As an Embedded Cyber Security Researcher, youll dive deep into the heart of modern vehicles, uncovering vulnerabilities and helping manufacturers build safer, more secure systems. Your responsibilities will include:

Conducting offensive security research on embedded automotive systems.
Hacking into ECUs (Electronic Control Units) from various OEMs to identify and exploit vulnerabilities.
Reverse engineering firmware and hardware components.
Investigating cryptographic systems, privacy mechanisms, and anti-theft technologies.
Collaborating with internal teams and external partners to deliver actionable insights and recommendations.

As a Team Leader, youll guide a talented group of 3-5 researchers, leading hands-on and strategic efforts across multiple projects. Youll:

Lead and mentor a team of security researchers.
Drive offensive security projects, including:
Reverse engineering and vulnerability research on ECUs from various OEMs.
Penetration testing and exploitation of embedded automotive systems.
Research into cryptographic protocols, privacy mechanisms, and anti-theft technologies.
Collaborate with cross-functional teams and global customers to deliver impactful insights and solutions.
Shape the future of automotive security through innovation and deep technical exploration.

We are looking for a Senior Engineering Manager to lead our Linux & Cloud Workload Detection team. This role owns the evolution of behavioral detection capabilities across Linux endpoints, servers, containers, and Kubernetes environments. You will manage a team of highly skilled detection engineers, drive the strategy for Linux and cloud workload visibility, and ensure our products stay ahead of emerging threats targeting modern infrastructure.
What will you do?
Technical & domain ownership
Own Linux & Cloud Workload behavioral detection strategy across endpoints, servers, containers, and Kubernetes.
The team focuses on behavioral detections and agent-side logic, rather than signature-based or IOC-driven rules.
Define what high-fidelity detection means for modern Linux and cloud-native attacks.
Drive coverage of attacker techniques using behavioral signals, not signatures.
People & org leadership
Lead and grow a team of senior detection engineers.
Set technical standards, review detection logic, and raise the bar on quality and impact.
Build strong collaboration with Research, Product, and Platform teams.

We are looking for a talented detection engineer, someone who looks at the world differently, who explores, hunts, lives to beat the system and challenge it. Someone who can address tough security problems and deliver solutions quickly.
What will you do?
You will be responsible for detecting the newest malware and exploits based on SentinelOnes EPP platform. The role includes an end to end responsibility for behaviour based detection capabilities, starting from reversing the samples, designing new methods to detect or prevent those, and implementing it in the product in the end. You will be developing and using internal research tools, PoCs and discovering new ways to detect/prevent exploitation attacks (EoP, drive-by attacks and more). At the end of the day, your deliveries will enhance the security of dozens of millions of Windows endpoints which are protected by our platform.

We are looking for an experienced Security Engineer to join our security operations team with a strong focus on detection and response.
This is a unique opportunity to leverage your threat detection and response experience and build some of the foundational systems and services to keep our infrastructure free from malicious actors and threats. You will partner closely with all engineering teams, IT administrators, and compliance analysts to ensure that we maintain sufficient visibility into our environments and develop effective programs and practices to ensure that our environments are always secure. Tooling and automation will be key to success as we scale our environments to meet customer demand.
What You Will Do:
Collaborate with different teams for building and setting up pipelines needed to gather relevant security telemetry.
Build and maintain an effective and scalable security monitoring infrastructure solution.
Develop detection strategies to identify anomalous activity and ensure that our critical infrastructure and services operate in a safe environment.
Triage alerts and drive security incidents to closure while reducing their potential impact to Semperis.
Build processes and workflows to triage security alerts and respond to real incidents.
Research new threat attack vectors and ensure that our detection and response capability is in line with the current threat landscape.
Proactively improve the quality of our detection rules and strive to eliminate classes of issues by working directly with engineering teams.
Contribute to strategy, risk management, and prioritization for all efforts around detection and response.
Collaborate with the compliance team to maintain and audit security controls and processes, ensure compliance with relevant security frameworks and certifications.
Pragmatic implementing business-focused controls to safeguard the companys multi-cloud entities.

Required Fraud Group Manager
Tel Aviv-Yafo, Gush Dan, Israel
We offer the industrys only platform that fuses customer identity and anti-fraud solutions - customer identity management, identity verification, and fraud prevention.
We sell to industries with large, consumer-facing businesses such as: banking, financial services, insurance, fintech, gaming, ecommerce/retail, telco / media, utilities, etc.
About the Role:
The Fraud Group Manager leads the professional organization responsible for the "Intelligence Core" of our fraud detection products. You manage three specialized teams-Fraud Data Science, Fraud Research, and Fraud Analytics-that implement the core logic our customers use to fight fraud.
In this role, you aren't just a strategist; you are a Production Owner. You are responsible for the health, observability, and continuous improvement of detection logic in live environments. You work in a high-impact triad with Product Management and Platform Engineering, serving as the bridge between deep technical expertise and the customers who rely on our product to protect their business.
What youll do:
Group Leadership & Customer Engagement
Direct Management: Lead and scale a multidisciplinary organization of Data Scientists, Researchers, and Analysts.
Customer Fronting: Act as the primary technical fraud authority for our customers. You will join high-stakes meetings with CISOs and Fraud Heads to explain our detection logic, address performance concerns, and align our roadmap with their evolving threat landscape.
Stakeholder Orchestration: Partner with Product Management to define the "what" and Platform Engineering to ensure the "how" (infrastructure) meets your group's logic requirements.
Production Ownership & Quality Systems
Detection Observability: Own the end-to-end monitoring and health of fraud detection in production. You ensure that we have the visibility to know if a model is degrading or a specific customers detection is underperforming.
On-Call for Performance: Serve as the escalation point for critical detection failures or sudden spikes in false positives/negatives, ensuring rapid mitigation for impacted customers.
Quality Assurance Framework: Create and maintain a robust quality system (CI/CD for fraud logic) to ensure smooth, ongoing updates to detection models and heuristics without disrupting customer environments.
Lifecycle Management: Oversee the continuous tuning and optimization of live detection logic based on real-world feedback loops.
Technical Execution
Hands-on Vetting: Maintain deep technical fluency. You must be able to review Python code, validate complex SQL queries, and interpret model performance metrics to ensure they meet our high standards.
Logic Governance: Define the schemas and standards for how detection logic is developed, ensuring that research insights are effectively operationalized by the Data Science team.

we are seeking a Detection & Response Manager to lead and mature our security operations and adversary defense capabilities.
This role owns SOC operations, incident response, red teaming, and security automation (SIEM & SOAR) across cloud, data center, and enterprise environments.
The ideal candidate combines operational excellence, threat-adversary thinking, and automation-first execution.
Key Responsibilities
Security Operations Center (SOC) Leadership
Own day-to-day SOC operations across cloud, data center, and corporate environments
Define detection strategy aligned to our company threat models and crown jewels
Ensure high-quality alerting, triage, escalation, and reporting
Continuously reduce false positives and alert fatigue
Incident Response & Crisis Management
Lead end-to-end incident response for high-severity security incidents
Own incident command during crises (technical, executive, and regulatory coordination)
Ensure post-incident reviews lead to real control improvements
Maintain and regularly test incident response playbooks
Red Team & Adversarial Testing
Manage red team and purple team activities (internal and external)
Translate real-world adversary TTPs into detection and response improvements
Ensure findings from red team exercises are remediated and verified
Partner with product, cloud, and physical security teams on attack simulations
SOC Automation (SIEM & SOAR)
Own SIEM and SOAR strategy, architecture, and roadmap
Drive automation of detection, enrichment, response, and reporting
Integrate identity, cloud, CI/CD, and physical security telemetry
Measure SOC effectiveness using MTTD, MTTR, and coverage metrics
Threat Intelligence & Continuous Improvement
Operationalize threat intelligence into detections and playbooks
Track emerging threats relevant to cloud, AI, and infrastructure providers
Continuously improve detection coverage against prioritized attack paths
What Success Looks Like (12 Months)
Measurable reduction in MTTD and MTTR for high-severity incidents
Majority of high-risk incidents detected internally, not externally
Red team findings consistently detected and contained
SOC automation meaningfully reduces manual effort
Clear, trusted security reporting to CISO and leadership.

The Cyber Research team secures the invisible layers of the modern enterprise. We specialize in the "unmanageable"- identifying and safeguarding OT, IoT, and Medical devices by decoding complex network communications and proprietary protocols.
As a Network Security Researcher, you will drive the full research lifecycle: from deep-dive protocol analysis and device fingerprinting to vulnerability discovery and the development of automated security solutions.

Responsibilities
Conduct deep-dive security research and blackbox network analysis on proprietary and obscure OT, IoT, and medical protocols.
Identify and fingerprint devices based on network traffic patterns and develop logic to detect relevant CVEs and security risks.
Develop Python-based tools and SQL queries to automate research workflows and enhance product detection capabilities.
Collaborate with R&D and Product teams to transform research findings into scalable security features and customer-facing solutions.

Our growth is driven by delivering real value to our clients, and this is also reflected in our culture, which encourages personal development, a unique and rewarding work environment, innovation, and excellence.
We are currently seeking a Consultant for the IT Solutions Consulting Department
The role includes:
Managing and leading projects in the areas of SOC2 Type II, ISO, and GDPR
Performing risk assessments and drafting policies and procedures
Working with local and international clients
Supporting the implementation of control processes and compliance with regulatory requirements
Collaborating with IT, information security, legal, and privacy teams.

We are looking for a hands-on Product Security Analyst to join our security team and play a key role in improving the security posture of our products.

This role combines deep technical work with security analysis and close collaboration with R&D teams to identify, assess, and remediate security issues throughout the product lifecycle.

we are looking for an excellent Cloud Security Expert to provide advisory services to our biggest clients and help them to build and secure their cloud environments.
Major Responsibilities:
Be part of our Great and growing Cloud security team to consult, design, develop, implement, and support our customers secure cloud environments
Deliver technology-related aspects of cloud security solutions and services to client engagements
Requirements discovery, architecture, design, and implementation of technical controls and cloud security tools
Cloud environments configuration reviews and assessment
Act as technical subject matter expert and the technical focal point for clients
When working with clients abroad, collaborate with our company member firms teams.

We are looking for a highly skilled and motivated Cloud security Team Lead to lead a team of cloud security professionals. This role focuses on designing and implementing secure cloud environments, guiding clients through cloud security strategies, and driving innovation in cloud-native security solutions.
Responsibilities:
Lead and mentor a team of cloud security experts
Design and implement secure cloud architectures across AWS, Azure, and GCP
Develop cloud security strategies, policies, and governance frameworks
Support pre-sales activities and lead technical discussions with clients
Stay up to date with evolving cloud threats, technologies, and best practices
Promote a security-first mindset in digital transformation and cloud migration projects
Educate and collaborate with clients technical and management teams (CIOs, CTOs, Architects, DevOps, Security team, etc.).

our company's Technology Consulting team is looking for a Cybersecurity Consultant to join our cyber department.
The Cyber Department works with a variety of clients in different fields: Government, Hi-tech, Industry, Retail, Hotels, Defense and more.
The Job Will Include:
Client Engagement: Leading, guiding and advising to clients in Israel and abroad as well as joint projects with various partners of our company global on cyber security projects based on methodology, regulation and standards
Technologies: Work with different aspects of cyber security in multiple fields such as IT, OT & Cloud
Security Assessments: Carrying out risk surveys including cyber, operational and supply chain risks
Advisory and Strategy Development: Developing business continuity plans (BCP) ,cyber security and maturity programs, secure architectures, policies and information security procedures
Collaboration: Leading representative and high-profile meetings with client internal senior management.

The Cyber & Cloud Security Department is seeking a Cloud Security Engineer for a challenging role that includes ongoing on‑site work with a client.
The role includes:
Responsibility for establishing, maintaining, supporting, and securing critical cloud infrastructures, with a strong focus on sensitive and secured environments - Azure Cloud
Design and implementation of secure cloud infrastructures - including working with Infrastructure as Code (IaC) practices
Operational maintenance of computing systems, servers, and infrastructure components in a secured environment
Using IaC tools such as Terraform / Bicep / ARM Templates for infrastructure management, automation, and standardization
Working with monitoring and analytics systems, including Splunk, for log analysis and security event detection
Ongoing collaboration with client teams, including hands‑on on‑site support - supporting cloud and system infrastructures
Performing security updates, hardening, and upgrades in secured environments
Integrating and implementing new Azure services into existing infrastructures
Log and event analysis, anomaly detection, and handling complex incidents
Writing and maintaining procedures, professional reports, and technical documentation
Working with various operating systems (Windows / Linux).