לוח משרות דרושים הייטק אבטחת מידע / סייבר בתל אביב יפו

We believe that every person has the right to participate fully in the global economy. Our mission is to democratize financial services to ensure that everyone, regardless of background or economic standing, has access to affordable, convenient, and secure products and services to take control of their financial lives.
Job Description Summary:
Information Security Engineer focused on cloud infrastructure and application security. There will be a heavy focus on large scale and highly dynamic GCP and AWS cloud environments with global presence.
Job Description:
Your day to day:
This role will be focused primarily on the security in AWS and GCP cloud environments in our company. This will include the security aspects of infrastructure, build pipelines, application design, cloud native service and tool design patterns, stakeholder communications, consulting and advisement of peer security teams, and solution review and approval.
What Do You Need To Bring
* A minimal of 5 years of experience working in a cybersecurity related position.
* Experience working with cloud-native security tools, AWS and GCP Infrastructure design, operation, and deployment, container and host security.
* Excellent communication and documentation skills.
* Knowledge of Kubernetes, terraform, source code management, infrastructure and application security tools such as CSPM, SAST, DAST, API security, DDOS and WAF.
* Development experience is a plus.
 
Our Benefits:
Were committed to building an equitable and inclusive global economy. And we cant do this without our most important assetyou. Thats why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.
 
Who We Are:
We have remained at the forefront of the digital payment revolution for more than 20 years. By leveraging technology to make financial services and commerce more convenient, affordable, and secure, the company`s platform is empowering more than 400 million consumers and merchants in more than 200 markets to join and thrive in the global economy. For more information, visit our website.
We provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, we will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us.

Responsibilities
Perform financial motivated attacker tradecraft research and threat landscape investigation across cloud-based attacks spanning permissions, identities, applications, and data.
Partner with engineers and data scientists in a geographically distributed team to deliver innovative new product capabilities.
Threat hunting to discover real world advanced attacks together with designing and implementing automated detection and hunting analytics combining alerts and signals across our Defender security products.
Contribute to active engagement with the security ecosystem through papers, presentations, and blogs.
Provide subject matter expertise to customers based on industry attack trends and product capabilities.

As a defensive security researcher, you will:
Perform attacker tradecraft research and threat landscape investigation across on-prem & cloud-based attacks spanning identities and applications.
Threat hunt to discover real-world advanced attacks and design and implement automated detection and disruption actions based on alerts and signals.
Contribute to active engagement with the security ecosystem through papers, presentations, and blogs.
Design and develop new detection logics to protect customers from attacks.

***Our interns work part time, all year round***

Be a part of the team that is instrumental in constructing one of Microsoft's most exciting security solutions. In an era of increasingly sophisticated cyber-attacks, the Microsoft 365 Defender security suite has emerged as a vital tool for enterprises, enabling them to identify, scrutinize, counter advanced breaches and data intrusions within their networks and manage their security posture.

Our Israeli research team is looking for a security researcher who can help our customers, of all sizes, improve their security and protect them from cyber threats.

We value diversity and welcome candidates with different experiences and perspectives. If you are a team player who loves creating products for and with customers, come join us and be part of building a better world.

Responsibilities:
Performing attacker tradecraft research and threat landscape investigation across on-prem & cloud-based attacks spanning identities and applications.
Threat hunting to discover real-world advanced attacks and designing and implementing automated detection and disruption actions based on alerts and signals.
Contributing to active engagement with the security ecosystem through papers, presentations, and blogs.
Providing subject matter expertise to customers based on industry attack trends and product capabilities. 

Required Network Security Engineer
The network security engineer is responsible for design, planning, installation, modification, testing, servicing, security and day to day management of the organizations enterprise-wide network, switches, connected devices, and all data communications.
As a member of our Security Operations Team, you will collaborate with a global team of engineers to proactively identify and mitigate risks, monitor and respond to security events, respond to and assist in security incidents as a security incident responder, and protect our corporate infrastructure and operations. You will also be responsible for creating and maintaining runbooks, assisting in creating automated workflows, and assisting in process refinement and implementation.
In this role, you will:
Manage and own the installation, maintenance, administration, and upgrades of the enterprise network infrastructure and network security platforms.
Manage next generation end-point management and protection platforms including Microsoft Intune, Kandji macOS device management, provisioning and patching management, and CrowdStrike EDR solutions.
Respond to cyber security incidents by executing the incident response strategy through incident closure, while providing incident updates to the incident commander throughout the incident
Protect us while partnering across the organization to drive remediation and ensure our infrastructure is sufficiently protected
Manage post-incident activity such as POMO and Corrective Action assignments
Assist with developing and maintaining security policies, processes and incident response procedures
Coordinate the building of services, capabilities, integrations, and implementations of technologies to support security operations and incident response.

we are looking for a talented temporary Sales Engineer in Israel to join our EMEA and APAC team.
As a Sales Engineer, you will work closely with our commercial team in pre-sales situations to solve challenging problems for our clients. You have a diverse and dynamic workday, where you will get to lead complex enterprise POVs and demonstrate the business and operational value of our technology to ensure success. An ideal candidate has a combination of engineering skills, expertise in Cyber Threat Intelligence, experience in presenting to large audiences on camera and in person, and the flexibility to adapt to customer personas in your region.
Responsibilities:
* Work in tandem with sales to support pre-sales opportunities, as well as post-sales upsell opportunities, and renewals
* Meet with prospective customers, understand requirements, field technical questions, and demonstrate product capabilities
* Plan and manage hands-on product proof-of-concept efforts
* Design and develop innovative solutions to customer requirements using the platform, and following industry best practices
* Address critical analytical, technical, and operational issues
* Drive user adoption across a variety of use cases
* Maintain expert technical knowledge of the product suite
* Collaborate with our product team to drive innovation and customer requirements
* Develop and communicate our value proposition to executives

As a Security Analyst on the On-Prem team, you'll play a vital role in continuously enhancing the product's ability to detect and prevent cyberattacks.

Responsibilities:

Collaborate with top-tier security professionals to develop, refine, and maintain complex detection and protection mechanisms.
Implement cybersecurity logic and features by identifying and validating new security content. You'll leverage security research and data analysis to improve product precision.
Stay ahead of the curve by continuously testing On-Prem's capabilities against emerging threats and evolving attack techniques.
Provide expert Tier 4 support for the product's EPP security features.
Collaborate with On-Prem customers remotely or on-site. This includes reviewing security rules and configurations, and recommending best practices.

Serve as the on-premises business unit's security architect, collaborating closely with engineering and technical services teams on resolving complex security issues.
Conduct in-depth security architecture research to identify and implement best practices aligned with industry standards like CIS, NIST, and FedRAMP.
Perform comprehensive risk assessments and threat analyses to proactively address potential vulnerabilities.
Design and implement code analysis and application security reviews. You'll lead hardening projects to enhance the security of the on-premises application and infrastructure.
Mentor developers and spearhead the development of an application security training program.
Work closely with product and R&D teams to translate security risks into clear business impact assessments.

The Security Research team focuses on constantly improving our detection and protection coverage against ever-evolving cyber-security attack techniques and tools. The team comprises top-tier global security researchers with expertise in offensive (red teamers, penetration testers) and defensive (SOC, DFIR, malware analysts, and reversers). Each research project and detection & protection rule become a core part of our various platforms.

In this position, you will

Conduct in-depth research of OS internals (including user space and kernel space components)
Guide other researchers and developers throughout the company
Take part in shaping our security vision - identify needs, perform in-depth research, and implement new and innovative security capabilities
Nurture ideas from their inception to their deployment over millions of endpoints worldwide
Focus on detecting and preventing malicious behavior, working with our developers to integrate the findings into our system.
Closely cooperate with other teams to constantly improve our product

The Security Research team focuses on constantly improving our detection and protection coverage against ever-evolving cyber-security attack techniques and tools. The team comprises top-tier global security researchers with expertise in offensive (red teamers, penetration testers) and defensive (SOC, DFIR, malware analysts, and reversers). Each research project and detection & protection rule become a core part of our various platforms.

In this position, you will

Collaborate closely with customers to understand their security needs and identify detection gaps.
Develop, enhance, and maintain complex detection & protection mechanisms in collaboration with top-tier global security professionals.
Analyze customer-provided red team reports, identifying key attack patterns and translating them into actionable detection improvements.
Implement cyber security logic and features while ensuring alignment with customer requirements.
Conduct security research and data analysis to validate newly created security content and ensure product precision.
Stay updated on emerging threats and new attack techniques, adapting detection capabilities proactively
Analyze advanced attack techniques and malware to inform the development of future defense mechanisms.
Provide Tier 4 support for our EPP product security capabilities, offering in-depth expertise to customers.

Required SIEM engineer
Description
As a SIEM engineer you will be part of our Cyber Security team working among Israel and global companies, Helping client build their Next Gen Cyber monitoring solution.
Leading security monitoring Projects for Local and Global client , from Vision to execution
Providing technology solutions for our customers in cooperation with cloud and cyber security professionals.
Coordination with the client to gather requirements and design the solutions to support those requirements.
Plan and design SOC strategy and SIEM architectures for clients (People process technology )
Design and develop security solutions for customers' security monitoring needs in various environments: on-prem, cloud and OT.
Responsible for keeping projects on track.

Collaborate closely with all development teams to build and govern security from day one to production, following best practices.
Perform application security assessments, including architecture design reviews and threat modeling.
Provide secure software guidance and act as a business enabler to cross-functional teams, including product, engineering, etc.
Design, build, and implement best-in-class application security solutions.
Lead and promote security audits, vulnerability assessments and code reviews.
Develop software security guidance, including training material, best practices, secure coding checklists, and reusable code.
Validate ongoing compliance with policies and procedures in support of regulations.
Raise the overall security awareness for the Secure-SDLC and define training roadmaps based on needs.
Work with different entities in the company to ensure S-SDLC compliance with company rules and industry standards.
Review & manage security issues identified in products, analyze severity and risk, and provide recommendations for remediation.
Establish, manage, and lead a bug bounty program

We are looking for a highly skilled Product Security Architect to join our team at Tipalti. This role is pivotal in ensuring the security of our applications from inception to production and beyond. The ideal candidate will have a solid development background that has evolved into security expertise, enabling them to work closely with development teams to implement security best practices and develop protection mechanisms.
In this role, you will be responsible for:

Collaborate closely with all Tipalti development teams to build and govern security from day one to production, following best practices.
Perform application security assessments, including architecture design reviews and threat modeling.
Provide secure software guidance and act as a business enabler to cross-functional teams, including product, engineering, etc.
Design, build, and implement best-in-class application security solutions.
Lead and promote security audits, vulnerability assessments and code reviews.
Develop software security guidance, including training material, best practices, secure coding checklists, and reusable code.
Validate ongoing compliance with policies and procedures in support of regulations.
Raise the overall security awareness for the Secure-SDLC and define training roadmaps based on needs.
Work with different entities in the company to ensure S-SDLC compliance with company rules and industry standards.
Review & manage security issues identified in products, analyze severity and risk, and provide recommendations for remediation.
Establish, manage, and lead a bug bounty program

we are looking for an experienced Security Solutions Engineer to help us create new Blink automations and scalable solutions for our customers. Your role will be both strategic and tactical, as youll be working directly with customers to understand their requirements, design solutions, and implement security controls. Join us on our mission to help every security team achieve operational excellence.

What You'll Do

Design and implement security solutions to automate the real-world customer pains.
Provide expert advice and recommendations for our security solutions that can achieve customer objectives.
Collaborate with the Sales team to establish a reputation for technical excellence and trustworthiness with potential customers.
Work jointly with other Solutions Engineers & Architects to support the Sales team with technical content and call support.
Establish and maintain a knowledge hub or repository of security best practices, resources, and insights.
Collaborate with the marketing team to generate demos, case studies, blogs, and videos.