לוח משרות דרושים מומחה אבטחת מידע / סייבר בתל אביב יפו

the leader in application security and ensures that enterprises worldwide can secure their application development from code to cloud. Our consolidated platform and services address the needs of enterprises by improving security and reducing TCO, while simultaneously building trust between AppSec, developers, and CISOs. we believe its not just about finding risk, but remediating it across the entire application footprint and software supply chain with one seamless process for all relevant stakeholders.
We are honored to serve more than 1,800 customers, which includes 40 percent of all Fortune 100 companies including Siemens, Airbus, SalesForce, Stellantis, Adidas, Wal-Mart and Sanofi.

About the Team
Our team is passionate about software security, focusing on Software Supply Chain Security (SSCS). With the growing attention in the industry on Application and software security, we are always driving for innovation and focusing on making a market leader in all SSCS domains.

What are we looking for

We are looking for a Senior Product Manager to join our team and drive our Software Supply Chain Security Solution to success. You should bring strong technical expertise in Software Supply chain Security, specifically with the SLSA framework, and Open-source security tools, Teamwork and collaborative nature, Problem-solving mindset, and ability to discuss and communicate technical requirements effectively. If you're prepared to make a substantial impact, we invite you to apply and join our team.

Responsibilities:
Create a clear product vision and strategy for our Software Supply Chain Security solutions.
Stay informed about industry trends and competition to ensure our products remain at the forefront of the market.
Translate customer feedback, needs and pain points into actionable product features.
Prioritize issues, feature requests and product questions from all sources.
Partner with the marketing team to roll out new features that drive desired outcomes.
Gather feedback on adoption and monitor usage metrics.
Lead product prioritization discussions. Base recommendations on company goals, user problems, user data, and product knowledge.
Be an active participant in the SDLC and contribute to high-quality delivery. Work with developers to refine requirements, optimizing customer value with feasibility.

We are an early-stage startup, looking for a technical leader to lead our research & innovation department. Youll lead the Research function at the intersection of Cybersecurity AI and payment fraud prevention. Were revolutionizing B2B payments with cutting-edge technologies, and need a talented, detail-oriented leader to drive our security research efforts and make a real impact on how enterprises secure their payment flows.
What Youll Do:
Build & Lead a World-Class Team: Scale our Research group from 2 to 4 experts, mentoring them to tackle an underserved problem in payment security.
Define the Research Roadmap: Own the strategy for discovering attack trends, vulnerabilities, and fraud methods in B2B payment processes.
Hands-On Research: Hunt emerging threatsinvestigate supply-chain and payment-flow attacks, quantify impact, and prototype novel detection/remediation tools.
Cross-Functional Collaboration: Partner with Product, Engineering, and Threat Intelligence to transform research insights into features that enhance our AI-driven security platform.
Customer & Industry Engagement: Present findings to strategic customer leaders and at conferences; publish whitepapers or blog posts that establish our domain expertise.
Incubate & Operationalize PoCs: Turn proofs-of-concept into production-ready product capabilities that preemptively defend against next-gen payment fraud.
Balance Long-Term Vision & Short-Term Wins: Maintain an action-oriented mindset to deliver both immediate research outputs and foundational work for future product pillars.

We are expanding the Security Research team for which we are looking for highly skilled and passionate Senior Security Researchers focusing on GenAI, AI Agents / Agentic AI, and their interaction with Low-Code and No-Code platforms. The ideal candidate should have a minimum of 5 years of relevant experience and a strong background in conducting research, identifying vulnerabilities, and performing in-depth analysis of web and API security within cloud environments. This role offers a unique opportunity to contribute to the security of emerging technologies that are transforming the way people and organizations use computers.

we are looking for an experienced Application Security Architect to join our Cybersecurity team. In this role, you will be instrumental in building and advancing our companys application security programs. Working closely with talented engineers, product managers, and platform teams, youll play a key role in ensuring the security of our software development lifecycle (SDLC).
Youll provide security services including secure coding practices, architecture reviews, awareness and training initiatives, and tool implementation. From threat modeling to secure development education, your contributions will directly impact the safety and resilience of our companys products.
What am I going to do?
Lead Secure SDLC Initiatives: Drive security throughout the software development lifecycle (S-SDLC), including threat modeling, risk assessments, and mitigation planning for new and existing applications.
Embed Secure Design Practices: Guide development teams on implementing secure architectural patterns, design principles, and coding standards, with emphasis on OWASP and industry best practices.
Security Tooling Strategy: Define and manage the integration of Static (SAST), Dynamic (DAST), and Software Composition Analysis (SCA) tools into our companys CI/CD pipelines, ensuring scalable, platform-agnostic coverage and effective vulnerability management.
Security Testing & Remediation: Perform and oversee application security testing, ensuring timely remediation of identified vulnerabilities.
Develop Security Standards: Create and maintain secure coding standards, best practices, and development guidance tailored to our companys tech stacks.
Code Reviews: Conduct in-depth manual and automated security code reviews for critical components, offering practical and constructive feedback to engineering teams.
API & Mobile App Security: Design and assess security for APIs and mobile applications, ensuring robust authentication, authorization, and data protection in line with industry standards.
Third-Party Risk Management: Evaluate the security posture of third-party libraries, components, and services integrated into our company's applications.
Cloud Security Collaboration: Partner with Cloud Security Architects to ensure secure application deployment in cloud environments (e.g., AWS, GCP), offering expert advice on cloud-native security practices.
Team Enablement & Education: Mentor development teams on emerging threats, secure coding techniques, and security-first development approaches.
Bug Bounty Program Leadership: Manage and evolve our companys bug bounty program, working with researchers and internal teams to resolve findings efficiently.

We are looking for a Senior Fraud Analyst with a passion for solving complex puzzles by investigating reactively and proactively data and live attacks. The solutions and insights you find will turn into proactive algorithms that make our community safer.
Here are a few of the things you'll do:
Discover and effectively communicate unique, actionable insights to prevent and detect attacks using our solution.
Extract data from internal systems, identify the correct metrics needed, create reports and analyze them to understand key trends.
Translate trends to prevention algorithm requirements.
Be the point of escalation to fraud investigators.
Proactively initiates and leads fraud‑risk projects from ideation through deployment, coordinating stakeholders across product, data, and engineering.

A company located in central Israel is looking for a full-time Information Security Consultant and Advisor.
This is a great opportunity to gain experience in a GRC (Governance, Risk, and Compliance) role and as an Information Security Consultant for cutting-edge tech companies, while also influencing the company and its information security posture.
Responsibilities include:
Supporting organizations in the creation and management of information security programs.
Overseeing information security systems.
Developing risk management processes.
Supporting cross-organizational processes.
Conducting information security reviews and regulatory gap assessments.
Designing and implementing security hardening processes.
The role is dynamic and includes consulting and on-site support at the client's location.
This is a full-time position.
CVs should be sent to our e-mail.

As a security sales specialist you will have the opportunity to help drive the growth and shape the future of emerging technologies that will have a significant impact on our customers technical strategy.

Key job responsibilities
Drive revenue and adoption of native security services such as our GuardDuty, Inspector, Macie, Key Management Service, CloudHSM , WAF and other offering in a defined territory.
Accelerate customer adoption by identifying specific customer segment & approach with a value proposition for using our web services.
Create and articulate compelling value propositions around our security services
Meet or exceed quarterly revenue targets, and deliver business reviews to the senior management team.
Develop long-term strategic relationships with key accounts and the security teams of our customers.

the brand grabs attention like nothing else in cybersecurity. And were growing like crazy, with $70M in Series C funding, 200% employee growth, and 300% revenue growth in 2024. Fueling growth are our game changing agentic AI security solutions, backed by a team and culture that makes one of Forbes Best Startup Employers in America, and a Business Insider startup to bet your career on.

Life at is all gas, no brakes. Were a team of relentless, collaborative go-getters pushing the boundaries of whats possible for security automation. Every role is an essential driver of success as the AI-native autonomous SecOps platform of choice for security teams across the Fortune 500. Excited about our vision and ready to make an impact as we grow? Wed love to see what you can bring to the team.
looking for an experienced and passionate Cloud and SaaS Security professional to play a key role in advancing our security strategy.
In this role, youll take ownership of securing our cloud infrastructure, SaaS platforms, and incident response practices. You'll help shape our security posture, identify threats and misconfigurations, and respond effectively to security events.

What You'll Do
As a Senior Cloud Security Engineer at , you will:
Strengthen and maintain our cloud security posture using CNAPP tools.
Manage security controls and configurations across a wide range of SaaS platforms.
Collaborate on incident response efforts, including triage, containment, and post-incident reviews.
Develop detection content using SIEM and Hyperautomation workflows.
Evolve Incident Response and Security Operations programs to safeguard current and future assets.
Optimize and fine-tune security tool configurations to reduce false positives and increase effectiveness.
Support compliance initiatives such as SOC 2, ISO 27001, and FedRAMP readiness.
Work hands-on with the CISO and Security Manager on strategic security projects.
Partner with cross-functional teams including R&D, DevOps, and Engineering to drive security best practices

a Threat Researcher to join its Threat Intelligence Analysis (TIA) team. The team is responsible of discovering, analyzing and tracking advanced threat actors and campaigns, with a strong focus on high-end cybercrime and state-sponsored activities. You will join a team of motivated, independent & highly technical individuals and contribute the effort to protect customers and empower the brand.



Key Responsibilities
Identify, understand and monitor advanced campaigns using publicly available sources as well as internal telemetry.
Analyze malware and other hacking tools utilized by threat actors in active campaigns and intrusions.
Create technical research content for public and private intelligence reports.
Help build protections and detections based on deep understanding of advanced threat actors Tactics Techniques and Procedures (TTPs).
Collaborate with other security teams to assist threat intelligence and research tasks.

We are looking for a highly motivated and responsible Project Manager to join the CloudGuard Network Security Products group.

In this position you will be leading internal group activities as well as cross organizational projects, involving other R&D departments, Product Management, Support, Sales, and QA.

Come join a team of driven, fun, creative minds united in delivering innovative new technology and cyber security against the ever-changing threat landscape.

Key Responsibilities
Manage development projects and product release in the CloudGuard Network Security Products group
Be part of the R&D group, targeting competitive and successful products
Managing the project full cycle from ideas through requirements, high level plan, design, execution and ending in a release
Managing the project content, quality, timeline and risks
Manage product release process including customer facing publications (Marketplaces, Public documentation portal, etc)
Directly engage with developers as well as senior management
Manage QA priorities and perform tradeoffs as needed to meet critical delivery targets
Adapt and take on more responsibilities and own your share of the product
Leading lessons learned / debriefs, tracking till final resolution and implement improvements based on conclusions

We're looking for an Application Security Researcher with a strong AppSec background to join our growing team and push the boundaries of what modern application security can do.

Passionate about AppSec? Ready to shape the future of application security tooling? Join us.

Responsibilities:

Build and maintain an advanced security research lab to test, evaluate, and supercharge detection tools.
Analyze tools across multiple domains: SAST, SCA, DAST, Secret Detection, IaC Scanning, Container Scanning, CSPM, and more.
Identify detection gaps and develop techniques and rules to close them.
Leverage Python and AI practices to automate research and drive smarter detection strategies.
Monitor emerging threats, CVEs, and high-profile incidents - and develop relevant detection content and platform enhancements.
Write and publish technical content covering vulnerabilities, detection strategies, incident analysis, and research findings.
Collaborate closely with engineering, product, and marketing to translate research into product innovation and thought leadership.

We are looking for a Cyber Security Researcher to drive innovation in security defenses for on-premises and cloud environments. Your primary focus will be twofold:

1. Researching and developing novel defensive mechanisms to detect and mitigate advanced threats.

2. Contributing to open-source security tools by developing new solutions and enhancing existing ones.If you have a passion for security research, a strong technical foundation, and a drive to make meaningful contributions to the cybersecurity community, wed love to hear from you.


Responsibilities:
Research and prototype novel security defense techniques for on-prem and cloud-based systems

Analyze modern attack techniques and develop countermeasures to mitigate them.

Design, develop, and improve open-source security tools to help defenders detect and respond to threats.

Reverse engineer malware, attack tools, and security mechanisms to identify vulnerabilities and improvements.

Investigate Windows internals and authentication protocols (NTLM, Kerberos, SAML, OAuth) to enhance security defenses.Write secure, efficient, and maintainable C/C++ code for research and tooling purposes.

Collaborate with the security research community and contribute to blogs, whitepapers, and conference talks.

Stay ahead of the evolving threat landscape and propose innovative security solutions.

Were looking for a Product Security Architect to play a key role in ensuring our ML/AI platform remains secure while fostering innovation within our R&D team. If you have a strong security background and want to impact a fast-growing company, wed love to meet you!

You will be responsible for:

Designing secure systems and conducting threat modeling for new and existing features.
Identifying and mitigating security risks in architecture, applications, and infrastructure.
Performing security assessments, audits, and ensuring compliance with standards like ISO27001, PCI-DSS, and GDPR.
Integrating security best practices into CI/CD pipelines and development workflows.
Improving Secure Development Lifecycle (SDLC) practices within R&D and Product units.
Providing guidance and mentorship to development teams on secure coding and security principles.
Collaborating with engineering, product, and DevOps teams to embed security into all aspects of development.
Reviewing tools and processes to detect security threats and enhance security posture.
Communicating security risks and recommendations to technical and non-technical stakeholders.

Were looking for a Junior BCP and GRC Analyst to join our team and help strengthen the organization's resilience and compliance frameworks. In this role, you will support the development and implementation of Business Continuity Plans (BCP), Disaster Recovery (DR) strategies, and security governance practices across the company.
Youll work closely with IT, Security, Legal, and Operations teams to coordinate drills, write and embed security policies, manage vendor risk assessments, and assist in internal and external audits. This role is ideal for someone who is detail-oriented, proactive, and eager to grow in the fields of risk management, cyber security, and compliance.
If you have strong organizational skills, a good understanding of security standards (such as ISO 27001, SOC 2, GDPR), and thrive in a dynamic,