לוח משרות דרושים הייטק אבטחת מידע / סייבר עבודה היברידית

Were looking for an Application Security Engineer with a passion for AppSec to join our growing team.
Responsibilities:
‍‍Build and maintain an advanced security research lab to test, evaluate, and supercharge detection tools.
Analyze tools across multiple domains: SAST, SCA, DAST, Secret Detection, IaC Scanning, Container Scanning, CSPM, and more.
Identify detection gaps and develop techniques and rules to close them.
Leverage Python and AI practices to automate research and drive smarter detection strategies.
Monitor emerging threats, CVEs, and high-profile incidents - and develop relevant detection content and platform enhancements.
Collaborate closely with engineering, product, and marketing

The Cloud Research team is an integral part of the Falcon Cloud Security product, tasked with the critical mission of safeguarding cloud environments through innovative detection and response capabilities. This team is works in unison to ensure our customers cloud environments are secure against the ever-changing threats in the security landscape.

As a senior researcher on the team, you will play a pivotal role in conducting security research, and translating it directly into security value for our customers.

This role provides a unique opportunity to join a team with strategic importance for protecting our customers from emerging threats and novel attack methodologies in cloud environments.

You will also get to work with vast datasets, have a direct impact on the efficacy and evolution of our detections, and play a decisive role in the strategic direction of our product development. Your contributions will enable continuous improvement of our cloud detection capabilities ensuring our customers are secured with the most advanced security measures.

What You'll Do:

Initiate and conduct Cloud Research Initiatives: follow the threat landscape to identify trends in the realm of cloud infrastructure security, threat actors, novel attack approaches, and vulnerabilities in cloud-based and/or cloud-native environments and workloads.

Research threats and vulnerabilities in cloud provider infrastructure and containerized applications and workloads.

Develop advanced cloud security models: Create sophisticated models and frameworks for identifying and mitigating new types of cloud threats, focusing on predictive analytics and proactive threat hunting methodologies.

Collaborate with cross-functional teams: Work closely with various teams, including engineering, product management, detection engineering, and threat intelligence to drive cloud detections in the Falcon platform.

Provide cloud security thought leadership: Share insights and best practices with the broader security community through publications, conference presentations, and technical blogs.

Were looking for a hands-on Security Architect / Cyber Security Expert to help shape and strengthen our security posture across cloud infrastructure, SaaS applications, and the software development lifecycle. This is a senior, full-time role with broad ownership and real impact, reporting directly to our CIO.

What Youll Do
Own and improve our cloud security posture, including CSPM, IAM, and infrastructure hardening.
Lead SaaS posture management, monitoring, and SaaS application onboarding reviews.
Drive AppSec programs, including ASPM, CI/CD security gating, and security code & design reviews.
Plan and manage penetration testing and DAST, and drive remediation across teams.
Own our SIEM, including integrations, tuning, detection engineering, and investigations.
Manage email security controls (DMARC / DKIM / SPF), Email DLP policies, and endpoint security (EDR).
Partner with IT and Engineering on identity security initiatives and access governance.
Support and evolve security practices for AI-related systems, workflows, and data.

This is a full-time, hybrid role based in Tel Aviv: 3 days per week in the office and 2 days remote.

You will join our Cyber Security Operations team and play a key role in protecting our cloud-native and enterprise environments. In this hands-on role, youll design, implement, and operate security controls across AWS, Kubernetes, CI/CD pipelines, and identity systems.
Youll lead incident response efforts, build security automation, and drive continuous improvement of our detection and prevention capabilities in a fast-paced, highly technical environment.
The day-to-day:
Own and enhance security for large-scale AWS environments (IAM, VPC, CloudTrail, GuardDuty, EKS, S3).
Build and operate threat detection, incident response, and DFIR processes across cloud, Kubernetes, identity, and SaaS platforms.
Design and implement security automation for access control, cloud hygiene, incident response, and SIEM workflows.
Drive DevSecOps initiatives, securing CI/CD pipelines and enabling shift-left security.
Develop and tune SIEM detections, threat hunting queries, and automated remediation pipelines.
Manage identity, access, and Zero Trust / ZTNA architectures using IdP, SSO, RBAC, and federation.
Simulate real-world attacks and perform vulnerability discovery to validate security controls.

We are looking for a Junior Cyber Security Specialist with a deep interest and basic knowledge of both information security and computer science. We are a cybersecurity firm specializing in advanced adversary simulation and offensive security testing. We deliver Red Team assessments for Fortune 500 companies, simulating sophisticated, real-world attacks across external, internal, cloud and Active Directory environments. Our services span both stealth-based Red Team operations and risk-focused assessments, covering a wide range of attack surfaces including on-premise and cloud environments.

Responsibilities:
Participate in Red Team and Risk assessments under the guidance of senior team members.
Assist in documenting findings, writing technical reports, and contributing to final deliverables for clients.
Learn and simulate attacker tactics, techniques, and procedures (TTPs).
Support Risk Assessments, where the objective is to identify vulnerabilities, especially in Active Directory, without the requirement for stealth. These engagements provide deep insight into systemic weaknesses and offer high exposure to internal infrastructure.
Contribute to external assessments, such as, perimeter testing, and reconnaissance.
Participate in our internal, hands-on training program, which covers red team TTPs, tool usage, internal methodologies, and real-world scenarios.

we are a leading hybrid cloud security company revolutionizing the way organizations manage cyber risk. We provide cutting-edge exposure management solutions by simulating real-world attack paths across cloud and on-prem environments. Our technology identifies misconfigurations, vulnerabilities, and identity exposures, allowing organizations to remediate risks with minimal effort. We are looking for a talented and motivated Software Developer Intern to join our development team in a part-time capacity. This is an exciting opportunity to gain hands-on experience working with modern cybersecurity technologies. Responsibilities:
* Develop and enhance server-side attack simulation logic using Node.js, MongoDB, and TypeScript/ JavaScript.
* Work with JAVA, Node.js, or Python to develop innovative security solutions.
* Explore and implement modern attack techniques in cloud environments (AWS, Azure, GCP) and enterprise networks.
* Collaborate with the development team to maintain and improve existing infrastructure.

We are seeking a highly disciplined, technically elite Digital Assets Custody Operator to serve as the guardian of multi-asset portfolio.
This is not a typical operations role. You will operate at the very heart of our security architecture, blending precise technical execution with a high-level security mindset. You will be responsible for executing complex cryptographic procedures in secure environments while simultaneously designing the future of our security architecture.
If you are passionate about the deepest intricacies of institutional custody, comfortable with Linux command lines and AI, and ready to proactively defend against emerging threats, we want you.

We are looking for an Intel Desk team leader to manage a team of super-talented intel analysts. Our teams help top-level companies improve their guardrails using our insights on the latest trends in T&S, exploration of various abuse areas, and new techniques adopted by threat actors.
What will you do?
* Lead a team of talented intel analysts (some are remote), providing support in terms of resources, guidance, and professional growth
* Leading the team with creativity and critical thinking, addressing challenges as they arise
* Monitoring the teams KPIs, workload, and manpower
* Ensuring a constantly updated and organized intelligence infrastructure, including the teams internal knowledge
* Organize and lead projects in terms of methodology, resources, manpower, R&Rs, and deadlines.
About us:
We are a trust, safety, and security company built for the AI era. We safeguard the communicative technologies people use to create, collaborate, and interact-whether with each other or with machines. In a world where AI has fundamentally changed the nature of risk, we provide end-to-end coverage across the entire AI lifecycle. We support frontier model labs, enterprises, and UGC platforms with a comprehensive suite of solutions: from model hardening evaluations and pre-deployment red-teaming to runtime guardrails and ongoing drift detection.
Hybrid:
Yes

Were looking for a Senior Web Security Researcher to be part of a team of highly skilled professionals that include security researchers, data researchers, data scientists and software engineers who continuously hunt for threats, evaluate and develop new detection techniques, and share intel and attribution for cybercrime activity with the goal of protecting our customers while keeping the internet human.
What you'll do:
Play a lot with the web-browsers, trying to find differences in behavior between them.
Research and develop signal collection on both mobile and desktop, which enables detection and improve our protection
Find ways to detect automation, for example, tools like Selenium, Playwright or Puppeteer.
Understand customer specific requirements, deliver with impact and exceed customer expectations.
Discover adversary tactics, techniques, and procedures leveraged by bots.
Create and validate data insights to enhance detection excellence.
Share security research topics through blogs, research talks, knowledge base and external engagements including conference presentations, detailing your discoveries for internal and external sharing.
Find bad stuff on the internet, see if you can figure out how it is done, document it.
Red team, experiment, and develop new tactics for various kinds of fraud and to bypass our detection, no need to wait for an attack to be discovered and used by adversaries first.
Stay abreast of cyber security trends and events related to our mission.
Contribute high impact work that substantially benefits team level metrics and OKRs.
Develop techniques, tools and scripts to simplify yours and others work.

Required Vulnerability Researcher
Want to make an instant impact?
Be a part of the top cyber research teams in the industry and make the world a better place!
As a Vulnerability Researcher, you will be:
Work with top-notch researchers using the latest technologies
Research low-level mechanisms, finding vulnerabilities and circumventing modern mitigation techniques
Our perks:
A competitive compensation package
Hybrid and flexible
Multiple career advancement opportunities
Incredible benefits.

We are seeking a highly skilled and experienced Attack Team Leader to lead a specialized attack team focused on developing offensive, production-ready attack capabilities. This is a research and development (R&D) role at the core of our offensive security efforts. You will be responsible for architecting and delivering advanced low-level attack components used in evasion techniques, red team tooling, and adversary simulations.
You will be hands-on in both leadership and development, guiding technical direction, mentoring engineers, and contributing code to offensive attack components.
The Impact You Will Have
Lead the design, development, and deployment of production-grade offensive capabilities targeting application and OS CVEs exploits
Develop attack components for Windows/Linux including OS-level evasion mechanisms
Implement Python bindings to connect native low-level components with Python-based research tools and automation
Research and develop bypass techniques for modern security controls
Collaborate with the Research Team and other R&D stakeholders to implement and refine offensive concepts
Provide technical mentorship and drive engineering best practices within the team
Harness AI coding agents to streamline the above processes

Required Software Team Leader-Building Cloud Scale Email Security Product
R&D | Full Time | Job Id: 23189
Why Join Us?
Ready to shape the future of Email Security?
Join us as a Software Team Leader and take the helm of a talented development team at the forefront of innovation. If you thrive in dynamic environments, have a passion for building scalable solutions, and want to make a real impact on thousands of users worldwide! This is your chance to lead, inspire, and drive excellence in a product recognized by Gartner as a market leader.
Email Security is one of the fastest-growing domains, playing a critical role in protecting organizations against advanced threats. Wet have been recognized as a Market Leader in Gartner for Email Security, reflecting our innovation, scale, and proven success in the field.
Our platform serves thousands of paying customers worldwide, operating across multiple geographic regions and supporting a truly global user base. The system is designed as a highly scalable, cloud-native solution, built to handle massive volumes of email traffic with strict performance and reliability requirements.
We work closely with AWS to deliver top-tier performance, availability, and security, leveraging advanced cloud services and best practices to provide an exceptional customer experience.
Key Responsibilities
Lead and Mentor
Provide technical leadership and mentorship to a team of developers, fostering a collaborative and innovative environment.
Project Management
Oversee project timelines, deliverables, and resource allocation to ensure successful project completion.
Code Review and Quality Assurance
Conduct regular code reviews to maintain high code quality and adherence to best practices.
Innovation and R&D
Stay updated with the latest industry trends and technologies, and drive innovation within the team.
Performance Monitoring
Monitor and evaluate team performance, providing feedback and support to help team members grow and succeed.
Collaboration
Collaborate closely with cross-functional teams and customers to solve complex problems and innovate new features.

We are seeking a highly skilled and experienced Head of Application Security to join our dynamic team.
Job Id: 24652
This role is pivotal in driving the security of our software development lifecycle and ensuring the robustness of our applications against potential threats. The ideal candidate will have a strong background in secure software development practices, including SSDLC implementation, and a deep understanding of security risks & tools. This position reports directly to an R&D VP.
Key Responsibilities
Lead the application security team, providing strategic direction and mentorship.
Develop and implement a comprehensive Secure Software Development Lifecycle (SSDLC) framework.
Oversee the integration of security practices into all phases of the software development lifecycle, including CI/CD guardrails.
Conduct risk assessments and threat modeling to identify and mitigate potential security vulnerabilities.
Collaborate with development teams to ensure secure coding practices and adherence to security standards, while maintaining developer productivity.
Implement and manage security automation tools and processes to enhance the efficiency of security operations.
Stay up-to-date on the latest security trends, vulnerabilities, and technologies to continuously improve our security posture.
Provide expert guidance on security architecture and design for new and existing applications.
Lead incident response efforts related to application security breaches and vulnerabilities.
Foster a culture of security awareness and continuous improvement within the organization.

Required Engagement Manager
Israel: Tel Aviv/ Hybrid (Israel)
R&D | Full Time | Job Id: 25158
Why Join Us?
The Engagement Manager plays a key role in shaping, packaging, and delivering our Research service offerings to both internal stakeholders and external clients. This position bridges technical expertise with business engagement, ensuring that our Research deliverables are transformed into compelling, value-driven products that support sales, strengthen customer relationships, and enhance operational efficiency across the organization.
The ideal candidate combines cyber expertise with strong communication, coordination, and client-facing skills, ensuring seamless delivery and alignment between our Research, sales teams, and customer expectations.
Key Responsibilities
Productization of our Research Deliverables:
Translate our research outputs, intelligence materials, and technical deliverables into appealing, consumable offerings for internal teams and external clients.
Continuously refine materials to align with market needs, customer expectations, and sales opportunities.
Internal Stakeholder Engagement:
Proactively engage with internal teams to gather requirements, identify gaps, and determine the most effective types of deliverables.
Evaluate how our Research outputs can support internal efficiency, drive sales, and strengthen alignment across business units.
Sales & Customer Engagement:
Act as a proactive partner to the sales organization throughout the entire customer engagement cycle.
Position our Research services offerings to prospective clients, increasing their attractiveness and supporting contract advancement.
Serve as the primary point of contact (POC) for customers engaging with our Research, ensuring smooth communication and expectation management.
Coordination & Offering Development:
Serve as the internal coordinator within our Research for building structured, scalable, and saleable service offerings.
Work cross-functionally to ensure that offerings are aligned with CPR capabilities, market demands, and sales priorities.