לוח משרות דרושים הייטק אבטחת מידע / סייבר בתל אביב יפו

Requirements:
Bachelor's degree in a relevant field.
Ability to work independently and as part of a team
Strong analytical and problem-solving skills
Strong project management and organizational skills
Interest in High tech, Cloud and technologies
Familiar with Microsoft Office (Word, Excel)
Fluent in English (both written and verbal)
Proficiency in Hebrew is an advantage.

Requirements:
5+ years of hands-on experience in offensive security operations (e.g., red teaming, exploitation, adversary simulation)
2+ years of experience leading technical teams or complex offensive security projects
Proven expertise in advanced attack techniques, including privilege escalation, lateral movement, evasion, and persistence
Strong background in vulnerability research, exploit development, or reverse engineering
Strong developing and automation skills
Familiarity with EDR, SIEM, and modern detection mechanisms - and how to bypass them
Strong ability to translate complex technical findings into clear, actionable business insights
Experience in client-facing roles, including presentations to senior stakeholders
Excellent written and spoken English communication skills.

Requirements:
At least 10 years of experience in the cybersecurity technological space
At least 3 years in managing cyber security teams
Vast knowledge and practical hands-on experience of cyber security practices and technologies
Proficiency on AWS/GCP/Azure security controls and architecture
Experience in working with DevOps teams
Intimate knowledge of infrastructure security including networking, databases and systems
Strong bias for action; ability to juggle multiple priorities and create a sense of urgency in a fast-paced, dynamic environment
Exceptional communication skills
Fluency in Hebrew and English
A strong combination of technical acumen and business understanding - Advantage
Cybersecurity certificate - Advantage.

Requirements:
4+ years of experience in penetration testing (infrastructure and applications)
Experience with at least one cloud platform: AWS, Azure, or GCP.
Strong understanding of OWASP Top 10 and common application vulnerabilities.
Experience using security tools such as Burp Suite, Nmap, Metasploit, C2 Framework, etc.
Knowledge in mobile application, SCADA, IoT, or hardware - an advantage.
Certifications such as OSCP, CRTO, OSEP or equivalent.
Strong communication skills (verbal and written) with the ability to influence and manage relationships up to senior management levels.
Strong analytical and problem-solving skills with a self-driven learning mindset.
A team player who can also work independently and has a strong desire to learn and grow.
Advantage:
Knowledge in mobile application, SCADA, IoT, or hardware
Proficiency in at least two programming languages, such as Python, PHP, C, or C++.
Familiarity with web technologies like JavaScript, HTML, and CSS, along with frameworks like React, Angular, or Vue
Experience participating in red team exercises or adversary emulation
Understanding of or research in LLM systems (e.g., prompt injection, model exploitation)
Prior proven experience in cybersecurity research.

Requirements:
What youll need?
Experience: 5+ years in SecOps/IR with hands-on threat detection and mitigation, specifically in cloud-centric, production-scale environments.
Technical Skills: Strong capability in Cloud-focused threat detection, incident response, and analysis of complex attack patterns. Skilled in writing SIEM queries/alerts with an outcome-orientation (e.g., measurable improvements in MTTD or alert fidelity).
Scripting & Automation: Knowledge of Python, SQL, or Bash for SOC automation, with practical experience building SOAR playbooks, data enrichment scripts, and Detection-as-Code solutions.
AI & LLM Security: Understanding of the AI threat landscape (including adversarial ML and OWASP Top 10 for LLMs) and exposure to securing GenAI pipelines.
Investigations: Extensive experience with end-to-end security investigations, deep knowledge of security network protocols, and familiarity with the OWASP Top 10 vulnerabilities.
Security Tools: Hands-on experience managing, configuring, and investigating security events across EDR, Firewall, SIEM, and SOAR platforms.
Core Skills: Strong problem-solving, analytical, and organizational skills. Comfort leading initiatives without direct authority, a security-first approach, and the ability to mentor SOC analysts.

Itd be cool if you also: [NOT A MUST]
Familiar with industry frameworks (ISO 27001, PCI-DSS, SOC2, NIST, etc.) and regulatory requirements.
Have one or more certifications: CRTP, OSCP, OWSP, OSDA, GCIH, GIAC, CSA, CompTIA CySA+, or other relevant certifications.
Experience with building agents and utilizing LLM\AI in day2day work

Requirements:
Requirements
* 1-3 years of experience in Offensive Security/Cyber.
* Extended knowledge in researching, simulating, and analyzing different application attack vectors.
* Advantage – Experience using a hacking framework or pen-testing tools such as Frida, Magisk, Multiproxy, and Cheat Engine.
* Ability to create analysis plans and execute them, as well as document and troubleshoot errors.
* Ability to understand the system from multiple perspectives, including high-level and low-level technical architecture.
* Experience in Mobile (iOS/Android) analysis environments and automation tools. Advantages
* Bachelor’s degree in a relevant field.
*  Software development and scripting experience.
Company Overview Appdome's mission is to safeguard mobile apps and their users globally. We offer the industry's only patented, centralized, data-driven Mobile Cyber Defense Automation platform, providing rapid no-code, no-SDK security and integrated defenses against fraud, malware, and bots, along with Threat-Events™ UI/UX controls, ThreatScope™ Mobile XDR, and Certified Secure™ DevSecOps Certification. With Appdome, mobile developers and cyber teams can expedite delivery, ensure compliance, and utilize automation for building, testing, and monitoring mobile app security within DevOps and CI/CD pipelines. Our platform is trusted by leading brands across financial, healthcare, m-commerce, consumer, and B2B sectors, securing over 50,000 apps and protecting over 3 billion end users worldwide. Equal Opportunity Employment Appdome is an Equal Opportunity Employer committed to diversity, equity, and inclusion. We evaluate all qualified applicants without discrimination based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or other protected characteristics.

Requirements:
5+ years of experience in SecOps, Security Engineering, or DevSecOps roles
Hands-on experience with cloud environments (AWS preferred)
Strong background in Kubernetes, Microservices and CI/CD pipelines
Experience with SIEM, CSPM, EDR, and vulnerability scanning tools
Solid understanding of threat models, attack vectors, and incident response
Ability to work independently with strong ownership and problem-solving skills

Requirements:
Minimum of 3 years of experience in intelligence analysis, with a focus on WEBINT / OSINT.
Strong understanding of Cyber Threat Intelligence (CTI), the cybercrime ecosystem, and underground information sources.
Excellent analytical thinking and report-writing capabilities, supported by a proven track record.
Fluent in English, both written and spoken.
A proactive, team-oriented attitude and strong multitasking skills.

Requirements:
5+ years of experience in sec-ops positions with relevant certifications
Demonstrable experience working in IT, Networking, Infrastructure, DevOps environments
Deep understanding of cloud platforms (AWS, GCP) and their security best practices(CSPM, ASPM, DSPM).
Strong knowledge of cloud networking(VPC), firewalls, IAM roles, and encryption.
Familiarity with ISO 27001, SOC 2, GDPR, and other security and regulatory frameworks, as part of GRC.
Experience performing or overseeing penetration testing processes.
Experience working with Forensic & Threat Detection Tools such as AWS GuardDuty, Azure Sentinel, Splunk, Qradar, Arcsight, and other SIEM systems
Experience working with multiple EDR and XDR Tools (CS, SentinelOne, MS Defender, etc)
Excellent verbal and written communication skills, capable of explaining technical security concepts to non-technical stakeholders.
Ability to think critically and act decisively under pressure.
Integration and project lead experience

Requirements:
2-3 years of experience in Application Security, with a strong background in secure application design, vulnerability analysis, and risk assessment.
Past experience as a Penetration Tester (Web and APIs), including extensive manual testing (not tool-only).
Strong ability to read, understand, and reason about code, especially in C# and JavaScript.
Deep understanding of OWASP Top 10 and OWASP Top 10 for LLM Applications.
Solid knowledge of OWASP ASVS (Application Security Verification Standard) and its practical application in security reviews.
Proven experience conducting application security reviews, including threat modeling and secure design validation (advantage).
Strong communication skills with developers, including the ability to explain security findings, risks, and remediation clearly and pragmatically.
Familiarity with cloud environments such as AWS, Azure, or GCP, including common security pitfalls.
Experience with bug bounty programs and/or Red Team activities (advantage).
High proficiency in English, both written and spoken.