לוח משרות דרושים מומחה אבטחת מידע / סייבר משרה מלאה

abra is seeking for an Cyber Systems Implementer We are looking for a skilled implementation, configuration, and support of information security solutions. Responsibilities also include working with NAC systems, troubleshooting, optimizing security system performance, and conducting testing. Full-time position in Haifa, Sunday–Thursday.

Senior Security Data Analyst Client Side Protection
Join our Code Defender team as a Security Data Analyst, where you'll have ownership over the product's detection framework and lead data-driven processes to enhance and refine our security capabilities. Code Defenders mission is to detect and defend against client-side JavaScript threats like Magecart attacks, while helping our customers stay compliant with evolving security and privacy standards. This role requires a proactive and analytical professional dedicated to advancing Code Defenders detection infrastructure and metrics.
What Youll Do:
Detection Framework Ownership: Own and continuously evolve Code Defenders detection framework, leveraging data-driven processes to maximize detection accuracy and efficiency.
KPIs Dashboards Development: Design, develop, and maintain KPIs and dashboards that showcase Code Defenders performance and inform product strategy.
Detection Mechanism Innovation: Research, design, and enhance detection mechanisms to stay ahead of emerging client-side threats.
Cross-Team Collaboration: Work closely with the technical research and development teams to support end-to-end product improvements and drive a unified approach to detection enhancement.

The Research team at our company takes on the immense challenge of identifying and stopping malicious activity across vast streams of traffic. By crafting innovative solutions, we empower our products to make trillions of decisions every day with unparalleled precision. Our work directly impacts the safety of the internet and ensures that our company remains the best-in-class solution for our customers, standing strong against the ever-evolving tactics of attackers.
Were looking for a Senior Web Security Researcher to be part of a team of highly skilled professionals that include security researchers, data researchers, data scientists and software engineers who continuously hunt for threats, evaluate and develop new detection techniques, and share intel and attribution for cybercrime activity with the goal of protecting our customers while keeping the internet our company.
What you'll do:
Play a lot with the web-browsers, trying to find differences in behavior between them.
Research and develop signal collection on both mobile and desktop, which enables detection and improve our protection
Find ways to detect automation, for example, tools like Selenium, Playwright or Puppeteer.
Understand customer specific requirements, deliver with impact and exceed customer expectations.
Discover adversary tactics, techniques, and procedures leveraged by bots.
Create and validate data insights to enhance detection excellence.
Share security research topics through blogs, research talks, knowledge base and external engagements including conference presentations, detailing your discoveries for internal and external sharing.
Find bad stuff on the internet, see if you can figure out how it is done, document it.
Red team, experiment, and develop new tactics for various kinds of fraud and to bypass our detection, no need to wait for an attack to be discovered and used by adversaries first.
Stay abreast of cyber security trends and events related to our mission.
Contribute high impact work that substantially benefits team level metrics and OKRs.
Develop techniques, tools and scripts to simplify yours and others work.

Senior Security Data Analyst Client Side Protection
Join our Code Defender team as a Security Data Analyst, where you'll have ownership over the product's detection framework and lead data-driven processes to enhance and refine our security capabilities. Code Defenders mission is to detect and defend against client-side JavaScript threats like Magecart attacks, while helping our customers stay compliant with evolving security and privacy standards. This role requires a proactive and analytical professional dedicated to advancing Code Defenders detection infrastructure and metrics.
What Youll Do:
Detection Framework Ownership: Own and continuously evolve Code Defenders detection framework, leveraging data-driven processes to maximize detection accuracy and efficiency.
KPIs Dashboards Development: Design, develop, and maintain KPIs and dashboards that showcase Code Defenders performance and inform product strategy.
Detection Mechanism Innovation: Research, design, and enhance detection mechanisms to stay ahead of emerging client-side threats.
Cross-Team Collaboration: Work closely with the technical research and development teams to support end-to-end product improvements and drive a unified approach to detection enhancement.

The Research team at our company takes on the immense challenge of identifying and stopping malicious activity across vast streams of traffic. By crafting innovative solutions, we empower our products to make trillions of decisions every day with unparalleled precision. Our work directly impacts the safety of the internet and ensures that our company remains the best-in-class solution for our customers, standing strong against the ever-evolving tactics of attackers.
Were looking for a Senior Web Security Researcher to be part of a team of highly skilled professionals that include security researchers, data researchers, data scientists and software engineers who continuously hunt for threats, evaluate and develop new detection techniques, and share intel and attribution for cybercrime activity with the goal of protecting our customers while keeping the internet our company.
What you'll do:
Play a lot with the web-browsers, trying to find differences in behavior between them.
Research and develop signal collection on both mobile and desktop, which enables detection and improve our protection
Find ways to detect automation, for example, tools like Selenium, Playwright or Puppeteer.
Understand customer specific requirements, deliver with impact and exceed customer expectations.
Discover adversary tactics, techniques, and procedures leveraged by bots.
Create and validate data insights to enhance detection excellence.
Share security research topics through blogs, research talks, knowledge base and external engagements including conference presentations, detailing your discoveries for internal and external sharing.
Find bad stuff on the internet, see if you can figure out how it is done, document it.
Red team, experiment, and develop new tactics for various kinds of fraud and to bypass our detection, no need to wait for an attack to be discovered and used by adversaries first.
Stay abreast of cyber security trends and events related to our mission.
Contribute high impact work that substantially benefits team level metrics and OKRs.
Develop techniques, tools and scripts to simplify yours and others work.

abra is hiring a Cyber security Team Leader Planning, implementation, and maintenance of CIS benchmarks at levels 1 and 2 across various platforms to ensure system hardening and compliance with regulatory requirements. Design, implementation, and maintenance of endpoint security solutions using the Trellix (formerly McAfee) protection suite or similar, including endpoint protection, device control, change control, and application control. Management and optimization of 802.1x-based Network Access Control (NAC) solutions to ensure secure device authentication and network access. Design, configuration, and maintenance of firewall infrastructure , implementation of security policies, and ensuring optimal performance. Management of VMware virtualization infrastructure with a focus on security configurations. Management and security assurance of Windows and Linux operating systems in an enterprise environment. Development and maintenance of security documentation , including policies, procedures, and technical specifications.

Conduct penetration testing on applications and network environments to identify vulnerabilities and security gaps.
Develop and document testing plans and penetration test reports with clear findings and recommendations.
Perform reconnaissance and network surveys to assess target environments.
Research security tools, exploits, and emerging threats, contributing to blogs and knowledge-sharing initiatives.
Analyze vulnerabilities, exploit weaknesses, and escalate access where applicable.
Assist in malware analysis and breach investigations to support incident response efforts.
Stay up to date with the latest attack techniques, tools, countermeasures, and technologies.
Mentor new team members and contribute to the development of tools, templates, and methodologies for penetration testing.

We are looking for a Network Engineer, who is motivated, self-managed, team player with good interpersonal skills to be responsible for:

Engaging with customers worldwide to understand and address their technical requirements.
Deploying the company's cutting-edge Beta software and hardware on customers' sites, ensuring a seamless experience prior to market release.
Collaborating directly with development teams, QA engineers, and managers at all levels.
Conducting comprehensive testing, debugging, and documentation of beta deployments in simulated customer environments and during on-site activities.
Providing effective technical support to beta testing customers.

Medison offers hope to patients suffering from rare and severe diseases by forming partnerships with emerging biotech companies to accelerate access to highly innovative therapies in international markets. As the creator and leader of the global partnership category in the pharma industry, we strive to be Always Ahead and work relentlessly to bring therapy to patients in need, no matter where they live. The Information Security Officer (ISO) at Medison Pharma will be responsible for developing, updating, and maintaining the organizational information security management framework, including policies, procedures, and work plans. The ISO will provide consulting services on relevant solutions and products and lead the improvement and development of the information security field. Additionally, the ISO will manage projects related to the examination and implementation of new information security products and characterize information security solutions for related projects. The ISO will also advise on compliance with privacy and cyber protection laws and regulations, conduct information security and privacy protection surveys, and oversee ISO 27001 compliance, focusing on all aspects of cybersecurity within Application Security (AppSec), Infrastructure Security (DevSec), Governance, Risk, and Compliance (GRC), Security Information and Event Management (SIEM)/Security Operations Center (SOC), incident response, and IT security.

Responsibilities:

* Develop, update, and maintain a cybersecurity strategy.
* Manage a risk-based cybersecurity program to secure corporate IP, technology, information, computer systems, networks, and data.
* Provide guidance on proposed cybersecurity best practices to different business functions.
* Develop comprehensive cybersecurity guidance, processes, and procedures based on industry standards.
* Stay informed on trends and issues in the security industry, including current and emerging technologies and regulatory and compliance issues.
* Advise, counsel, and educate executive and management teams on the importance of cybersecurity.
* The position reports to Medison's CISO

abra is hiring application Security Consultant
* Provide end-to-end support for technological projects in terms of application security, from the initiation phase to production, including the development of security policies.
* Write guidance documents for development teams within the organization to ensure secure development practices, address security vulnerabilities and gaps in application security in both development and production environments, and implement technological security solutions in application domains.
* Participate in the design of secure architecture in accordance with company policies.
* Identify security gaps at the application layer and define required controls.
* Monitor and ensure compliance with the cyber risk management requirements of the insurance regulator, company procedures, and security guidelines for the various business and technology units.
* Support application security audits, write scoping documents, validate findings, and oversee the implementation of solutions to address security exposures.
* Write requirement documents for security products and innovative technologies.

Are you ready to power the future? At SolarEdge (NASDAQ: SEDG), we're a global leader in smart energy technology, with over 4,000 employees, offices in 34 countries, and millions of installations worldwide. Our innovative solutions include solar inverters, battery storage, backup systems, EV charging, and AI-based energy management. We're committed to making clean, green energy the primary power source for homes, businesses, and beyond. With the growing demand for electricity, the need for smart, clean energy sources is constantly rising. SolarEdge offers amazing opportunities to develop your skills in a multidisciplinary environment, covering everything from research and development to production and customer supply. Work with talented colleagues, tackle exciting challenges, and help create a sustainable future in an industry that's always evolving and innovating. Join us and be part of a company that values creativity, agility, and impactful work. This role is a team member in our security engineering team. The Cyber Security team is composed of strong and experienced security engineers, responsible for designing, implementing, analyzing, and maintaining an on-prem\cloud-based security controls in particular OT security. What you will be doing:
* Manage the day-to-day operations of the company’s security infrastructure systems.
* Will lead the implementation of IT/OT cyber security systems in the organization.
* Provide security guidelines to various projects and systems.
* Research new innovative technologies to mitigate security gaps and work to implement in the production

Country:
Israel

City:
Herzliya

Abra Company is Hiring an Information Security Facilitator Responsibilities:
* Overseeing and managing projects in the field of information security in collaboration with the organization’s Information Security Infrastructure team.
* Providing information security guidelines to infrastructure departments, information systems, and various business areas within the organization.
* Supporting technological projects regarding information security and infrastructure throughout all stages of the project lifecycle.
* Defining information security needs, identifying appropriate solutions, aligning relevant technologies, and conducting technical evaluations of information security solutions.
* Drafting information security requirements and ensuring they align with organizational policies, primarily at the infrastructure level.
* Participating in the planning of secure architectures in accordance with company policy.
* Assisting with information security assessments of infrastructure systems.
* Drafting requirements for information security products and innovative technologies.
* Monitoring and ensuring compliance with the cyber risk management guidelines set by the insurance regulator, as well as information security procedures and laws

We are looking for a Chief Information Security Officer (CISO).
Description:
As our Chief Information Security Officer (CISO), you will be responsible for developing and implementing a comprehensive information security strategy that protects our company's critical assets and sensitive data. You will lead a team of security professionals to identify, assess, and mitigate risks, ensuring compliance with industry standards and regulatory requirements.
Key Responsibilities:
Strategy Development: Develop and maintain a robust information security strategy aligned with the company's business objectives.
Risk Management: Identify, assess, and prioritize security risks, implementing effective mitigation strategies.
Security Architecture: Design, implement, and manage security architectures, including network, application, and infrastructure security.
Incident Response: Lead incident response teams to effectively handle security breaches and minimize damage.
Compliance: Ensure compliance with relevant industry standards, regulations, and legal requirements.
Security Awareness: Promote a strong security culture through training and awareness programs.
Vendor Management: Manage security relationships with third-party vendors and partners.
Budget Management: Oversee the security budget and allocate resources effectively.

We're looking for an Infrastructure Security Engineer to join our global team. The ideal candidate will possess extensive experience at on-prem and cloud Infrastructure and systems Security, who has worked in a large enterprise environment. As an IT Infrastructure Security Engineer, you will protect hundreds of servers and assets, protect multi-vendor environments across data centers, both on-premises and in the public cloud while also having the opportunity to grow and learn new technologies.
Responsibilities:
Manage and Securing Infrastructure on Clouds and On-Premises according to our guidelines.
Solid understanding of administering and securing Windows systems, Linux Advantage
Familiarity with firewalls, routing protocols, subnetting, and network security concepts and protocols.
The ability to automate tasks using scripting languages like Python, Bash, or PowerShell is essential.
Proficiency in identifying, assessing, and mitigating security vulnerabilities in IT infrastructure using vulnerability scanners, Perform advanced
troubleshooting on issues and root cause analysis.
Knowledge of cloud security best practices and experience with cloud platforms like Azure, AWS Advantage.
Assisting with the evaluation of next generation platforms and ensuring direct fit with Infrastructure and business use-cases
Strong analytical and problem-solving skills to troubleshoot security issues and develop solutions.

We are seeking an experienced Vulnerability Researcher to join our team, where our ethos of customer-centric problem solving, ownership, professionalism, and resourcefulness are at the heart of everything we do. The team faces complex research issues daily, solving new challenges and constantly improving the existing solutions. In this key position, you'll dive deep into complex security puzzles, pushing the boundaries of our vulnerability research and solutions. Collaborating on challenges with our team means working with the leading cloud platforms (AWS, GCP, Azure) and leveraging advanced technologies like Kubernetes, EBPF, Docker, and more.
Responsibilities :
Vulnerability research in the major Cloud providers and cutting-edge technologies.
Collaborate with teams across the organization, including Product, and GTM, to develop and integrate top-tier features.
Conduct deep technical research into cloud-native environments.
Lead offensive investigations in Kubernetes, eBPF, AI/ML‑based anomaly detection, and runtime security, translating findings into production‑grade detections.
Create authoritative content white‑papers, conference papers, blogs, and release notes that educate users and elevate Upwinds brand.
Deep dive into threat detection and product content that provide our customers deep insights and added value.