לוח משרות דרושים מומחה אבטחת מידע / סייבר במרכז

The Cloud Security team was founded with one mission: Help our customers secure their data, infrastructure and applications.
Cloud Security teams help DevOps and security-teams work together, with 4 main products : Workload Security, Posture Management, Application Security Monitoring and Cloud SIEM.
To become a leader in this domain, we need to consistently innovate, deliver new features to existing products and launch new products that will fulfill our customer needs. Join the team in this exciting journey!
What Youll Do:
Build and operate distributed, high-throughput, real-time data pipelines
Do it in Java and Go, with bits of Python or other languages
Use Kafka, Elasticsearch and other open-source components
Own meaningful parts of our service, have an impact, grow with the company

KMS Lighthouse is looking for an experienced Cloud Security Engineer to manage and secure Azure and Microsoft 365 environments. Focus on implementing security measures, ensuring compliance, and optimising cloud infrastructure security.

Responsibilities:

* Security Implementation: Design, implement, and manage Azure and Microsoft 365 security solutions.
* Monitoring & Response: Monitor security alerts, lead incident response, and conduct regular assessments.
* Compliance: Ensure compliance with ISO 27001, SOC2 Type II and NIST standards.
* Collaboration: Work with IT teams, provide training, and collaborate with external partners.
* Continuous Improvement: Stay updated on cybersecurity trends and recommend improvements.

Advantages:
Preferred Certifications: Microsoft Certified: Azure Security Engineer Associate Microsoft Certified: Azure Solutions Architect Expert CISSP, CCSP or related field certification

Required Security Specialist- Red Team
We work in a flexible, hybrid model, so you can choose the home-office balance that works best for you.
As a Specialist in the SecOps and Forensics department, you will lead real-world adversary simulations for our customers and prospects with the goal of helping them gain visibility into their security posture and measure the overall maturity of their cyber programs.
You will have the opportunity to research new attack vectors, develop unique payloads, and create real-world attack scenarios while putting emphasis on evasion and operation security. Additionally, your expertise will be applied by helping guide clients towards best practices while maturing their utilization of their current cyber security stack.
The ideal candidate is a passionate individual with a minimum of 3 years experience working in offensive security. They will be creative and driven to find unique solutions to difficult challenges while maintaining smooth delivery on simultaneous adversary simulation engagements. They will have a desire to improve our status quo, becoming an active contributor in maturing our team.
Responsibilities:
Independently lead and execute adversary simulations in customer networks
Conduct thorough research to create effective adversary attack strategies applicable to customer settings
Design new attack simulations that evade security controls, ensuring sustained access while remaining undetected
Analyze our metadata streams and raw data from other security products for adversary research purposes
Collaborate with customers to ensure that products play a central role in their Security Operations and Incident Response methodologies.

We are looking for an Application Security Architect to join the Product Security team and be responsible for the overall security of our products and services. The successful candidate will be responsible for contributing to our Cloud/On-prem strategic security program.
The candidate will be reporting to the Director of Product Security.
Responsibilities
Work to obtain the right mandate to ensure new products or services are launched with the appropriate security controls
Provide security standards, requirements, and guidelines for securing the products.
Take a part in the development lifecycle and integration of security features into all phases of software design and development
Assist with reviewing architecture and design for new products, features, and services.
Identify and facilitate remediation of application and cloud security exposures and vulnerabilities, including code reviews.
Conduct cloud security strategy, readiness, and discovery assessments; be familiar with cloud security frameworks, compliance requirements, and security operations
Research new application security tools and technologies and evaluate options that enhance security capabilities
Work closely with different interfaces in the company, mainly R&D and Product, to enhance application security on all layers.

Our Security team is looking for a security savvy person to join as an Cloud Security Specialist to help validate our services and environments according to the highest security standards. You will work closely with our R&D and Security teams, and solve complex security problems.
The ideal candidate is highly motivated, demonstrates a can do' attitude and needs to have a combination of technical and communication skills, as well as the ability to handle a mix of multiple tasks including projects and technical work. This role will provide career growth opportunities as you develop & acquire new security skills in the course of your duties.
What youll do:
Implement the Cloud & Data Security Governance program for AWS/GCP
Design and implement our cloud/data security benchmarks
Implement cloud organization operations including Identity & Access Management and Securing Cloud Accounts/Projects
Build processes to effectively manage cloud and data risks across AWS/GCP environments
Partner closely with our security and devops teams to detect, prevent and remediate cloud & data risks.

We believe that every person has the right to participate fully in the global economy. Our mission is to democratize financial services to ensure that everyone, regardless of background or economic standing, has access to affordable, convenient, and secure products and services to take control of their financial lives.
Job Description Summary:
Information Security Engineer focused on cloud infrastructure and application security. There will be a heavy focus on large scale and highly dynamic GCP and AWS cloud environments with global presence.
Job Description:
Your day to day:
This role will be focused primarily on the security in AWS and GCP cloud environments in our company. This will include the security aspects of infrastructure, build pipelines, application design, cloud native service and tool design patterns, stakeholder communications, consulting and advisement of peer security teams, and solution review and approval.
What Do You Need To Bring
* A minimal of 5 years of experience working in a cybersecurity related position.
* Experience working with cloud-native security tools, AWS and GCP Infrastructure design, operation, and deployment, container and host security.
* Excellent communication and documentation skills.
* Knowledge of Kubernetes, terraform, source code management, infrastructure and application security tools such as CSPM, SAST, DAST, API security, DDOS and WAF.
* Development experience is a plus.
 
Our Benefits:
Were committed to building an equitable and inclusive global economy. And we cant do this without our most important assetyou. Thats why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.
 
Who We Are:
We have remained at the forefront of the digital payment revolution for more than 20 years. By leveraging technology to make financial services and commerce more convenient, affordable, and secure, the company`s platform is empowering more than 400 million consumers and merchants in more than 200 markets to join and thrive in the global economy. For more information, visit our website.
We provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, we will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us.

We are looking for a Team Lead to run a group of Techno-intelligence Researchers in the organizational strategic department
The team plays a crucial role in overseeing and guiding the R&D of innovative future technologies based on mapping and analyzing inside impact: threats and opportunities
The findings and insights will be converted into recommendations for the organization's portfolio in order to shape the preparedness of the organization toward emerging technologies.

As a Cyber security Customer Success Manager, you will:

*  Recognize and research online attacks, analyzing attack patterns to fortify defense strategies.
*  Monitor alerts and detections, ensuring proactive measures against emerging threats.
* Work closely with prominent global security teams representing major organizations worldwide.
*  Generate insightful statistics and management data, contributing to sales and marketing endeavors.
*  Collaborate closely with clients to understand their unique security needs and provide tailored solutions.
* Drive initiatives to continually enhance threat detection methodologies and proactive security measures.
*  Act as a bridge between client expectations and internal strategies, ensuring seamless alignment and value delivery.
*  Proactively identify opportunities for innovation and improvement in security protocols, driving the evolution of our protective measures

We are looking for an ambitious, experienced, and multi skilled Senior Cybersecurity Researcher to join our unique team.
As a member of our team, you will have a deep understanding of both computer science and information security. You will understand advanced concepts like exploit development and stealthy operations. You will conduct Offensive Security Testing, consisting of highly secured solutions using Windows and Linux.
This role will provide YOU the opportunity to lead key activities to progress YOUR career. The responsibilities include the following:
Perform testing and vulnerability assessments on system and networks, focusing on network security and identifying potential weaknesses and vulnerabilities
Research and integrate the latest tools, tactics, techniques, procedures, and developments in vulnerabilities research, exploitation, privilege escalation, defense evasion, lateral movement, and means of achieving objectives into new or existing capabilities
Develop detailed testing plans and use-cases to ensure coverage of scope and reducation of attack surface

As a Security Analyst on the On-Prem team, you'll play a vital role in continuously enhancing the product's ability to detect and prevent cyberattacks.

Responsibilities:

Collaborate with top-tier security professionals to develop, refine, and maintain complex detection and protection mechanisms.
Implement cybersecurity logic and features by identifying and validating new security content. You'll leverage security research and data analysis to improve product precision.
Stay ahead of the curve by continuously testing On-Prem's capabilities against emerging threats and evolving attack techniques.
Provide expert Tier 4 support for the product's EPP security features.
Collaborate with On-Prem customers remotely or on-site. This includes reviewing security rules and configurations, and recommending best practices.

Serve as the on-premises business unit's security architect, collaborating closely with engineering and technical services teams on resolving complex security issues.
Conduct in-depth security architecture research to identify and implement best practices aligned with industry standards like CIS, NIST, and FedRAMP.
Perform comprehensive risk assessments and threat analyses to proactively address potential vulnerabilities.
Design and implement code analysis and application security reviews. You'll lead hardening projects to enhance the security of the on-premises application and infrastructure.
Mentor developers and spearhead the development of an application security training program.
Work closely with product and R&D teams to translate security risks into clear business impact assessments.

The Security Research team focuses on constantly improving our detection and protection coverage against ever-evolving cyber-security attack techniques and tools. The team comprises top-tier global security researchers with expertise in offensive (red teamers, penetration testers) and defensive (SOC, DFIR, malware analysts, and reversers). Each research project and detection & protection rule become a core part of our various platforms.

In this position, you will

Conduct in-depth research of OS internals (including user space and kernel space components)
Guide other researchers and developers throughout the company
Take part in shaping our security vision - identify needs, perform in-depth research, and implement new and innovative security capabilities
Nurture ideas from their inception to their deployment over millions of endpoints worldwide
Focus on detecting and preventing malicious behavior, working with our developers to integrate the findings into our system.
Closely cooperate with other teams to constantly improve our product