לוח משרות דרושים מהנדס סייבר משרה מלאה

We're looking for a Security Engineer - our company Product to spread the power of our company. The ideal candidate will have experience performing security reviews, vulnerability management, and detection and response operations in cloud-native environments. Youll get to collaborate with our software development and DevOps teams to secure our companys products, CI/CD infrastructure, and production infrastructure. Youll also have the opportunity to influence our product roadmap by utilizing our company -for-our company to assess, monitor, and harden our environments.
WHAT YOULL DO
Lead threat modeling and security review exercises across our companys production and CI/CD environments identifying and mitigating risks in our products and the cloud services that support them
Drive vulnerability management and remediation efforts prioritizing issues, implementing mitigations, and designing strategic preventative controls
Extend our detection and response capabilities building scalable solutions to identify malicious activity, triage alerts, and investigate and remediate incidents
Collaborate with our company Federal team extending our DevSecOps and Product Security practices to our companys FedRAMP environment and ensure it meets key security requirements
Build deep functional partnerships with our companys engineering and operations teams helping them deliver secure-by-design solutions .

We are seeking a highly skilled and experienced Cloud Security Engineer to join Autofleets security team, supporting the global Element Fleet Management cloud infrastructure across North America, Europe, Latin America and Australia.



This role is critical in ensuring the security and integrity of Element Fleet multi-cloud infrastructure and services. The ideal candidate will have a deep understanding of cloud security principles, architecture, and technologies, CSPM and Secrets Management.

As the Cloud Security Engineer, you will be responsible for designing, implementing, and maintaining robust security measures to protect our assets and data in various cloud environments. Working closely with various international stakeholders to integrate security best practices in all stages of the cloud lifecycle, from design and deployment to monitoring and incident response.

Key Responsibilities:
Design and maintain secure cloud architectures on GCP, AWS and Azure ensuring alignment with best practices and regulatory requirements.
Manage and maintain Elements cloud security posture and secrets management.
Deploy and manage cloud security tools such as Wiz, GCP Security, and other hyperscale security platforms to protect infrastructure, data, and applications.
Continuously monitor cloud environments, detect threats, and lead effective incident response and remediation efforts.
Ensure compliance with global standards (e.g., GDPR, ISO 27001, NIST) by driving audits, risk assessments, and security governance processes.
Drive continuous improvement of cloud security, championing automation, zero-trust architecture, and emerging security capabilities.
Collaborate with DevOps, IT, and engineering teams to embed security into development and deployment lifecycles from day one.
Communicate risks and strategies clearly to both technical and non-technical audiences, and promote security awareness across the organization.

we are seeking a highly experienced Senior Application Security Engineer to join our Information Security team.
In this pivotal role, you'll be instrumental in integrating security best practices throughout our entire Software Development Life Cycle (SDLC), collaborating closely with R&D, DevOps, and Product teams.
In addition, you will connect security with development, guiding engineering teams to create secure applications by integrating security best practices into our Software Development Life Cycle (SDLC).
Responsibilities
Drive the integration of security controls and best practices in the software development lifecycle.
Lead secure product design, embedding security principles from the beginning stages.
Conduct security code reviews and reduce vulnerabilities alongside R&D teams.
Manage and optimize the Web Application Firewall (WAF) for threat protection.
Collaborate on penetration test remediation, ensuring effective resolutions.
Implement and enforce API security standards.
Establish and maintain development guidelines for secure practices.
Support and enhance the bug bounty program.
Provide guidance and mentorship on secure coding and application security.

We are looking for a Senior Security Engineer to help ensure that our hardware platforms, software deliverables, and devices are secured against the latest threats.
You will be responsible for the security assurance of our products. Influencing and scrutinizing design and implementation. Develop elaborate threat models, suggest and review solutions and mitigations. You will lead vulnerability research, penetration testing, automated penetration testing solutions and methodologies such as fuzzing, static analysis and other security checkers. You will mentor service teams in adding security testing tools and practices to their development processes.

Key job responsibilities:
A Security Engineer is expected to be proficient in multiple domains. This is a leadership role within the Annapurna security team and you will be sought out for advice on technical and business issues. Efficient time management skills are required along with the ability to deliver results in the face of uncertainty. A Senior Security Engineer will proactively share knowledge across the Amazon community and will be a key company resource in one or more of the core areas of security. He will lead security reviews of large Amazon projects while setting standards and defining best practices for our Security teams.

Engineers in this role must show exemplary judgment in making technical trade-offs between short versus long term security and business goals. They must also demonstrate resilience and navigate difficult situations with composure and tact. A broad understanding of the business and its interconnections is required. This position will also provide training, advice, and mentorship to other engineers throughout us.

We are looking for an Information Security Engineer to join the Cyber Security team and to be responsible for designing, implementing, analyzing, and maintaining an on-prem/cloud-based security controls in particular IT security.

What you will be doing:
Manage the day-to-day operations of the companys security infrastructure systems.
Provide security guidelines to various projects and systems.
Research new innovative technologies to mitigate security gaps and work to implement in the production.
Collaborate with IT, DevOps, and software engineering teams to embed security into infrastructure, applications, and CI/CD pipelines.
Monitor and analyze security events, anomalies, and emerging threats, providing actionable insights to leadership.
Lead incident response efforts, including investigation, containment, eradication, and reporting.

Our Autonomous Driving Software Group in looking for an experienced Linux Kernel & Security Developer to design and implement secure embedded software solutions.
This is an exciting opportunity to work with highly talented engineers and contribute to cutting-edge security innovations in automotive technologies
What will your job look like?
You will research, design, and implement Linux kernel drivers and OS features, ensuring compliance with security best practices.
Maintain and enhance existing kernel components while mitigating potential vulnerabilities.
Integrate embedded software solutions in our automotive platforms, including HW bring-up, debugging, and unit testing.
Conduct threat modeling, penetration testing, and vulnerability assessments for Linux-based embedded systems.
Optimize memory management, I/O, networking, and storage security within the Linux kernel.

As a Cyber Security Engineer, youll play a key role in protecting our global platform and ensuring the resilience of our systems against emerging threats. Youll be responsible for investigating and responding to security incidents, analyzing malware, and conducting threat hunting activities across cloud environments.

Youll collaborate closely with the Infosec team, engineers, and cross-functional stakeholders to detect, contain, and mitigate threats, while continuously improving our security posture.

As part of a strong, experienced team, youll contribute to design, shape and implement information security solutions, mentor others in best practices, and drive automation initiatives to streamline detection and response.

Responsibilities:
Develop and maintain automation scripts in Python to enhance SOC efficiency and incident response workflows.
Perform initial triage and assessment of security incidents, identifying threats and recommending mitigation strategies.
Conduct static and dynamic analysis to uncover malicious behaviours, code, and techniques.
Apply forensic methodologies to extract, analyze, and interpret digital evidence to support investigations and attribution.
Investigate and mitigate cloud-based threats, with a focus on AWS environments.
Collaborate with cross-functional teams to strengthen overall organizational security and ensure best practices.

We are looking for an embedded security researcher to join us in researching and developing cutting-edge cyber security projects.
Responsibilities
As an Embedded security researcher, you will be dealing with:
Embedded systems Reverse engineering.
Real-time Embedded End-to-End Low Level software developments on various unique embedded platforms and environments.

We are seeking a talented, tech savvy Detection Engineer to join our Cyber Security team and elevate detection and response capabilities across cutting-edge systems.

Responsibilities

Lead initiatives to enhance our capabilities for effectively detecting and responding to security incidents.
Design, develop, refine detection rules, alerts, and dashboards across security platforms to identify malicious or suspicious behavior.
Deploy, manage, and maintain the infrastructure components of various detection platformsincluding indexers, search heads, forwarders, and clustersto ensure high availability, optimal performance, and scalability
Parse and analyze logs from endpoints, servers, network devices, cloud services, EDR/XDR, and more.
Automate detection pipelines and content deployment using Detection-as-Code methodologies and CI/CD frameworks.
Tune and optimize detection logic to minimize false positives and enhance alert fidelity.
Collaborate with different teams to continuously improve detection coverage.
Integrate with SOAR tools and workflows, developing playbooks that enhance speed and consistency of incident response.
Perform proactive threat hunting, alert triage, and incident investigations, leveraging threat intelligence and different cybersecurity frameworks.

We are looking for a talented, tech-savvy individual to join our Cyber Security team and help us tackle the toughest security challenges in cutting-edge ecosystem.

In this role, you will be a subject matter expert and play a major part in our efforts to build and maintain security infrastructure, design secure architectures, enforce security best practices, and automate security processes.

The Cyber Security team is composed of strong and experienced security engineers, responsible for defining the security strategy and managing all of infrastructure.

Responsibilities:

Define, implement, and maintain security policies, standards, and methodologies; ensure they evolve with new threats and technologies.
Design, deploy, and operate detection, prevention, and response technologies across a scaled, diverse, and complex environment (hybrid infrastructure: public cloud + on-premises).
Build and operate secure infrastructure: hands-on ownership of security configurations and system hardening.
Conduct security assessments, secure-design reviews and architecture assurance reviews to identify and mitigate possible security risks.
Automate security processes: configuration deployments, infrastructure management, detection, response, compliance checks, patching, configuration drift, etc.
Design, develop, and implement secure software development and deployment pipelines, incorporating best practices, automation, and CI/CD methodologies.
Stay ahead of emerging cyber threats and technologies: research, evaluate, pilot, and integrate where relevant.
Participate in creating incident response playbooks, coordinate incidents investigations, root cause analysis, and lessons learned.

Required Application Security Engineer
The Role:
The ideal candidate will have a strong background in application security, coupled with expertise in product security, infrastructure management, and DevOps practices.
You should be comfortable wearing multiple hats and thrive in a fast-paced, collaborative environment.
Pioneer new approaches to application security, including leveraging AI for advanced automations and process optimizations.
If you're ready to push the boundaries of application security and contribute to a culture of uncompromising quality, we want you on our team.
Join us in our relentless pursuit of robust security and a continuously hardening application landscape.
What you will do:
Conduct internal penetration testing against our applications and APIs.
Design, build, and implement the Secure SDLC process, integrating security into all stages of the software development lifecycle.
Evaluate product design and architecture against security best practices, offering guidance on prioritization and remediation.
Build and automate security testing as part of our CICD pipeline and cloud environments based on automation workflows leveraging AI.
Develop and lead projects, implementing various security tools and technologies, such as: AI agents context-aware, SAST, SCA, vulnerability scanners, and Kubernetes (K8s) security tooling.
Mentor development teams through training and hackathons.
Support security incident response in a cross-functional environment.

We are looking for a highly motivated Security Operations (SecOps) Engineer to join our growing security team. The ideal candidate will bring 34 years of hands-on experience in cybersecurity operations and incident response, with strong expertise in cloud environments. You will play a key role in designing, implementing, and managing security monitoring, detection, and response capabilities that safeguard our organizations assets, data, and customers.


Key Responsibilities
Design and maintain monitoring flows and detection use-cases across SIEM and related systems.
Develop, optimize, and tune security rules, alerts, and dashboards.
Integrate threat intelligence feeds into monitoring tools.
Lead and support security investigations, from triage to remediation.
Coordinate with internal teams and external partners to contain and resolve incidents.
Create and maintain playbooks, runbooks, and IR documentation.
Build and maintain security automation and orchestration workflows to accelerate response.
Ensure compliance with security policies, frameworks, and regulatory requirements (SOC 2, ISO 27001, GDPR, etc.).
Maintain clear documentation of procedures, incidents, and improvements.

What youll do: Step into the world of cyber adversaries and become secret agent against malware. Youll investigate real attack techniques, analyze malicious behavior, and transform that knowledge into powerful detection methods that protect thousands of organizations worldwide. How youll make an impact: Your research will sit at the heart of Autonomous Breach Protection Platform. By uncovering attacker tactics, building innovative detection mechanisms, and sharing your insights, youll directly shape our products ability to stay one step ahead of evolving threats - and keep our customers safe.