לוח משרות דרושים הייטק אבטחת מידע / סייבר

We are looking for proactive, analytical talented people to join the company API Security Content team. As a Research Engineer (API Content), you will analyze APIs, design API integrations, and more.
You will add content to our companys security and network products, such as XDR, CASB, DEM, DLP, etc.
Joining our company is an excellent opportunity for network security enthusiasts who are passionate about the future of Networking and Security
Responsibilities:
Analyze cloud application APIs and develop products interacting with such APIs
Contribute to various company products: DEM, XDR, CASB
Suggest and conduct new research vectors
Utilize our companys Data Warehouse with big-data technologies to support your work
Automate your work to improve efficiency.

Welcome. We are at the forefront of fintech + AI innovation, backed by leading venture capital firms. Our mission is to build a fraud-free global commerce ecosystem by leveraging the newest technology, freeing online businesses to focus on their core ideas and growth. We are building the future, and we need you to help shape it.
Who We're Looking For - The Dream Maker
We are looking for a hands-on Cloud Security Lead to own and continuously improve the security posture of our applications, infrastructure, and cloud environment. This role is both strategic and deeply technical, with full responsibility for embedding security into our engineering culture and software development lifecycle. You will work closely with R&D, DevOps, and Product teams to design secure systems, proactively identify risks, and protect the company against evolving threats. This role is critical to protecting our systems, customers, and business as we scale. You will shape how security is built, tested, and operated - ensuring security enables growth rather than slowing it down.
Your Arena - Know your impact
* Serve as the primary owner of application, infrastructure, and cloud security
* Continuously assess and improve our security posture through offensive and defensive security practices
* Design, implement, and maintain security controls to protect against modern threats.
* Embed security into the secure Software Development Lifecycle (sSDLC)
* Lead penetration testing, threat modeling, and incident response efforts.
* Build and operate security monitoring, alerting, and automated detection tooling
* Promote a strong security-first culture across R&D and the wider organization.

we are seeking a highly motivated and talented XDR Research Engineer to join our XDR Research team. In this role, you will develop advanced detection logic to identify and analyze security threats across the company XDR platform. Leveraging the rich data available in the company Cloud data lake, you will conduct extensive research and threat-hunting activities to broaden our detection capabilities and proactively uncover previously unknown threats.
Your work will directly influence the evolution of our companys XDR capabilities and strengthen the security posture of thousands of global customers.
This is an exceptional opportunity for security professionals passionate about Network Security, Detection Engineering, Malware Analysis, and Threat Hunting who want to make a meaningful impact on a fast-growing cybersecurity environment.
Responsibilities
Develop advanced detection logic for the XDR platform to identify security threats.
Conduct research using our company Cloud data, competitive intelligence, and newly published threat reports to expand detection coverage.
Create hunting heuristics and methodologies to uncover unknown or emerging threats.
Continuously improve detection accuracy and enhance the platforms ability to identify threats in a dynamic security landscape.
Participate in cybersecurity breach investigations and security incident activities.
Contribute to technical blogs and PR materials, and participate in cybersecurity conferences.

The Security Architect will ensure that all systems, platforms, assets, and data across the organization are properly defined, mapped, and governed. This includes validating configuration correctness, ensuring data remains within its intended boundaries, and confirming that all system-to-system flows, integrations, and access patterns meet our security and architectural standards.
This is a systems and data-level architecture role that requires a strong understanding of how modern connectivity, SaaS environments, and security solutions operate, especially as organizations increasingly adopt AI-driven capabilities. The architect will help guide the company toward clearer visibility, stronger control, and more reliable, automated decision-making around connectivity and access.
Responsibilities
Map all organizational systems, data flows, integrations, and dependencies to create Zero Trust end-to-end architectural view.
Develop processes and frameworks for classifying systems, defining ownership boundaries, and ensuring consistent governance across environments.
Validate the correctness of access flows, connectivity rules, and system configurations to align with Zero Trust and other security best practices.
Build and maintain the data and architectural baselines.
Collaborate with engineering and product teams through processes such as Design Reviews.
Participate in vendor onboarding, architecture assessments, and ongoing governance processes.
Create High Level Design (HLD) for systems and technologies to be implemented by the SecOps, OPS, IT, and AppSec teams.
Contribute to the creation of clear documentation, diagrams, standards, and presentations for both technical and executive audiences.
Ensure alignment with frameworks such as NIST and similar industry standards (without serving as an audit or certification lead).

We are now looking for a Senior security researcher. our Networking product security team is looking for an outstanding technical security researcher with hands-on experience to help us improve the security posture of our networking software. In this role you will help reduce risk, threats, and vulnerabilities in our networking products.

What youll be doing:
Be involved in offensive security researcher on a wide range of products.
Assist with defining and making sure software development processes meet security and coding standards.
Perform security threat modeling for our Networking products.
Design and make security architecture recommendations to satisfy security guidelines and requirements.
Mentor teams and developers, promoting guidelines on the best security practices.
Be a technical focal point across multiple development teams and provide hands-on security engineering expertise.

The company Cloud Content team is an integral part of the Content Product Group, tasked with the critical mission of safeguarding cloud environments through innovative detection and response capabilities. This specialized team comprises cloud security experts, researchers, and engineers in various time zones working in unison to ensure our customers cloud workloads are secure against the ever-changing threats in the security landscape.As a senior researcher on the team, you will play a pivotal role in conducting security research, and translating it to direct security value for the company and product.This role provides a unique opportunity to join a team with strategic importance to protecting our customers from emerging threats and novel attack methodologies in both cloud and Linux based environments. You will stay ahead of the curve with regards to the threat landscape and your research will directly impact the direction of the team and our product.You will also get to work with vast datasets, have a direct impact on the efficacy and evolution of our detections, and play a decisive role in the strategic direction of our product development. Your contributions will enable continuous improvement of our companys cloud detection capabilities ensuring that our customers can be secured with the most advanced security measures in place.
What Youll Do:
Initiate and conduct Cloud Research Initiatives: follow the threat landscape to identify trends in the realm of cloud infrastructure security, threat actors, novel attack approaches, and vulnerabilities in cloud-based and/or cloud-native environments and workloads.
Conduct cutting edge research in the areas of Linux security (low level and high level operating system research) and become an authoritative source of knowledge in the team.
Research threats and vulnerabilities in cloud provider infrastructure and containerized applications and workloads.
Develop advanced cloud security models: Create sophisticated models and frameworks for identifying and mitigating new types of cloud threats. Focus on predictive analytics and proactive threat hunting methodologies.
Collaborate with cross functional teams: Work closely with various teams, including engineering, product management, detection engineering, and threat intelligence to drive cloud detections in the company falcon platform.
Provide cloud security thought leadership: Share insights and best practices with the broader security community through publications, conference presentations, and technical blogs.

our company Intelligence seeks a Senior Intelligence Analyst for its Global Threat Analysis Cell (GTAC) to track and analyze targeted intrusion activity associated with Democratic Peoples Republic of Korea (DPRK)-nexus adversaries. The Analyst will monitor DPRK-nexus cyber operations, identify emerging trends and threats, investigate suspected DPRK-related adversary activity, and produce strategic and tactical intelligence assessments and products that directly inform our company customers.
What You'll Do:
Track adversary campaigns, tactics, techniques, and procedures (TTPs) through analysis of our companys unique telemetry, open-source data sets, and third-party intelligence
Author short and long format written reports with minimal supervision that apply analytic tradecraft, including appropriate use of estimative language, confidence levels, and structured analytic techniques. Collaborate across teams to inform various functions within our company Intelligence, as well as other company business units, to ensure comprehensive adversary tracking and deconfliction
Identify intelligence gaps, propose new research projects to address collection shortfalls, and develop initiatives to explore understand adversary intent, capabilities, and infrastructure
Conduct peer review of reporting by team members, and ensure all products meet our company Intelligences analytic standards for accuracy, clarity, and objectivity.
Prioritize, categorize, and respond to requests for information from internal and external customers
Conduct briefings as needed for a variety of levels of customers as requested (via either phone, video conference, webcast, in-person briefing, or industry conference).

Adaptive Shield, a company, is an industry leader in the emerging SaaS Security Posture Management (SSPM) market. Our culture is defined by great people with deep knowledge, integrity and values. Join our team and be a part of revolutionizing the way we help enterprises secure their SaaS ecosystem!
The designated candidate should have vast experience in SaaS security, strong technical cybersecurity background, and outstanding communication and execution skills.
What You'll Do:
Perform advanced security research in SaaS applications to identify security risks, and build product capabilities to proactively address them
Collaborate with cross-functional teams, including R&D, Customer Success, and Product Management, to integrate security practices into the product.
Stay abreast of the latest SaaS security threats, research, and technologies, integrating this knowledge into our security strategy.
Strong knowledge of cloud security best practices and past professional experience implementing.
Prepare and present detailed reports on findings and recommendations to relevant stakeholders.

The company Cloud Content team is an integral part of the Content Product Group, tasked with the critical mission of safeguarding cloud environments through innovative detection and response capabilities. This specialized team comprises cloud security experts, researchers, and engineers in various time zones working in unison to ensure our customers cloud workloads are secure against the ever-changing threats in the security landscape.As a senior researcher on the team, you will play a pivotal role in conducting security research, and translating it to direct security value for the company and product.This role provides a unique opportunity to join a team with strategic importance to protecting our customers from emerging threats and novel attack methodologies in both cloud and Linux based environments. You will stay ahead of the curve with regards to the threat landscape and your research will directly impact the direction of the team and our product.You will also get to work with vast datasets, have a direct impact on the efficacy and evolution of our detections, and play a decisive role in the strategic direction of our product development. Your contributions will enable continuous improvement of our companys cloud detection capabilities ensuring that our customers can be secured with the most advanced security measures in place.
What Youll Do:
Initiate and conduct Cloud Research Initiatives: follow the threat landscape to identify trends in the realm of cloud infrastructure security, threat actors, novel attack approaches, and vulnerabilities in cloud-based and/or cloud-native environments and workloads.
Conduct cutting edge research in the areas of Linux security (low level and high level operating system research) and become an authoritative source of knowledge in the team.
Research threats and vulnerabilities in cloud provider infrastructure and containerized applications and workloads.
Develop advanced cloud security models: Create sophisticated models and frameworks for identifying and mitigating new types of cloud threats. Focus on predictive analytics and proactive threat hunting methodologies.
Collaborate with cross functional teams: Work closely with various teams, including engineering, product management, detection engineering, and threat intelligence to drive cloud detections in the company falcon platform.
Provide cloud security thought leadership: Share insights and best practices with the broader security community through publications, conference presentations, and technical blogs.

Were hiring a Senior Security Engineer to help shift security left across product and platform teams, while also supporting internal corporate security needs. Youll drive impact through enablement, automation, and practical risk reduction.
Why this role matters?
Youll secure both what we build and how we work. That means embedding security into our products and CI/CD, and also supporting internal teams.
Security here is not a gate; its a force multiplier. Youll help engineering teams move faster safely, and ensure our colleagues have a secure foundation to do their best work.
Success means faster, safer releases and fewer reactive security escalations.
What will you do?
As a Senior Security Engineer, your mission will be to:
Partner with developers to embed security into design, build, and deploy stages
Automate vulnerability triage and mitigation flows
Secure CI/CD pipelines (GitHub, Jenkins) and execution environments (Kubernetes, Docker)
Tune WAFs, manage cloud security (AWS, GCP, Azure), and evolve Terraform practices
Support internal teams with secure production accesses, endpoint hardening, and access policies
Lead security reviews across app, infra, and corporate environments
Advocate for security standards with clarity and empathy

The ideal candidate will bridge high-level security governance with hands-on, automated security implementation across the Software Development Life Cycle (SDLC).
This individual will be a critical enabler, empowering teams to move swiftly and deliver exceptional value to our clients, all while upholding the required security standards. A proven track record in successfully balancing rapid innovation with robust security practices is essential for this role.
How youll make an impact:
As the DevSecOps Leader / Program Manager, you will be responsible for creating a secure-by-design culture and leading the operational implementation of our security strategy. You will:
Build the Secure SDLC (SSDLC) Strategy: Develop, own, and execute the companys comprehensive DevSecOps strategy, focusing on automation to manage security at scale from code check-in to production deployment.
Lead Key Security Engineering Initiatives: Lead and manage security engineering programs, including:
Maturing the security tools stack (e.g., implementing WAF, and automating SCA/SAST tools).
Owning the bug bounty and responsible disclosure programs triage and remediation tracking.
Enhancing the Identity and Access Management (IAM) framework through concepts like Just-In-Time (JIT) and Zero Trust principles.
Operationalize CVE Tracking and Remediation: Design and implement a scalable system for discovering, tracking, and prioritizing Common Vulnerabilities and Exposures (CVEs) in third-party and custom code. Drive the engineering teams to achieve security risk remediation goals by providing clear, actionable data and automated patching mechanisms.
Measure & Drive Improvement: Develop and maintain key DevSecOps metrics (e.g., Mean Time To Detect/Remediate - MTTD/MTTR, percentage of code coverage by SAST/SCA tools) to measure the effectiveness of automated controls and provide a data-driven picture of the application security posture.
Embed Security Engineering: Spearhead R&D DevSecOps initiatives, partnering directly with engineering teams to select, deploy, and maintain security tools, establishing security gates and best practices throughout the product development lifecycle.