לוח משרות דרושים הייטק אבטחת מידע / סייבר משרה מלאה

We are seeking a driven problem solver to join our Unit 42 MDR team.
Our team is responsible for customers internal security monitoring, threat hunting and incident response. As a MDR Manager, we will rely on you to manage a team of experts who detect and respond to cyber incidents facing customers internal business.
As a team manager, you will join a team of managers who overlook the Unit 42 MDR team to ensure premium delivery to our customers and also have a critical role in how the team works, but also be able to create new processes, methodologies and capabilities that the team requires.
Your Impact:
Hire for and lead a team of MDR Analysts working globally, guide the team, create and improve processes, methodologies and capabilities that the team requires to work effectively
Lead a team that analyzes incidents from real customer environments to identify ongoing threats to customer environments
Provide critical feedback to the different product, research and engineering and threat hunting teams to help improve the products for the entire customer base
Work closely with Security Research, Threat Intelligence and Threat Hunting teams to remediate and detect new emerging threats.

We are looking for a Sr Principal Linux Security Researcher for our Tel Aviv R&D center, to work on cortex-xdr for linux, which provides runtime protection to servers and cloud workloads.
You will be part of a team that is in charge of researching, developing and improving Anti-Exploit capabilities, Anti-malware capabilities. The position includes researching OS internals, exploits, malware, delving into cloud security, and finding ways to mitigate new attack vectors.
Your Impact:
Research, develop, and improve anti-exploitation mitigations and anti-malware modules - ranging from low-level mitigations up to tackling application-level security vulnerabilities
Work on the design, evaluation, and implementation of new security technologies
Research Linux OS internals, kernel, application codebases, vulnerabilities and exploits (Mostly internal usage but also PR)
Analyze customer issues to help with detecting and preventing malicious activities in our customers networks.

Were seeking an experienced Security Solutions Engineer to help us create new automations and scalable solutions for our customers. Your role will be both strategic and tactical, as youll be working directly with customers to understand their requirements, design solutions, and implement security controls. Join us on our mission to help every security team achieve operational excellence.

Your responsibilities


Design and implement security solutions to automate the real-world customer pains.
Provide expert advice and recommendations for security solutions that can achieve customer objectives.
Collaborate with the Sales team to establish a reputation for technical excellence and trustworthiness with potential customers.
Work jointly with other Solutions Engineers & Architects to support the Sales team with technical content and call support.
Establish and maintain a knowledge hub or repository of security best practices, resources, and insights.
Collaborate with the marketing team to generate demos, case studies, blogs, and videos.

This role is offered as a hybrid, with the expectation to be in the office 3 days per week in Tel Aviv, Israel. We can only accept applications from those based in Israel or who have sponsorship to live and work in Israel.

What you can expect to do in this role:
iOS Security Analysis: Conduct in-depth analysis of iOS security mechanisms, including the secure boot process, sandboxing, code signing, keychain, secure enclave, and data protection. Identify weaknesses and potential vulnerabilities within the iOS ecosystem.
Vulnerability Assessment: Perform comprehensive vulnerability assessments of iOS applications using industry-standard frameworks such as MITRE, OWASP Mobile Security Testing Guide, and tools like Burp Suite. Identify and document security issues and propose mitigation strategies.
Attack Vector Analysis: Explore potential attack vectors that could compromise iOS devices and applications. Develop a deep understanding of the iOS threat landscape and post-exploit scenarios to anticipate and counteract security threats effectively.
Reverse Engineering: Utilize reverse engineering techniques and tools such as IDA Pro, Hopper, and Ghidra to dissect iOS applications and firmware. Analyze binaries, disassemble code, and reverse engineer software components to uncover vulnerabilities and weaknesses.
Privilege Escalation Research: Investigate iOS privilege escalation techniques and vulnerabilities, staying ahead of potential threats. Research and develop countermeasures to protect against privilege escalation attacks.
Development Contributions: While not mandatory, the ability to develop security-related tools, scripts is an advantage. Contribute to the creation of custom tools or enhancements that aid in mobile forensic analysis and security assessments.
Documentation and Reporting: Create detailed reports and documentation of security findings, methodologies, and recommended solutions. Communicate research results effectively to both technical and non-technical stakeholders through written reports and presentations.
Collaboration: Collaborate closely with cross-functional teams, including fellow researchers, software developers, and cybersecurity experts, to share insights, collaborate on security initiatives, and contribute to the development of secure mobile solutions.
Stay Current: Continuously monitor and stay up-to-date with the latest developments in iOS security, vulnerabilities, and exploits. Contribute to threat intelligence by sharing relevant information with the team.

,As an Information security engineer, you will be responsible for designing, developing
implementing, and managing complex cybersecurity systems. Both cloud and on-prem
backend development. You will be required to develop software and use monitoring tools to
ensure resilience and high availability. The systems are highly sensitive and will be built with
top-notch security standards (OWASP TOP-10 to say the least). The development is mostly
server-side, with about 20% client-side

Are you a SOC Analyst?

We are expanding our global security group that helps protect our system, and we are looking for YOU!

As a SOC Analyst, you will identify and resolve highly complex issues to prevent cyber-attacks on our system, keep our information secure, and protect our systems from interruption of service, financial theft, and theft of sensitive data.

The position is hybrid.

We are located in Herzliya.

Scope of work:

Sunday-Thursday

Morning shift 06:00-14:00
Evening shift 14:00-22:00
Night shift 22:00-06:00
Friday

Morning shift 06:00-14:00
Saturday

Night shift 22:00-06:00
In total- 2-3 shifts per week

Your day 2 day:
Monitor and analyze security events and alerts from organization SIEM.
Respond to various notifications from monitoring systems to improve security.
Create tickets and escalate them to Security Engineers.
Conduct proactive threat hunting and help the security team build automation and dashboards from existing logs on the central SIEM system.
Answer technical security service requests.
Perform forensic investigations on security incidents.
Maintain strong knowledge and awareness of the current threat landscape.
Responding to mission-critical job failures.
Monitor for system failures and work according to pre-defined playbooks.
Monitor and alert for specific network operations failures.

Team leader: Manage the team and lead it to fulfill its missions.
Manage the team's relations with suppliers, consumers and partners, together with the product manager.
Manage the virtual and physical communications infrastructure.
Ensure 24/7 stability for communication solutions.
Cultivate learning and knowledge documentation in the team.
Lead design development of communication solutions in the Cyber ecosystem.

We are looking for a Threat Detection Engineer.
This role combines a blend of skill sets including security operations & incident response, data analytics, risk management, software development, and threat research. If you enjoy researching cloud security issues and developing detection content as code, all in a fast-paced environment with broad collaboration across a diverse team, this role is for you.

Responsible for designing, implementing and maintaining Identity & Access Management (IAM) solutions, on-prem and on cloud.
Collaborating with top-tire professionals to develop and implement innovative approaches to identify verification, authentication and authorization of users and service.
Responsibility for managing IAM infrastructure such as Active Directory, ADFS, APM, KeyCloak, MFA, Conditional Access & Priviliged Users solutions.
Identify and implement new opportunities & IAM technologies.

We are looking for a Protocol Researcher.
Responsibilities
Researching video surveillance cameras and IoT equipment, including hands-on work with physical devices.
Executing protocol and networking communication research, starting from lab setup to large volumes of real data.
Researching and analyzing both cellular and wired internet communication, using Wireshark and raw bit analysis techniques.
Handle various protocols and traffic types, including standard, proprietary, hashed and encrypted communications between clients, servers and endpoints.
Working with Red Hat OCP eco-system and big data technologies - supported by DevOps and infrastructure teams.
Combine research, visual intelligence, big data and networking communication to make a significant impact on end-users.

Collecting data from various sources (Open source, feeds and intelligence portal).
Conducting investigations using advanced tools and intelligence sources.
Conducting Cyber Threat analysis based on SPLUNK.
Work closely with leading Cyber, intelligence and operational professionals.
Identify emerging threats and attack patterns.
Tracking threat actor groups and methods.