לוח משרות דרושים איש אבטחת מידע / סייבר משרה מלאה

we are seeking a Cybersecurity Implementation Specialist for a significant and challenging role, tailored for professionals with deep knowledge and experience in infrastructure and cybersecurity.
Responsibilities:

* Supporting organizational cybersecurity systems, including WAF, DLP, EDR, Proxy
* Operation and maintenance of firewall systems and other Network security solutions
* Deployment and upgrades of cybersecurity solutions in complex environments

we are looking for an experienced Application Security Architect to join our Cybersecurity team. In this role, you will be instrumental in building and advancing our companys application security programs. Working closely with talented engineers, product managers, and platform teams, youll play a key role in ensuring the security of our software development lifecycle (SDLC).
Youll provide security services including secure coding practices, architecture reviews, awareness and training initiatives, and tool implementation. From threat modeling to secure development education, your contributions will directly impact the safety and resilience of our companys products.
What am I going to do?
Lead Secure SDLC Initiatives: Drive security throughout the software development lifecycle (S-SDLC), including threat modeling, risk assessments, and mitigation planning for new and existing applications.
Embed Secure Design Practices: Guide development teams on implementing secure architectural patterns, design principles, and coding standards, with emphasis on OWASP and industry best practices.
Security Tooling Strategy: Define and manage the integration of Static (SAST), Dynamic (DAST), and Software Composition Analysis (SCA) tools into our companys CI/CD pipelines, ensuring scalable, platform-agnostic coverage and effective vulnerability management.
Security Testing & Remediation: Perform and oversee application security testing, ensuring timely remediation of identified vulnerabilities.
Develop Security Standards: Create and maintain secure coding standards, best practices, and development guidance tailored to our companys tech stacks.
Code Reviews: Conduct in-depth manual and automated security code reviews for critical components, offering practical and constructive feedback to engineering teams.
API & Mobile App Security: Design and assess security for APIs and mobile applications, ensuring robust authentication, authorization, and data protection in line with industry standards.
Third-Party Risk Management: Evaluate the security posture of third-party libraries, components, and services integrated into our company's applications.
Cloud Security Collaboration: Partner with Cloud Security Architects to ensure secure application deployment in cloud environments (e.g., AWS, GCP), offering expert advice on cloud-native security practices.
Team Enablement & Education: Mentor development teams on emerging threats, secure coding techniques, and security-first development approaches.
Bug Bounty Program Leadership: Manage and evolve our companys bug bounty program, working with researchers and internal teams to resolve findings efficiently.

A company located in central Israel is looking for a full-time Information Security Consultant and Advisor.
This is a great opportunity to gain experience in a GRC (Governance, Risk, and Compliance) role and as an Information Security Consultant for cutting-edge tech companies, while also influencing the company and its information security posture.
Responsibilities include:
Supporting organizations in the creation and management of information security programs.
Overseeing information security systems.
Developing risk management processes.
Supporting cross-organizational processes.
Conducting information security reviews and regulatory gap assessments.
Designing and implementing security hardening processes.
The role is dynamic and includes consulting and on-site support at the client's location.
This is a full-time position.
CVs should be sent to our e-mail.

we are the trading and investing platform that empowers users to invest, share and learn. We were founded in 2007 with the vision of a world where everyone can trade and invest in a simple and transparent way. We have created an investment platform that is built around collaboration and investor education. On our platform, users can view other investors portfolios and statistics, and interact with them to exchange ideas, discuss strategies and benefit from shared knowledge. We have over 38 million registered users from 75 countries and our platform is available in 20 languages. We are a fast growing business with over 1,500 employees across 13 offices around the globe, strategically positioned to serve the needs of users. You can find out more about us here.
We are seeking an experienced Security Governance, Risk, and Compliance (GRC) Team Leader to drive our security and compliance programs while building and managing a high-performing team. This role combines strategic leadership with deep technical expertise in security frameworks and regulatory compliance within the fintech industry.
Key Responsibilities
Leadership & Team Management
- Build, mentor, and lead a team of GRC professionals, fostering a culture of excellence and continuous improvement
- Develop and implement strategic objectives for the GRC function, aligned with organizational goals
- Establish KPIs and metrics to measure team performance and program effectiveness
- Lead resource planning, budget management, and professional development initiatives for the team
Security Governance & Risk Management
- Direct the development and maintenance of the organization's security governance framework
- Oversee the enterprise-wide IT and cyber risk management program
- Lead the implementation and monitoring of security controls across the organization
- Drive security awareness and training programs across the company
Compliance & Audit Management
- Lead regulatory compliance initiatives, ensuring adherence to relevant frameworks including ISO 27001, SOC, NYDFS, and NIST
- Oversee internal and external audit processes, managing relationships with auditors and regulators
- Direct the development and maintenance of policies, procedures, and controls
- Lead the response to audit findings and oversee remediation efforts
Strategic Partnership & Communication
- Partner with executive leadership to align security initiatives with business objectives
- Lead vendor risk management program and third-party due diligence processes
- Build strong relationships with business unit leaders to ensure effective control implementation
- Present security and compliance metrics to senior management and board members.

We are looking for a highly motivated and responsible Project Manager to join the CloudGuard Network Security Products group.

In this position you will be leading internal group activities as well as cross organizational projects, involving other R&D departments, Product Management, Support, Sales, and QA.

Come join a team of driven, fun, creative minds united in delivering innovative new technology and cyber security against the ever-changing threat landscape.

Key Responsibilities
Manage development projects and product release in the CloudGuard Network Security Products group
Be part of the R&D group, targeting competitive and successful products
Managing the project full cycle from ideas through requirements, high level plan, design, execution and ending in a release
Managing the project content, quality, timeline and risks
Manage product release process including customer facing publications (Marketplaces, Public documentation portal, etc)
Directly engage with developers as well as senior management
Manage QA priorities and perform tradeoffs as needed to meet critical delivery targets
Adapt and take on more responsibilities and own your share of the product
Leading lessons learned / debriefs, tracking till final resolution and implement improvements based on conclusions

we are a global leader in control systems for quantum computing, a field on the verge of exponential growth. Our innovative hardware and software mark a groundbreaking approach in quantum computer control, scaling from individual qubits to expansive arrays of thousands. At the core of our company's lies a passionate and ambitious team committed to reshaping the construction and operation of quantum computers. Our work is fueled by a deep understanding of customer needs, driving us to deliver unparalleled solutions in this revolutionary field.
We are looking for a Networking and Security Specialist with a strong technical foundation in enterprise networking and a hands-on approach to firewall and infrastructure security. You will take ownership of managing and improving network and security posture across multiple locations, including day-to-day administration of FortiGate firewalls, and play a key role in shaping broader security practices across the organization.
This is a critical role for someone ready to take on large-scale improvement projects and grow into broader security responsibilities beyond networking.
What Youll Work On
Leading improvements to network and firewall configurations across multiple sites.
Hardening perimeter and internal security through better policies and visibility.
Building scalable monitoring/logging infrastructure to support real-time troubleshooting and long-term security insights.
Helping to define security standards for networking and other layers of infrastructure.
Key Responsibilities
Manage and improve networking infrastructure across several sites (access, distribution, and core).
Administer and harden Fortinet FortiGate firewalls, including policies, rulesets, VPNs, and remote access.
Continuously assess and enhance network security posture through segmentation, access control, and best practices.
Configure and maintain VLANs and routing on switches and firewalls (Fortinet, Cisco; Aruba experience is a plus).
Troubleshoot network and security issues and optimize for performance and resilience.
Plan and lead improvement projects across the networking stack from design to implementation.
Deploy, maintain, and improve production-level monitoring and logging systems (e.g., Grafana, Datadog, Elastic, Zabbix).
Build out observability and alerting for critical systems and infrastructure.
Potentially take on additional security responsibilities over time including endpoint, identity, or cloud security layers.
Collaborate with cross-functional teams to ensure secure and efficient network operations.
Document network architecture, security rules, monitoring design, and incident responses.

driving and leading the next generation networks with our solution. Founded to solve the data explosion challenge, our cutting-edge technology and solution have created a paradigm shift in the economy of networks. Through smart and high-performance bit processing on merchant silicon and commodity hardware, we enable new revenue opportunities and sustainable growth for our customers, even as Internet usage explodes. Our system is a cornerstone of this mission, and we are looking for a talented developer to take it to the next level.

About the Role
We are looking for a hands-on and experienced Application Security Team Leader to drive our product and infrastructure security strategy and execution.
You will lead a team responsible for integrating security into our development workflows, managing vulnerabilities, and securing our use of open source and third-party components. This role requires both strong technical skills and the ability to lead and collaborate across multiple engineering functions.

Key Responsibilities
Team Leadership & Strategy
Build and lead the Application Security team, setting goals and ensuring successful delivery of security initiatives.
Define and drive the application security roadmap in collaboration with R&D, DevOps, and Product.
CI/CD Security Tool Integration
Oversee integration and maintenance of SAST, SCA, and DAST tools in CI/CD pipelines.
Ensure security checks are automated and embedded early in the development lifecycle.
Open Source & Package Mapping
Guide the team in mapping and maintaining an inventory of open source and third-party components across the product.
Identify critical dependencies and oversee continuous monitoring and hardening efforts.
Vulnerability Detection, Tracking & Reporting
Lead monitoring for CVEs affecting the OS, kernel, standard packages, and containers.
Ensure vulnerabilities are documented, tracked, and addressed through coordinated patching and remediation.
Communicate risks and progress to stakeholders via clear, actionable reports.
Risk Mitigation & Component Hygiene
Oversee efforts to identify and replace outdated or redundant software components.
Ensure timely updates of third-party packages to mitigate known vulnerabilities.
Promote secure software component usage and lifecycle management across teams.

Abra is Hiring an Information Security Risk Assessor
* Conducting risk assessments for the company's systems.
* Identifying vulnerabilities in existing systems as well as in systems undergoing implementation.
* Reviewing system hardening against accepted standards.
* Performing regulatory tests in accordance with the regulations applicable to financial organizations.
* Evaluating the effectiveness of compensating controls.
* Providing recommendations for remediating vulnerabilities.
* Collaborating with professional teams to ensure vulnerabilities are mitigated.
* Working within a professional team in a purple team format.

Are you ready to power the future? At SolarEdge (NASDAQ: SEDG), we're a global leader in smart energy technology, with over 4,000 employees, offices in 34 countries, and millions of installations worldwide. Our innovative solutions include solar inverters, battery storage, backup systems, EV charging, and AI-based energy management. We're committed to making clean, green energy the primary power source for homes, businesses, and beyond. With the growing demand for electricity, the need for smart, clean energy sources is constantly rising. SolarEdge offers amazing opportunities to develop your skills in a multidisciplinary environment, covering everything from research and development to production and customer supply. Work with talented colleagues, tackle exciting challenges, and help create a sustainable future in an industry that's always evolving and innovating. Join us and be part of a company that values creativity, agility, and impactful work. This role is a team member in our security engineering team. The Cyber Security team is composed of strong and experienced security engineers, responsible for designing, implementing, analyzing, and maintaining an on-prem\cloud-based security controls in particular OT security. What you will be doing:
* Manage the day-to-day operations of the company’s security infrastructure systems.
* Will lead the implementation of IT/OT cyber security systems in the organization.
* Provide security guidelines to various projects and systems.
* Research new innovative technologies to mitigate security gaps and work to implement in the production

Country:
Israel

City:
Herzliya

We are looking for a Corporate Development Director to join our team. In this role you will play a pivotal role in shaping the companys strategic growth through acquisitions, partnerships, and ecosystem expansion. This is not just a deal-making role its a leadership position at the intersection of business strategy, technology, and innovation. You will work closely with executive leadership, product teams, and external partners to identify transformative opportunities across cybersecurity domains like SASE, Cloud Security, and SecOps.

If you thrive in fast-moving environments, have deep industry insight, and are ready to influence the future of cybersecurity, we want to hear from you!



Key Responsibilities


Ecosystem Relationships, Deal Sourcing
Proactive out-reach to start-ups and mature companies in ecosystem understand offerings, build and maintain relationships
Maintain relationships with cybersecurity focused investment banks, VCs, PEs
Source, screen and manage an on-going deal flow of acquisition opportunities.
Strategic Domain Leadership-- E.g. SASE, Cloud Security, SecOps, Managed Services, etc.
Deep domain understanding (customer value, use cases, technologies, offerings, vendors)
Know on a personal deep level all companies active in the domain (startups and mature co)
Work with R&D and PM to understand CHKP product roadmap in the domain and define Corp Dev strategy (Build/Partner/Buy)
Assist R&D and PM in partnership / OEM discussions
Lead the evaluation of M&A target companies
M&A Due Diligence Leadership
Project Manage DD process - internally and vis-à-vis the target company

Engage with all DD Team Leaders to define their scope of DD and key questions
Facilitate Team Leaders meetings with their target company counterparts; prepare agendas; ensure good communication
Issue DD findings reports
Present DD finding to Management
M&A Deal Making
Play significant role in M&A deal making process (legal, finance, accounting, tax, HR aspects)

We are looking for an experienced Privacy Specialist to become the founding member of our Data Protection Team. In this role, you will be critical in shaping and operationalizing our data privacy and protection strategy. This is a hands-on role requiring both strategic thinking and tactical execution. Youll collaborate with cross-functional teamsincluding Legal, Engineering, Product, and Securityto ensure our software, services, and internal practices align with privacy regulations such as GDPR, CCPA, and others relevant to our global operations.
Responsibilities:
Develop, enhance, and implement our privacy and data protection control framework, processes, and tools.
Ensure compliance with applicable data privacy laws (e.g., GDPR, CCPA) and coordinate with the Legal team to monitor evolving regulations.
Partner with Product and Engineering to embed privacy by design and default into new technologies and product features.
Lead data discovery, classification, and data flow mapping initiatives across systems and third-party services.
Conduct Data Protection Impact Assessments (DPIAs) and privacy risk evaluations for new products, projects, or vendors.
Create and deliver internal training programs to foster a company-wide culture of privacy awareness.
Collaborate with Information Security to develop and test incident response and data breach protocols.
Assess third-party vendors for privacy compliance and manage appropriate contractual safeguards (e.g., DPAs, SCCs).
Act as a subject matter expert and point of contact for internal and external stakeholders on all privacy-related matters.