לוח משרות דרושים SOC/SIEM משרה מלאה

we are looking for a Cyber Security Engineer with a solid technical background in cyber security to lead the implementation of Velocity XDR product and ensure that meet its clients cyber security needs.
As a Cyber Security Engineer in a fast-expanding operation team, you will be responsible for onboarding new global clients to the MXDR services, developing and maintaining detection scenarios and alerts, analysing the client's environment, and providing technical support and guidance to clients. To excel in this role, you will demonstrate strong technical aptitude, dedication to delivering high-quality work, and a cooperative approach to teamwork.
Main Responsibilities:
Lead the onboarding process for all new clients joining the MXDR services, working closely with the clients IT and security teams to ensure smooth implementations.
Develop detection scenarios and alerts for XDR solution (Velocity) to ensure effective threat detection and response.
Oversee Velocity KPIs and measurements set by the client, adjusting, analyzing and maintaining them according to their needs and tracking the impact of the platform on the client's networks, endpoints, applications, and cloud environments.
Continuously improve Velocity monitoring capabilities and keep up-to-date with the latest developments in the cyber threat landscape.
Provide technical support and guidance to clients on Velocity security-related issues, including implementing security best practices and ensuring compliance with industry standards.

we are looking for a MXDR Analyst to join the team of cybersecurity analysts monitoring services 24/7, tiers 1-2. The role includes development of detection analyses, triage of alerts, investigation of security incidents, proactive threat hunting and enhancement of sensors and overall visibility status. The suitable candidate should be a team player with previous experience in SOC, SecOps or security monitoring, independent, and with a can-do attitude.
Responsibilities:
Working across all areas of SOC, including continuous monitoring and analysis, threat hunting, security compliance, security event auditing and analysis, rule development and tuning, and forensics.
Solving security incidents in accordance with defined service level agreements and objectives.
Prioritizing and differentiating between potential incidents and false alarms.
Addressing clients enquiries via phone, email, and live chat.
Working side-by-side with customers, providing insightful incident reports.
Working closely with peers and higher-tier analysts to ensure that your analysis work meets quality standards.
Identifying opportunities for improvement and automation within the MXDR Operation Lead, and leading efforts to operationalize ideas.
Identifying and offering solutions to gaps in current capabilities, visibility, and security posture.
Correlating information from disparate sources to develop novel detection methods.

Today, were tapping into the unlimited potential of AI to define the next era of computing. An era in which our GPU acts as the brains of computers, robots, and self-driving cars that can understand the world. Doing whats never been done before takes vision, innovation, and the worlds best talent. As a worker, youll be immersed in a diverse, supportive environment where everyone is inspired to do their best work. Come join the team and see how you can make a lasting impact on the world.
The complexity of the chip has greatly increased over the years. We are now packing tens of billions of transistors in a chip to meet the growing computing demand in a footprint that is responsible to our environment. The our company's System-On-Chip (SOC) group is looking for a top physical design engineer with a curiosity about SOC design optimization, physical integration, chip build and assembly and verification. You should have real passion for methodologies and clock distribution solutions that enable SOC creation in the most optimized way. In this position, you will get the opportunity to build complex networking chips and directly contact unit-level owners, Physical Design, CAD, Package Design, Software, DFT and other teams.
What you'll be doing:
Designing and implementing SOC level clock requirements
Daily work involves aspects of chip level design, including partitioning, CDC, trial synthesis, design quality checks
Be exposed and work on a variety of functional and structural challenges. Including functional debug, physical design readiness, resolve design quality issues.

our company's Automated Driving group in Haifa is looking for an experienced SoC Design Engineer for DFT team. This is an exciting opportunity to join a team of highly talented engineers, working on one of the most cutting edge technologies - Autonomous Vehicle (AV) SoC. At our company's Automated Driving group, we know that the idea of a fully autonomous car is no longer science fiction, but a reality that we are creating! We have spent more than 15 years developing the world's most Advanced Driver Assistance Systems (ADAS) and we are now leading the computer vision and machine learning domain, reaching fully automated driving experience (AV).
What will your job look like:
You'll be responsible of architecture of the DFT solutions across the SOC (MBIST, SCAN, ATPG, LBIST and more)
Develop all the necessary HW / FW / SW for the different modules
Verify and Validate our design
Debug and analyze coverage and yield loss
As a cutting edge technology company, we are working only with the very advanced DFT tools and features, while developing our own methods and DFT concepts as it required by the Automotive and Safety related products market (ISO26262).

Which team will you join? our company EyeC VLSI team - a group designing the chips for Radar systems for ADAS and autonomous cars. The group is responsible for all disciplines of VLSI development, including but not limited to Logic Design, Design Verification, Microarchitecture, Analog and circuit design and layout, Physical and structural design (backend), Product and test engineering.
What will your job look like:
You will take a central hands-on role in Design Verification.
Define Environment micro-Architect, Implement complex UVM environment, Build vPlan .
Execute coverage implementation.
Be part of external IP verification and Internal custom IP.
Be part of System definition and top-level activity.
Take part in Silicon bring-up.

We are looking for a IT Risk Management and SOC2 Manager.
The IT risk management team specializes in identifying and mitigating technological risks, developing solutions, and enhancing organizational systems and processes to prevent potential business impact. Leveraging local experts with global experience in complex projects, unique methodologies, and advanced technological tools, the team partners with leading companies across technology, industry, and finance. Our projects span collaborations with US and the largest organizations in Israel, including major banks and top technology companies traded in the US.
Role Overview:
As a Manager in the TPA practice, you will lead and oversee multiple client engagements from initiation through to the reports. You will be responsible for managing project timelines, budgets, and team members, ensuring high-quality deliverables and client satisfaction.
Your role will include:
Managing end-to-end IT risk management and assurance engagements, including planning, execution, and reporting.
Overseeing the delivery of Information Security and IT Governance Risk and Compliance (GRC) services.
Leading SOC2 and SOC1 audits, information systems risk assessments, cyber risk surveys, and both external and internal IT audits.
Consulting on and testing automated controls within business processes and organizational systems, and establishing methodologies for IT risk management in cloud and digital environments.
Advising clients on authorization processes and segregation of duties (SoD) in information systems and business operations.
Managing and mentoring team members, allocating resources, and monitoring engagement hours to ensure projects are delivered on time and within budget.
Serving as the primary point of contact for clients, maintaining strong relationships and ensuring their needs are met throughout the engagement lifecycle.

As a SIEM Developer at our company, you will create SIEM content to be delivered to our customers via the XSIAM marketplace.
XSIAM is an innovative new product we launched in March 2022 with a vision to create the autonomous security platform of the future, driving dramatically better security with near real-time detection and response.
More information about XSIAM can be found here.
Your Impact
Develop SIEM content - parsers, data model mapping, correlation rules, and dashboards for leading information security and IT tools
Collaborate with Security Architects, Software Developers, PMs, and Technical Marketing Engineers to create the best out-of-the-box content for our customers
Drive a vital piece of a new product!

We are seeking a driven problem solver to join our Unit 42 MDR team. Our team is responsible for customers internal security monitoring, threat hunting and incident response. As a MDR Analyst, we will rely on you to detect and respond to cyber incidents facing customers internal business.
The ideal candidate is a quick learner and good communicator who will be able to follow established processes for analyzing threat alerts that fire from our Cortex XDR. The candidate should be a creative thinker who takes pride in solving tough problems.
Your Impact
Join a new emerging team who is going to be part of our companys Unit 42, Working closely with global customers providing the best security in the market
Own an incident lifecycle from outbreak to full remediation
Provide critical feedback to the different product, research and engineering and threat hunting teams to help improve the products for the entire companys customer base
Work closely with Security Research, Threat Intelligence and Threat Hunting teams to remediate and detect new emerging threats
This position is a Shift Position (Sunday - Friday Evening & Saturday Evening).

Become a pivotal part of our security team as a Senior SIEM, Incident Response, and SecOps Engineer. This role positions you at the heart of our innovation group, driving initiatives around SIEM technology (specifically Splunk), SOAR (Security Orchestration, Automation, and Response), and operational security excellence.
The ideal candidate will have deep technical knowledge across various cybersecurity tools and technologies, solid understanding of information security and networking principles, and extensive experience collaborating with diverse stakeholders. You will act as a Subject Matter Expert (SME) for Splunk Enterprise, helping achieve robust security monitoring and incident response capabilities while improving operational efficiency.

We are looking for a SOC Senior Engineer.
We are seeking a seasoned engineer to work directly with customers, helping them develop solutions for their ASIC/SoC designs using the IP portfolio. This position is ideal for someone with a strong background in ASIC/SoC design, excellent interpersonal skills, and a commitment to customer success. You will work across various market segments, foundries (TSMC, Samsung, GlobalFoundries, etc.), and process technologies ranging from 2nm to 40nm.
What you will do:
- Collaborate with the sales and marketing teams to identify and understand customers technical and business challenges.
- Develop tailored strategies and solutions for customers by leveraging the broad portflio.
- Work directly with customers to ensure products meet their requirements, and assist them in evaluating IP options.
- Influence product development roadmap by communicating customer needs to product R&D teams.
- Support customer engagements through on-site or remote technical interactions, including providing demos, supporting evaluations, resolving technical problems, addressing competitive challenges, and maintaining regular status updates.

We are hiring for a global company, a SOC Instructor to join our team. This role involves training and mentoring individuals in Security Operations Center ( SOC ) methodologies and best practices.
The ideal candidate will have a strong background in cybersecurity and experience in teaching or training environments.
The position requires relocation to our customer site, where you will play a crucial role in developing the next generation of cybersecurity professionals.
Responsibilities:
* Develop and deliver training programs focused on SOC operations, incident response, and threat detection.
* Create and update training materials to ensure they align with the latest industry trends and technologies.
* Conduct hands-on labs and simulations to enhance practical learning experiences for students.
* Assess student performance and provide constructive feedback to ensure their understanding and competency.
* Collaborate with the cybersecurity team to continuously improve curriculum content and instructional methods.
* Stay current with cybersecurity threats, tools, and technologies to provide relevant training.
* Participate in recruitment and onboarding of new instructors as needed.

We are looking for a Security Operations & Incident Response Engineer to join our fast-growing company at a breakthrough stage, where we are building our dream team with the most passionate and professional people in the industry.
Our security team blends cyber expertise with cutting-edge automation and AI. Were looking for someone who thrives in a fast-paced SaaS environment and is eager to make an impact.
Key Responsibilities
Security Engineering & Incident Response
Collaborate with the CISO and peers to shape and execute the companys security strategy.
Develop, maintain, and continuously improve security playbooks, processes, and response frameworks.
Manage the full lifecycle of security alerts from triage and investigation to response and escalation using our companys Case Management platform.
Perform access and configuration reviews across cloud, SaaS, and endpoint environments, and lead remediation efforts where needed.
SIEM & Automation Expertise
Develop and fine-tune detection rules in Splunk (or similar SIEM platforms) to increase detection quality and reduce false positives.
Utilizing our company to build and manage automated workflows to accelerate incident response and reduce MTTR.
Evaluate new security technologies and lead proof-of-concepts to improve existing controls.
Collaboration & Enablement
Partner with IT and Engineering to strengthen SaaS security practices.
Act as a trusted advisor across teams, promoting security awareness and best practices.
Communicate clearly in both Hebrew and English, providing documentation and updates to relevant stakeholders.

We are looking for an experienced SOC Manager, for a leading Cyber security company. To lead the Security Operations Center ( SOC ) and drive the organization's cybersecurity strategy. The ideal candidate will have a deep understanding of SIEM platforms, threat detection, and incident response, with a proven track record in managing SOC teams and enhancing information security processes.
Key Responsibilities SOC Leadership & Operations
* Oversee daily SOC operations, ensuring efficient and timely threat detection, incident response, and threat mitigation.
* Develop and implement SOC policies, workflows, and playbooks to optimize security effectiveness.
* Lead proactive threat hunting and forensic analysis initiatives to strengthen organizational cyber resilience.
* Continuously assess and improve SIEM configurations, alert mechanisms, and automation capabilities. Team Management & Development
* Recruit, mentor, and manage SOC Analysts and Incident Responders, ensuring high levels of professional and operational performance.
* Provide ongoing technical guidance and professional development, fostering a culture of knowledge sharing and continuous learning.
* Build and maintain a dedicated SOC training framework, including regular updates on emerging threats, tools, and industry best practices. Incident Response & Threat Intelligence
* Lead cyber incident investigations, containment, and remediation efforts, coordinating with internal teams and external partners.
* Oversee the collection and integration of threat intelligence into SOC operations.
* Align SOC activities with leading cybersecurity frameworks such as MITRE ATT&CK, NIST, and other industry standards. Technology & Innovation
* Optimize SIEM, EDR, IDS/IPS, firewalls, and other security tools to enhance threat detection and response capabilities.
* Identify and implement automation and orchestration solutions to improve SOC operational efficiency.
* Stay up to date with evolving threats, new attack techniques, and emerging security technologies to continuously improve defense strategies.