לוח משרות דרושים מהנדס סייבר עבודה היברידית

Were seeking a Senior Application Security Engineer who is first and foremost a teacher, advisor, and enabler for our development teams.
Rather than owning security alone, youll embed secure-by-design thinking across engineering by mentoring developers, guiding architecture decisions, and making secure development intuitive and frictionless.
Youll serve as the go-to partner for developers and engineering leaders, offering clear direction, practical solutions, and hands-on mentorship that strengthens our secure SDLC.
What Youll Actually Be Doing:
Mentor, coach, and educate developers on secure coding through workshops, training sessions, pair reviews, and ongoing guidance
Lead and scale a Security Champions program embedded within engineering teams
Facilitate threat modeling sessions and design reviews, partnering with teams early in the process to improve security outcomes
Collaborate with engineering leadership to ensure secure architecture patterns, API security practices, and design principles are built in from day one
Integrate and tune developer-friendly AppSec guardrails into CI/CD pipelines (SAST, SCA, IaC, secret scanning) while minimizing noise for developers
Translate vulnerabilities into clear, actionable remediation guidance that developers can easily implement
Support security awareness across engineering by building engaging internal content, best-practice playbooks, and reusable patterns
Partner with compliance teams to produce documentation and SDLC evidence supporting FFIEC, PCI DSS, and SOC 2 requirements
Stay current on emerging threats, developer tooling, and secure engineering patterns - sharing insights regularly with the team.

We are seeking a highly motivated and skilled Cloud Security Engineer to join our growing team. In this critical role, you will be responsible, among other things, for ensuring the security of our cloud environments and applications throughout their entire lifecycle. You will work closely with R&D, DevOps, and other teams to embed security into every stage of the development process, from design and development to deployment and operations. Responsibilities
* Design & implement secure cloud architectures, configurations across AWS
* Ensure compliance with relevant security standards (e.g. ISO 27001, SOC 2, GDPR).
* Participate in design & implementation of security technical controls for cloud-native services
* Work closely with R&D, DevOps to integrate security into the software development lifecycle.
* Participate in security reviews of code, infrastructure, and designs. Advocate for and implement security best practices throughout the development process.
* Monitor cloud environments for security threats, including malware, vulnerabilities, and suspicious activity. Investigate and respond to security incidents within cloud environments.
* Implement and maintain security information and event management ( SIEM ) integration for cloud environments in cooperation with SecOps & InfoSec.
* Conduct regular security assessments and ownership on the penetration testing of cloud environments, applications, Infrastructure-as-Code. Implement and maintain vulnerability scanning and remediation processes.
* Experience implementing and managing CSPM and CNAPP RunTime tools to continuously monitor and assess the security posture of cloud environments.
* Open Source Security - Understand and address security risks associated with the use of open-source software. Stay informed about and mitigate vulnerabilities in open-source components.
* Work closely with R&D, DevOps, other stakeholders to ensure security is integrated into all phases of the software development lifecycle. Communicate security risks and recommendations effectively to both technical and non-technical audiences.
Hybrid:
Yes.