לוח משרות דרושים מומחה אבטחת מידע / סייבר

We seek a highly skilled and experienced Solution Architect with a deep understanding of SecOps principles and practices to join our team. In this role, you will be responsible for designing and implementing robust and secure solutions that protect our customers cloud infrastructure and applications from cyber threats. You will work closely with clients to understand their security needs, translate them into technical requirements, and architect comprehensive security architectures that seamlessly integrate with DevOps processes.
Key Responsibilities:
Collaborate with clients to gather security requirements and understand
their threat landscape.
Design and implement end-to-end SecOps solutions, including security
monitoring, threat detection, vulnerability management, and incident
response.
Leverage cloud security technologies and best practices to architect
secure and compliant cloud environments.
Automate security processes and integrate security into DevOps
pipelines to enable continuous security.
Conduct security assessments and penetration tests to identify and
mitigate vulnerabilities.
Stay up-to-date with the latest security threats, trends, and
technologies.
Provide technical guidance and mentorship to other team members.

We are in search of a skilled and motivated Security Researcher to join our team.
As a Security Researcher, your primary focus will be on creating and researching anomaly and behavioral based threat models, dissecting attack techniques, and leading proactive threat-hunting endeavors across a spectrum of domains, including cloud infrastructures (with a specialized emphasis on Office 365 and Azure), network security, proxies, firewalls, DNS, Active Directory, Azure Active Directory, and SharePoint, and product security.
Your role will require a profound comprehension of security concepts and a forward-thinking approach to identifying and writing detections for potential risks.

We are looking for a Cloud Security Researcher.
Responsibilities:
Research for new security issues/vulnerabilities in Cloud Environments & SaaS Applications
Write proof-of-concept, threat detections, and analytical algorithms
Analyze logs and behavior of user activities on Cloud Environments & SaaS Applications
Hunt threat actors & insider threats
Collaboration with R&D groups within the company to implement your latest research
Evaluate and recommend steps to harden customer's Cloud Environments & SaaS Applications
Optimizing existing algorithms to reduce false positives and increase the value of our products
Writing cyber security oriented blogs and publications
Follow and Evaluate new security threats, attack vectors, and technologies

We are looking for a Cloud Security Research Team Leader.
We work in a flexible, hybrid model, so you can choose the home-office balance that works best for you.
Responsibilities:
Team Leadership
Lead and mentor a team of top notch cloud security researchers.
Foster a culture of innovation, collaboration, and excellence within the team.
Provide technical guidance and support to team members.

abra is looking for an experienced professional to join a Cyber Security Supply Chain Risk Management role. The position focuses on managing cybersecurity risks within the supply chain and includes:
* Sending security questionnaires to vendors and tracking remediation of identified gaps.
* Coordinating vendor sign-off on security documents and ensuring compliance with organizational information security requirements.
* Collaborating with various internal stakeholders: Infrastructure, Architecture, Networking, Business Units, Compliance, Legal, Vendors, and Technology Partners.
* Working in a regulated environment, adhering to strict information security standards and policies.

Were hiring a Senior Security Engineer to help shift security left across product and platform teams, while also supporting internal corporate security needs. Youll drive impact through enablement, automation, and practical risk reduction.
Why this role matters?
Youll secure both what we build and how we work. That means embedding security into our products and CI/CD, and also supporting internal teams.
Security here is not a gate; its a force multiplier. Youll help engineering teams move faster safely, and ensure our colleagues have a secure foundation to do their best work.
Success means faster, safer releases and fewer reactive security escalations.
What will you do?
As a Senior Security Engineer, your mission will be to:
Partner with developers to embed security into design, build, and deploy stages
Automate vulnerability triage and mitigation flows
Secure CI/CD pipelines (GitHub, Jenkins) and execution environments (Kubernetes, Docker)
Tune WAFs, manage cloud security (AWS, GCP, Azure), and evolve Terraform practices
Support internal teams with secure production accesses, endpoint hardening, and access policies
Lead security reviews across app, infra, and corporate environments
Advocate for security standards with clarity and empathy.

We are looking for a talented Product Manager to join our DA Cloud team, who oversees protecting customers whose sensitive data is stored in the cloud (platforms like Salesforce, Box, Google Workspace, etc.).
Responsibilities:
Manage all lifecycle stages for an innovative SaaS B2B product
Serve as an in-house expert for our product and become the go-to person for all functional issues
Translate product strategy into detailed requirements
Work closely with the R&D teams
Set the balance between quality and time-to-market
Know your customer experience and needs to drive growth
Collect and analyze feedback from customers, support, and other stakeholders to shape requirements
Scope and prioritize activities based on business and customer impact
Drive product launches along with marketing, sales, and other product and project managers

We are seeking an experienced MDR Team Lead who will oversee a team of MDR Security Analysts.
This oversight includes training and developing the knowledge and skills needed to execute the MDR mission, ensuring adherence to all operating policies and procedures, ensuring the delivery of the MDR service within all SLAs, and serving as a point of technical and operational escalation for MDR analysts.
Data is the #1 target of attackers, and Varonis' Managed Data Detection and Response (MDDR) customers entrust our team with the security of their data. MDR Team Leads are the lynchpin of MDR operations, ensuring the team is working 24x7 to monitor, triage, investigate, and escalate incidents where data is at risk and to ensure we meet operational SLAs.

Responsibilities:
Technical and operational escalation point for investigations, incidents, and other elements of the MDR service.
Assist in the development, documentation, analysis, testing, and modification of Varonis threat detection systems, playbooks, runbooks, and MDR team operations.
Continuously train the team so they are equipped with the required skills and knowledge to effectively execute the MDR service.
Validate findings and coordinate investigative efforts with customers and internal teams.
Ensure all investigative findings are documented and communicated appropriately by the team, including tracking in CRM.
Maintain up-to-date knowledge of all aspects of Varonis MDR service.
Oversee and execute programs, projects, operational tasks, and responsibilities related to the MDR service.
Conduct regular performance reviews and quarterly SWOT analyses to drive team growth and development.

we are seeking to hire an Intelligence Infrastructure Expert for a full time position. The role includes creation, management, and integration of the companys unique infrastructure and tools across the different Web environments. The position includes infrastructure establishment and processes management alongside end to end delivery to the different teams within the organization. You will be responsible for the generation of insights, means, and methods provided from diverse intelligence streams enabling the organizations teams to make the internet a safer place. Responsibilities:
* Monitoring Web and Mobile environments - social media platforms, forums, blogs, mobile applications and darknet to uncover malicious activity.
* Identification, analysis and intelligence gathering on bad actors, sources and platforms, while identifying distribution methods.
* Provide insights on intricate means and methods being used by threat actors to abuse the tech worlds most popular platforms while putting users at risk.
* Identify and address opportunities alongside potential problems in operational processes.
* Research, development and strategizing of new operational methods and logics.

About us:
we are the leading provider of security and safety solutions for online experiences, safeguarding more than 3 billion users, top foundation models, and the worlds largest enterprises and tech platforms every day. As a trusted ally to major technology firms and Fortune 500 brands that build user-generated and GenAI products, our company empowers security, AI, and policy teams with low-latency Real-Time Guardrails and a continuous Red Teaming program that pressure-tests systems with adversarial prompts and emerging threat techniques. Powered by deep threat intelligence, unmatched harmful-content detection, and coverage of 117+ languages, our company enables organizations to deliver engaging and trustworthy experiences at global scale while operating safely and responsibly across all threat landscapes.
Hybrid:
Yes

What We Are Looking For As a PR GenAI Security Researcher, you will design novel attacks on GenAI applications and share your findings with the broader community. Your primary responsibility will be to ideate, prototype, and exploit GenAI applications, RAG pipelines, and multi-agent systems, turning your discoveries into talks, papers, and workshops. We are looking for an experienced security researcher with peer-reviewed publications, experience organizing cybersecurity workshops, a proven track record of jailbreaking commercial models, and a talent for creating engaging content. This role is ideal for someone who can not only uncover vulnerabilities but also educate, inspire, and lead the global security community.
Key Responsibilities
* Proactively discover and responsibly disclose novel vulnerabilities and attack vectors in commercial and open-source GenAI models.
* Create compelling and accessible content (e.g., blog posts, videos, tutorials) that translates complex research into insights for a wider audience.
* Author and publish peer-reviewed papers in top-tier cybersecurity conferences (e.g., Black Hat, DEF CON, RSA, CCC).
* Develop and lead public workshops and technical tutorials to share new security techniques and countermeasures with the community.

About ActiveFence:
ActiveFence is the leading provider of security and safety solutions for online experiences, safeguarding more than 3 billion users, top foundation models, and the world’s largest enterprises and tech platforms every day. As a trusted ally to major technology firms and Fortune 500 brands that build user-generated and GenAI products, ActiveFence empowers security, AI, and policy teams with low-latency Real-Time Guardrails and a continuous Red Teaming program that pressure-tests systems with adversarial prompts and emerging threat techniques. Powered by deep threat intelligence, unmatched harmful-content detection, and coverage of 117+ languages, ActiveFence enables organizations to deliver engaging and trustworthy experiences at global scale while operating safely and responsibly across all threat landscapes.

We are seeking an experienced Malware Research Director to build and manage multiple teams dedicated to malware research and review. This role presents an exciting opportunity to establish a new operation from the ground up, including recruiting top talent, creating processes, and setting up cross-team collaboration while serving as the primary client interface. The position is primarily leadership and client-facing, requiring exceptional team-building and operational setup skills. The ideal candidate demonstrates proven experience in building teams from scratch, establishing new operations, and strong client relationship management capabilities. Key Responsibilities:
* Build and recruit multiple teams of malware researchers from scratch
* Establish operational processes, workflows, and quality standards for the new teams
* Coordinate with other departments to integrate the new operation into the existing infrastructure
* Serve as primary client interface, managing relationships and ensuring client satisfaction
* Present research findings and malicious evidence to clients and stakeholders
* Create training programs and onboarding processes for new team members
* Develop performance metrics and evaluation frameworks for team effectiveness
* Lead client meetings, requirement discussions, and project planning sessions
* Collaborate with sales and business development teams on client engagements
About:
We are the leading provider of security and safety solutions for online experiences, safeguarding more than 3 billion users, top foundation models, and the worlds largest enterprises and tech platforms every day. As a trusted ally to major technology firms and Fortune 500 brands that build user-generated and GenAI products, we empower security, AI, and policy teams with low-latency Real-Time Guardrails and a continuous Red Teaming program that pressure-tests systems with adversarial prompts and emerging threat techniques. Powered by deep threat intelligence, unmatched harmful-content detection, and coverage of 117+ languages, we enable organizations to deliver engaging and trustworthy experiences at global scale while operating safely and responsibly across all threat landscapes.
Hybrid:
No

Our Security team is looking for a hands-on Cloud Security Specialist with a strong focus on Identity & Access Management (IAM) to help drive our security posture across cloud environments. In this role, youll be the go-to expert for IAM governance and cloud identity controls across AWS and GCP- enabling secure access at scale, while working closely with security, DevOps, and engineering teams to solve complex security problems.
The ideal candidate is highly motivated, demonstrates a can do' attitude and needs to have a combination of technical and communication skills, as well as the ability to handle a mix of multiple tasks including projects and technical work.
What you'll do:
Build and maintain secure role, permissions, and account structures aligned with least privilege and zero trust principles.
Manage and govern human and non-human (machine) access to sensitive SaaS applications (e.g., Okta, Git, etc.).
Monitor and improve cloud identity hygiene: users, roles, service accounts, federated access, and third-party integrations.
Automate detection and remediation of IAM misconfigurations and over-privileged identities.
Collaborate with DevOps and engineering to embed IAM best practices into infrastructure pipelines and app deployments.
Support incident response and investigations related to IAM abuse, access misuse, or privilege escalations.
Contribute to detection rules, playbooks, and cloud-specific DFIR processes.
Provide guidance during access reviews, role audits, and trust relationship validation.
Lead the design and enforcement of IAM controls across AWS and GCP.