לוח משרות דרושים מומחה אבטחת מידע / סייבר בתל אביב יפו

We are looking for talented security researchers, people who look at the world differently, who explore, "hunt" and live to beat the system and challenge it. People who are in pursuit of outsmarting the malware and overcoming it.
Youll be part of an exceptional research team that will ensure we provide the best detection, protection, and visibility capabilities to our customers at any given time. The team leads the vulnerabilities, exploits and anti-tampering research for all of our security products under all platforms. The team does it by performing in-depth analysis and research of vulnerabilities and exploits, while also being responsible for closing the loop through the development and deployment of detection assets to millions of endpoints across the globe. Youll be working closely with other detection teams to ensure our customers get the best security products they can. Your time will be focus on research and detection & protection assets.
Research
Assessing and evaluating our detection and protection coverage against in the wild vulnerabilities, exploits, and anti-tampering techniques.
Closing the loop by conducting research to discover and implement innovative solutions for these security challenges.
Initiate and propose new features and capabilities, leveraging personal experience and expertise in security research.
Perform strategic long-term research projects that involve deep research of OS internals, new detection techniques, and novel threats.
Continually learn about emerging vulnerabilities, exploits, threats, techniques, and new technologies on a regular basis.
As a security research expert, youll collaborate with many teams to help and support their work using your expertise, knowledge, or research.
Detection And Protection assets
Youll be responsible for developing the new detection content for all of our engines that will improve our detection, protection, and visibility, reaching all of our millions of endpoints across the globe.
Youll be responsible for the quality and accuracy of the deliverables that youll create and be accountable for them.
Youll create, maintain, and improve existing infrastructure and tools that are being used by the team.
You will also be encouraged to write white papers, blogs, and articles (but only if you wish to).

About the job XM Cyber is a globally renowned leader in hybrid cloud security. Our innovative approach utilizes the attacker's perspective to identify and address critical attack paths across on-premises and multi-cloud networks. The XM Cyber platform empowers organizations to swiftly prioritize and mitigate cyber risks affecting their vital systems, ensuring operational resilience and security.
We are seeking an experienced Marketing Project Manager to join our dynamic marketing team on a maternity cover basis for six months. As a Marketing Project Manager at XM Cyber, you will play a critical role in driving the team towards operational excellence.
Objectives of this Role

* Manage and optimize the usage of monday.com as our primary project management tool.
* Create and maintain project boards, workflows, and task assignments to ensure efficient project execution with deadlines.
* Facilitate clear and effective communication within the marketing team and with cross-functional stakeholders.
* Coordinate marketing meetings, and ensure timely follow-up on action items.
* Collaborate with team members to develop project plans for marketing initiatives.
* Own and streamline the PO process for the marketing team, ensuring compliance with company policies and budgetary guidelines.
* Assist in project planning, scheduling, and resource allocation to meet campaign deadlines and objectives.
* Monitor project progress, identify potential risks, and proactively implement solutions to keep projects on track.
* Create reports and metrics that track marketing performance

As a senior researcher on the team, you will play a pivotal role in conducting security research, and translating it to direct security value for the company and product.

This role provides a unique opportunity to join a team with strategic importance to protecting our customers from emerging threats and novel attack methodologies in both cloud and Linux based environments. You will stay ahead of the curve with regards to the threat landscape and your research will directly impact the direction of the team and our product.

You will also get to work with vast datasets, have a direct impact on the efficacy and evolution of our detections, and play a decisive role in the strategic direction of our product development. Your contributions will enable continuous improvement of cloud detection capabilities ensuring that our customers can be secured with the most advanced security measures in place.

What You'll Do:

Initiate and conduct Cloud Research Initiatives: follow the threat landscape to identify trends in the realm of cloud infrastructure security, threat actors, novel attack approaches, and vulnerabilities in cloud-based and/or cloud-native environments and workloads.

Conduct cutting edge research in the areas of Linux security (low level and high level operating system research) and become an authoritative source of knowledge in the team

Research threats and vulnerabilities in cloud provider infrastructure and containerized applications and workloads

Develop advanced cloud security models: Create sophisticated models and frameworks for identifying and mitigating new types of cloud threats. Focus on predictive analytics and proactive threat hunting methodologies.

Collaborate with cross functional teams: Work closely with various teams, including engineering, product management, detection engineering, and threat intelligence to drive cloud detections in the falcon platform

Provide cloud security thought leadership: Share insights and best practices with the broader security community through publications, conference presentations, and technical blogs.

This role provides a unique opportunity to join a team with strategic importance to protecting our customers from emerging threats and novel attack methodologies in both cloud and Linux based environments. You will stay ahead of the curve with regards to the threat landscape and your research will directly impact the direction of the team and our product.

If you have a strong passion for security and technology, have an interest in supporting engineering projects, and want to gain real-world experience in dealing with advanced threat actors targeting cloud environments, we have a role for you!


Your contributions will enable continuous improvement of cloud detection capabilities ensuring that our customers can be secured with the most advanced security measures in place.



What You'll Do:

Develop, implement and optimize threat detection rules tailored to cloud runtime environments. Aim to detect and respond to activity as early in the killchain as possible.

Rapid response to potential malicious campaigns or extensive exploitation cloud runtime resources post vulnerabilities disclosure.

Conduct proactive threat hunting exercises to identify potential security gaps and emerging threats within cloud environments.

Track and present threat detection findings, including recommended strategies or possible product improvements.

Collaborate with cross functional teams: Work closely with various teams, including OverWatch, engineering, product management, detection engineering, and threat intelligence to drive cloud detections in the falcon platform.

Stay abreast of the latest threat landscape and cloud security trends, continuously updating detection strategies to address emerging threats and vulnerabilities.

We are looking for a talented and experienced GRC expert for a Security Expert position. This position will interact with IT teams, business units, HR, etc. This will include activities of an international entity/subsidiary. You should be able to drive multiple security audits and articulate security requirements both verbally and in writing.
Responsibilities:
Running multiple successful security audits in parallel
Aligning our security compliance and regulative requirements
Breaking down compliance requirements verifying that existing controls are adequate and defining and overseeing the implementation of new security controls
Run and participate in external and internal risk assessments
Driving successful mitigations of audit and risk assessment findings
Formulate new policies and update existing ones while aligning them with business processes
Review the security controls & settings of various security and IT systems and confirm alignment with compliance requirements.
Run GRC tasks cross-company
Prepare the business for SOX, PCI-DSS, ISO 27001 and 27017, and other certifications and audit requirements. You will work with the auditors and manage the process with other teams and business units
Respond to customer RPPs/RFIs and questionnaires
Explore new options for enhancing the security posture.

we are looking for a Senior Security Engineer.
The Security Architect plays a pivotal role in defining and advancing our
security posture.
This individual will lead and manage security projects from inception to rollout and will be responsible for designing, developing, and implementing a robust security architecture aligned with our business goals and risk management strategies. Adept at data security and well-versed in emerging cybersecurity trends, the ideal candidate will ensure the resilience and security of our systems against evolving threats.
Responsibilities:
Design and Develop Security Architecture:
Lead the development and maintenance of a comprehensive security architecture framework, aligning with our business objectives and risk tolerance.
Design security models and controls, ensuring the security, integrity, and confidentiality of sensitive data and our systems.
Security Solutions & Project Management:
Evaluate, recommend, and lead the implementation of advanced security solutions.
Manage security projects from inception to rollout, collaborating with IT, development, and various business units to ensure secure and timely delivery.
Threat and Risk Assessment:
Proactively identify and assess security risks, vulnerabilities, and formulate mitigation strategies.
Conduct regular vulnerability assessments and drive remediation activities, focusing on data security aspects.
Policy Development and Compliance:
Develop, refine, and maintain security policies, standards, and procedures with an emphasis on data security.
Ensure compliance with internal security policies and applicable laws and regulations, addressing both organizational and data-centric security needs.
Stakeholder Collaboration & Communication:
Engage with a range of stakeholders including CISO, IT, legal, and business units, to align security initiatives with business goals.
Clearly communicate security concepts, risks, and mitigations to both technical and non-technical stakeholders.
Security Awareness & Culture:
Develop and deliver security awareness training focusing on data security.
Foster a culture of security mindfulness across the organization.

the leader in cybersecurity for connected cars, electric cars, driverless cars and smart mobility.
has been working as the trusted cyber partner of the Volkswagen Group since 2016 securing over 2 million vehicles. We have various products in Intrusion Detection, Vulnerability Management and Remediation that are unique in the automotive industry. Although there are more than 200 employees, we strive to give each employee the opportunity to grow and develop their professional skills.
We are looking for an Experienced System Administrator!
Responsibilities:
Administration of infrastructure and: Linux, Windows, Mac.
Servers maintenance and new services implementation.
Implementation of automation processes within the infrastructure.
Manage virtualization systems (VMWare).
Mange cloud infrastructure Azure, AWS.
Manage Microsoft 365 environment Intune, Exchange, Azure.
Manage performance monitoring.

Secure your future while securing the safety of smart mobility! Interested in electric vehicles and connected cars? Then join the leader of the smart mobility market! Since 2016, has been the trusted partner of the VW Group, developing cyber solutions for the complex vehicle market. With over 2 million vehicles secured with our solutions in intrusion detection, vulnerability management, and security testing, we are growing and have lots to offer you. With close to 200 employees, we pride ourselves that offering employees the opportunities to develop their professional skills and advance their careers. As we penetrate more markets within smart mobility, see and secure your future in a nourishing environment.
looking for DevOps Engineer to build, develop, and maintain various projects and products within the Automotive Cloud Security Team.
What your mission will be:
Develop and maintain our cloud infrastructure and automation frameworks (Terraform) both for Azure and AWS, GCP is a plus.
Design, build and manage highly available, scalable and robust services.
Setting up tools and required infrastructure including DevSecOps tools.
Maintaining the version of all the software releases.
Maintaining artifactory and artifacts.
Supporting and interacting with internal clients.
Monitor and troubleshoot system and application issues (Prometheus,grafana)
Suggesting alterations to workflow in order to improve efficiency and success.
Stay up-to-date with emerging trends and technologies in DevOps and cloud computing

A global technology company in the payments industry. Our mission is to connect
and power an inclusive, digital economy that benefits everyone, everywhere by making
transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships
and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential.
Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our
company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all.
Overview-
looking for an Information Security Lead to steer the organizations information security, data security and risk management. The Information Security Lead will work with various departments in and implement the organizations best practices. This role will report to the VP technologies operations organization.
Role-
Developing, implementing, and monitoring a strategic, comprehensive enterprise information security and IT risk management program that aligns with the organizations business objectives and regulatory requirements. The program is required to align with corporate strategy and directives.
Providing and approving security related items in RFP responses and contract negotiations. Joining customer calls to explain our security position and understand the customer needs.
Partnering with business units and stakeholders across the organization to facilitate risk assessment and risk management processes, and to raise awareness of security issues and best practices.
Establishing and maintaining an information security management framework that incorporates industry standards and best practices and lead compliance audits for ISO/IEC 27xxx, SOC II and other security certifications.
Assisting in the selection, implementation, and maintenance of security technologies, tools, and processes that support the organizations security goals and policies.
Responding to security incidents and breaches, and coordinating with internal and external parties to investigate, contain, remediate, and report on them.
Evaluating and reporting the organizations security posture and performance, and provide regular feedback and recommendations to senior management.
Staying abreast of current and emerging security threats, trends, technologies, and best practices, and ensuring that the organization adapts accordingly.
Sourcing and selecting vendors and service providers that offer security solutions or support.

platform (CNAPP) company, and a leading provider of cloud infrastructure entitlement management (CIEM). The acquisition combines two cybersecurity innovators and marks an important milestone in mission to shift organizations to proactive security. The combination of and Ermetic offerings will add capabilities to deliver market-leading contextual risk visibility, prioritization and remediation across infrastructure and identities, both on-premises and in the cloud.
What makes such a great place to work?
Ask a team member, and theyll answer, Our people! We work together to build and innovate best-in-class cybersecurity solutions for our customers, all while creating a culture of belonging, respect, and excellence where we can be our best selves. When youre part of our team, you can expect to partner with some of the most talented and passionate people in the industry, and have the support and resources you need to do work that truly matters. We deliver results that exceed expectations and we win together!
Your Opportunity:
We are looking for a Senior Security Researcher to join our team at Cloud Security. In this role, you will take part in protecting our customers' cloud environments from a wide range of cyber threats. Your contributions will be directly impactful, not only ensuring our customers' success but also making a significant difference in the evolving landscape of cloud security.
What you will do:
Research cloud threats and collaborate closely with the engineering team to transform research insights into innovative product features
Develop effective detection rules and enhance our product's capabilities for better threat detection
Launch and manage incident response operations to investigate attacks on cloud environments
Investigate malware specifically targeting cloud workloads, understanding their mechanisms and impacts, and produce high-quality reports
Present your unique findings and share knowledge at cyber and cloud conferences

Ask a member of our team and theyll answer, Our people! We work together to build and innovate best-in-class cybersecurity solutions for our customers; all while creating a culture of belonging, respect, and excellence where we can be our best selves. When youre part of our team, you can expect to partner with some of the most talented and passionate people in the industry, and have the support and resources you need to do work that truly matters. We deliver results that exceed expectations and we win together!
Your Role:
looking for a Software Research Engineer to join our Operational Technology Content team. In this role, you will take part in protecting our customers' OT environments from a wide range of cyber threats. Your contributions will be directly impactful, not only ensuring our customers' success but also making a significant difference in the evolving landscape of OT security.
Your Opportunity:
Research OT/IoT threats, malware and exploitation tools
Develop effective threat detection rules and enhance our product's capabilities for better threat detection
Research newly published vulnerabilities and security advisories in order to develop new detection plugins for OT Security product
Research, develop and improve methods of detection for currently unsupported OT/IoT devices

we are looking for a IT Specialist
RESPONSIBILITIES
Respond to customer support inquiries with efficiency and effectiveness.
Assist customers in troubleshooting technical issues both in person and remotely.
Provide technical assistance on the configuration, setup, and maintenance of our products.
Route unresolved issues to the relevant teams for prompt resolution.
Maintain accurate documentation of problems and the processes used to solve them.
Handle IT purchasing in line with company procedures.
Conduct security practices training for end-users.

We are looking for someone who would go over a list of leaking databases, find basic data about them (how many users, countries, what type of data leaked, what's at stake etc), find specific data about them (what makes them critical and different from the rest), and write a summary report about it with screenshots and implications.
This will be then given to a content writer to create a full report and the person will have to go over the report and make sure it's correct.
These reports are then promoted to journalists who often have questions regarding our findings (both technical and not), this person will have to know the answers. "

We are looking for a hands-on Security engineer Web 3.0 security development team. In this role, you will be instrumental in driving the technological success and innovation of a new product line that will revolutionize the rapidly evolving blockchain security products and services industry.
More about the role: As Security Engineer, you will spearhead development efforts, working in close collaboration with the head of Web3 Security and CTO of Web3.0 Security. This is a unique opportunity akin to launching a start-up within Check Point (acting as a founding member of the new team).


Key Responsibilities
Software development: ownership of large portions of our overall technical development of novel, category defining web3 security products. From ideation to sleek products delivery.
Technical Engagement Management: research, spec, develop and integrate tailored solutions (products and services) for our design partners and later, our clients.