לוח משרות דרושים מומחה אבטחת מידע / סייבר בשרון

If you're eager to launch or accelerate your cybersecurity career in a high-growth tech company, this is your opportunity to learn, contribute, and grow alongside some of the best in the industry.



JOB RESPONSIBILITIES
Monitor and analyze security alerts and logs using advanced monitoring and detection systems.
Triage and respond to Tier-1 security incidentsinvestigating root causes, mitigating risks, and documenting findings thoroughly.
Assist in strengthening AWS cloud security configurations with a focus on the principle of least privilege.
Support the deployment, maintenance, and fine-tuning of security tools and processes.
Collaborate with cross-functional teams to proactively identify threats and enhance overall security posture.
Be part of an on-call rotation, including weekends and holidays, to ensure continuous protection.

We are hiring a Senior GRC Manager to sustain, scale, and continuously enhance our Governance, Risk, and Compliance (GRC) program. Reporting directly to the CISO, this is a high-impact role focused on maintaining robust compliance posture (including SOC 2 Type II, ISO 27001, 27017, and 27018), driving cloud assurance initiatives, and strengthening trust with customers and partners.

The ideal candidate is comfortable working cross-functionally, automating compliance workflows, and serving as a key liaison for external diligence and internal controls.


RESPONSIBILITIES

Maintain and mature the GRC program: Own core processes, documentation, and internal controls to support security and privacy obligations.
Align GRC activities with key frameworks, including NIST CSF, CIS Controls, and ISO 27001/27018, to ensure comprehensive control coverage and internal alignment.
Support certification continuity: Ensure ongoing adherence and audit readiness for SOC 2 Type II, ISO 27001, ISO 27017, and ISO 27018 through continuous monitoring, control validation, and stakeholder coordination.
Support evolving privacy governance efforts, including ISO 27701 adoption, privacy impact assessments (PIAs), and alignment with standards such as ISO 29134 or NIST Privacy Framework.
Contribute to vendor and third-party risk management: Support onboarding, reviews, and oversight of vendors handling sensitive data or infrastructure.
Manage customer trust program, including responding to security questionnaires, maintaining compliance artifacts, and owning our public Trust Center (e.g., SafeBase).
Administer and optimize GRC platforms: Manage tools such as VISO Trust, or Vanta to streamline evidence collection, risk tracking, and control testing. Lead process improvements and automation where possible.
Maintain the risk management program: Update the enterprise risk register, facilitate periodic risk assessments, and drive mitigation planning across business functions.
Partner cross-functionally with Legal, IT, Engineering, and Product to embed compliance requirements and align security initiatives with business goals.

Are you looking for a challenge that puts you at the center of the worldwide Platform? Are you passionate about finding security breaches and vulnerabilities? Do you have Offensive mindset? 
Azure Networking is one of the core organizations that build Azure, the worlds largest network, leading digital transformation, empowering, and connecting enterprises and individuals around the world. The team in Israel is specializing in Network security, developing services that protect the Azure platform, the users and apps running on top of it.
we are a world leader in security and is obsessed with making sure that our platform and services are secure, and we can protect our customers and their workloads. We are expanding security research team. The team will focus on making sure our services are built with a security-first mindset by proactively looking for breaches and vulnerabilities in the across Azure architecture and services, to make sure Azure is safe, secure, and reliable.
our companys mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Responsibilities
Be a subject matter expert, leveraging a broad and current understanding of security to devise new protections and exploit mitigations.
Identify security vulnerabilities and gaps in a wide variety of key services across Azure services, network protocols and architecture.
Collaborate with other security and product teams to improve security, and articulate the business value of security investments for designing and developing new security mitigations and defenses.
Drive security root cause analysis, identifying key gaps and being able to drive effective mitigations while understanding the engineering constraints.
Interaction with the security ecosystem and leadership in and outside of our company.

As Information Security Architect specializing in securing CI/CD and R&D processes, you will ensure secure dev practices and tool policies are up to date,
be in charge of product security threat modeling based on external standards and practices (OWASP, NIST, CIS), and be in charge of secure coding practices.
What will your job look like?
1. You will be in charge of conducting threat analysis and design review of complex products.
2. You will need to provide In-depth knowledge of software security design consideration from End-to-End security perspective.
3. You will be in charge of the security development policies, updated to the new world of GenAI
4. You will be in charge of the secure coding practices, to make sure every role in the organization adheres to security standards
5. You will be exploring new trends and standards, conducting POCs with different InfoSec teams (DevSecOps, PenTest).

The Head of Information security will be reported directly to our company's Global CISO. This role requires a results-driven cyber-experienced manager with leadership and management experience, particularly in envisioning and leading large-scale global cyber security teams and developing technology-based security solutions
What will your job look like?
Management experience includes leadership, strategic and security operations and staff management. Proven ability in team building, developing, and implementing security best practices, based on industry standards across various security domains.
Take personal management accountability Coach and mentor existing managers, empower them to lead their own projects and employees. Attract, develop, and retain global talent to ensure people meet business needs, security requirements and a balanced risk based approach between managing risks and enabling business needs .
Create an engaging positive environment Set individual goals, performance, and growth targets for the unit you mange as part of the company's Security team.
Extensive proven experience in cyber technology strategy, architecture, development, project management, and solution integration, including network, cloud, and application security
Oversee quality metrics, best practices, and quality standards. Provide deep expertise for the engineering strategy and implementation. Establish quality standards by using measurement tools, promoting prevention steps and performing RCA (Root Cause Analysis), LL (Lessons Learned) and quality review processes on a regular basis.

we are looking for a GRC Analyst to join the Cyber GRC Team.
As a GRC Analyst, you will ensure that our company adheres to cyber security standards and policies. This role involves building and promoting mitigation plans, developing and implementing governance frameworks and routines, and ensuring compliance with regulatory requirements.
What will your job look like?
You will oversee the companys risk management processes and build mitigation plans for identified risks.
You will work with business stakeholders, leading communication processes.
You will develop and implement corporate governance frameworks, rules, and procedures to ensure compliance with organizational and ethical standards.
You will lead ongoing compliance audits for relevant standards (e.g., ISO27001, SOC2 Type 2), including preparation for relevant focals, managing relevant evidence, following up on findings, and ensuring timely fixes by owners.

We are seeking a talented, tech-savvy individual to join our Cyber Security team and address the most challenging security issues within cutting-edge ecosystem. In this role, you will serve as a subject matter expert, playing a crucial part in building and maintaining security infrastructure, designing secure architectures, enforcing security best practices, and automating security processes.
Our Cyber Security team comprises experienced security engineers responsible for defining the security strategy and managing all of infrastructure.
Responsibilities:
Design, deploy, and operate technologies to detect, prevent, and analyze security threats in a diverse and complex environment, encompassing both public cloud and on-premises systems.
Conduct hands-on activities to maintain and operate security infrastructure.
Automate security processes to enhance and support security posture.
Design, develop, and implement secure software development and deployment pipelines, incorporating best practices, automation, and CI/CD security methodologies.
Develop, implement, and maintain security policies, standards, and methodologies.
Identify and evaluate new cybersecurity technologies.

Required Director of Fraud Analytics
So, whats the role all about?
The company is seeking a Director of Fraud Analytics to lead its Fraud Data and Analytics research and development. In this position the Director of Fraud Analytics will have responsibility managing a team of highly skilled Fraud analysts and data scientists developing the company Fraud AI and analytics offering and tools, research, methodology and development practices.
How will you make an impact:
Manage several teams of analysts and data scientists that define how Fraud is detected in the product suite.
Define and develop the tools and methods required for Fraud AI and analytics capabilities in the product suite
Deliver and assist in defining product capabilities across theportfolio for developing and deploying advanced analytics and data science products
Evangelize Fraud Analytics capabilities and provide thought leadership through engagement with the market and the client community
Maintain strong relationship and team management in a highly matrixed environment with customers, sales, development, product and delivery groups.