לוח משרות דרושים הייטק אבטחת מידע / סייבר בתל אביב יפו

We are looking for an experienced Product Manager to join our product team, the runtime-powered CNAPP that revolutionizes cloud infrastructure security.
As a Product Manager, you will have a pivotal role in steering the strategic direction of our product, contributing to the ongoing success of our mission to redefine cloud security.
If you are a forward-thinking Product Manager ready to make an impact in a fast-paced and innovative environment, we invite you to be a key player in our dynamic team.
Responsibilities :
Leading, defining, and building features, capabilities, and domains within our product.
Engaging with customers and the sales team on strategic accounts, providing strong technical leadership.
Collaborating closely with our talented R&D teams to build impactful features.
Taking ownership of all product aspects from design through development and rollout.
Collaborating with Product Marketing, Customer Success, and Sales to deliver an exceptional experience to our customers.

We are looking for an experienced Security Researcher to join our team. This role is central to navigating complex security landscapes, advancing our CNAPP offerings, crafting sophisticated algorithms, and pioneering cloud security research.
Working alongside a diverse team, your efforts will directly enhance our offerings on major cloud platforms (AWS, GCP, Azure) using the latest in Kubernetes, EBPF, Docker, and beyond.
Join us in shaping the future of cloud security, where your work not only advances our technology but also deeply resonates with our commitment to exceeding customer expectations, streamlining for simplicity, and tackling challenges with creative solutions.
Responsibilities :
Collaborate with teams across the organization, including Product, Frontend, DevOps, and GTM, to develop and integrate top-tier features.
Conduct in-depth security research across major cloud providers, utilizing state-of-the-art technologies like Kubernetes, EBPF, Docker, and more.
Lead initiatives from their inception through to deployment, emphasizing backend system efficiency, scalability, and reliability.
Innovate in Defense Evasion, amplifying the capabilities of our agents and engines.
Forge new paths in cloud security research and cyber security algorithm development.
Deep dive into threat detection and product content that provide deep insights and added value to our customers.

We are seeking an experienced Vulnerability Researcher to join our team, where our ethos of customer-centric problem solving, ownership, professionalism, and resourcefulness are at the heart of everything we do. The team faces complex research issues daily, solving new challenges and constantly improving the existing solutions.
In this key position, youll dive deep into complex security puzzles, pushing the boundaries of our vulnerability research and solutions.
Collaborating on challenges with our team means working with the leading cloud platforms (AWS, GCP, Azure) and leveraging advanced technologies like Kubernetes, EBPF, Docker, and more.
Responsibilities :
Vulnerability research in the major Cloud providers and cutting-edge technologies.
Lead projects from conception to deployment, ensuring efficiency, scalability, and reliability across backend system components.
Contribute to the development and refinement of the platform.
Play a critical role in content creation, contributing to articles, press releases, and product content development.
Innovate in the area of Defense Evasion, enhancing our agent and engine capabilities.

SysAid, a pioneering SaaS firm in Enterprise Service Management, is celebrated for innovation and industry leadership. Featured in Gartner's ITSM Magic Quadrant and honored with AWS's Rising ISV Star Award, we serve 4,000+ clients spanning 140 countries, impacting over 9 million daily users. Our commitment? Revolutionizing Enterprise Service Management with Generative AI. We seek a Product Security Specialist for our growing security team. In this role, you’ll collaborate with our software development and DevOps teams to secure SysAid products, CI/CD infrastructure, and production infrastructure. Key Responsibilities:
* Review and be able to reproduce reported vulnerabilities whether they were reported by customers or by penetration test results.
* Assist developers in finding remediation for security bugs and vulnerabilities.
* Plan detection use cases and deliver detection capabilities to identify attack tactics, techniques, and procedures.
* Play a key role in the security incident response process.
* Plan and manage penetration tests and vulnerability assessments with our Security contractors.
* Develop, promote, and monitor the adoption of sound cloud security practices.
* Take ownership of vulnerability management and patching policies.
* Identify and help mitigate security issues, misconfigurations, and vulnerabilities related to the SysAid infrastructure.
* Collaborate with engineering, DevOps, and IT teams to ensure security is at the heart of what we do.
* Lead threat modeling exercises around cloud-native, SaaS, and cloud-first technologies.
* Mentor and provide technical leadership to other members of the Security team.
* Manage vulnerability disclosure processes.

We are looking for a curious and ambitious intelligence analyst to join our Intelligence Services Team, as part of our amazing Customer Success group. Responsibilities As a Cyber intelligence analyst, you will:
* Perform research, collect information and conduct monitoring of vulnerabilities, APT groups, threat actors, and cyber attacks on dark, deep, and clear web platforms
* Perform analysis and cross-reference findings
* Create cyber threat intelligence reports based on your analysis and provide information about trends, predictions, and recommendations
This is a PART-TIME position with the option to become full-time in the future.

we are looking for a Cyber Security Consultant to perform a range of expert level services. The successful candidates should have experience both as a security practitioner and security consultant, profound technological cyber knowledge and passion for cyber security. In addition, they should have a service approach, excellent communication skills and the ability to learn and work with the best in the field.

Main Responsibilities:

Evaluate the state of security, configurations, and security strategy, identifying gaps and opportunities and anticipating needs
Consult in cyber security engagements, including development of a cyber security plans and design implementation, and provide guidance on building security
Recommend cyber security strategies, policies, and procedures
Develop and support clients with internal training to assure deep understanding of fundamental cyber security practices, risks, and recommended mitigation tactics
Create expert-level deliverables, and present results of the assessment to a broad range of clients and design plans to address specific cyber risks and vulnerabilities
Collaborate with the cyber experts team in the development and implementation of cyber assessment tools, services, and best practices

We are looking for talented hackers to join our unique Adversarial Tactics Department. As a Red Team Expert ,you will work with clients to build their resiliency, i.e their capability to prevent and to sustain attacks. You will also be involved in IR engagements with companies that were attacked by adversaries, learn new TTPs and apply those in Red and Purple team engagements.

Your responsibility as a Cyber consultant is to bring the attackers perspective to engagements. You will help design, create and execute Adversary Simulation exercises, and perform attacks against client services, platforms and infrastructure. This will include, among other things, identifying vulnerabilities through simulated external and internal attacks, validating and enhancing an organizations ability to respond and recover from targeted attacks and persistent adversaries.

we are looking for an Advanced Monitoring Analyst to join the team of cybersecurity analysts that performs advanced and tailored monitoring activities in post-breach clients' environments. The role includes the development of detection analyses, triage of alerts, investigation of security incidents, proactive threat hunting, and enhancement of sensors and overall visibility status, as well as performing onboarding of new clients. The suitable candidate should be a team player with previous experience in SOC, SecOps, or security monitoring, independent, and with a "can-do" attitude, as well as possessing strong customer-facing capabilities.

The position includes multiple challenging aspects, such as creation of detection analyses, attack scenarios research, team capabilities developments, client interactions, and in-depth investigation, which include host forensics work in both Windows and Linux systems, and cloud environments (e.g., AWS, GCP and Azure).



Main Responsibilities

Perform Post-Breach monitoring activities in global clients environment including in-depth triage of alerts and host forensics analysis.
Develop out-of-the-box and tailor-made analyses and detection to monitor the clients environment, often based on known threat actor tactics, techniques and procedures. This work may include research activities to support the detection development.
Support major Incident Response engagements with accurate detection after a potential active threat actor in the clients network.
Work on maintaining the necessary visibility and log forwarding for the ongoing monitoring engagements, including host-based data, Cloud environments, network devices, etc.
Apply proactive threat hunting approach in ongoing monitoring engagements, including forensic host and network-based analysis, malware hunt and wide IOC searches.
Develop capabilities and automations for alerts handling, triage and escalation, visibility maintenance, reporting, and more.
Onboard new customers by assessing their security posture, tailoring monitoring systems to their environment, and integrating their security frameworks into our services.
Often work alongside global clients security personnel when providing regular updates and following-up on alerts and security events.
Generate and provide reports and metrics on actionable data: incidents, weekly aggregation/trending, follow up procedures, visibility status, etc.

we are looking for highly capable Incident Response Expert. The Incident Response Expert role includes conducting in-depth forensic analysis, investigation and response to real-world cyber threats. A significant part of our investigations is performed onsite at the client location, in collaboration with the clients IT and security teams.

Main Responsibilities

Participate in forensic and incident response investigations, including large scale sophisticated attacks, conduct log analysis, host and network-based forensics and malware analysis.

Participate in threat hunting: proactively hunt for targeted attacks and new emerging threats in clients networks; as well as security assessments and simulations.

Identify indicators of compromise (IOCs) and tools, tactics, and procedures (TTPs) to help ascertain whether and how breaches have occurred.

Utilize and develop tools and methodologies to improve existing investigative and hunting technological stack.

Collaborate with IT and Security teams during investigations.

Generate and present a comprehensive and professional report of findings from investigations.

we are looking for an Incident Response Manager to lead investigations and response activities in support of organizations worldwide.

Cyber threats are constantly growing in volume, velocity and sophistication. When an organization is confronted with an advanced attack, it needs the strongest capabilities on its side. In many cases, an incident response engagement is in fact a battle within a network. The operational art, experience focus and speed of response teams can mean the difference between a minor blow and a devastating impact on performance and reputation of organizations.

The Incident Response Manager is both a subject matter expert for clients and team members, and a leader. Significant part of our investigations is performed onsite at the client location, in collaboration with the clients IT and security team

we are looking for an Incident Response Team Leader to lead investigations and response activities in support of organizations worldwide.

Cyber threats are constantly growing in volume, velocity and sophistication. When an organization is confronted with an advanced attack, it needs the strongest capabilities on its side. In many cases, an incident response engagement is in fact a battle within a network. The operational art, experience, focus, and speed of response teams can mean the difference between a minor blow, and a devastating impact on an organizations performance and reputation.

The Incident Response Team Leader will be key to the success of Incident Response projects worldwide, and should possess strong leadership skills, be highly technical and thrive in a fast-paced and dynamic environment.

As a Cyber Security Engineer in a fast-expanding operation team, you will be responsible for onboarding new global clients to the MXDR services, developing and maintaining detection scenarios and alerts, analysing the client's environment, and providing technical support and guidance to clients. To excel in this role, you will demonstrate strong technical aptitude, dedication to delivering high-quality work, and a cooperative approach to teamwork.



Main Responsibilities:

Lead the onboarding process for all new clients joining the MXDR services, working closely with the clients IT and security teams to ensure smooth implementations.
Develop detection scenarios and alerts for XDR solution (Velocity) to ensure effective threat detection and response.
Oversee Velocity KPIs and measurements set by the client, adjusting, analyzing and maintaining them according to their needs and tracking the impact of the platform on the client's networks, endpoints, applications, and cloud environments.
Continuously improve Velocity monitoring capabilities and keep up-to-date with the latest developments in the cyber threat landscape.
Provide technical support and guidance to clients on Velocity security-related issues, including implementing security best practices and ensuring compliance with industry standards.

we are looking for a MXDR Analyst to join the team of cybersecurity analysts monitoring services 24/7, tiers 1-2. The role includes development of detection analyses, triage of alerts, investigation of security incidents, proactive threat hunting and enhancement of sensors and overall visibility status. The suitable candidate should be a team player with previous experience in SOC, SecOps or security monitoring, independent, and with a can-do attitude.



Responsibilities

Working across all areas of SOC, including continuous monitoring and analysis, threat hunting, security compliance, security event auditing and analysis, rule development and tuning, and forensics.
Solving security incidents in accordance with defined service level agreements and objectives.
Prioritizing and differentiating between potential incidents and false alarms.
Addressing clients enquiries via phone, email, and live chat.
Working side-by-side with customers, providing insightful incident reports.
Working closely with peers and higher-tier analysts to ensure that your analysis work meets quality standards.
Identifying opportunities for improvement and automation within the MXDR Operation Lead, and leading efforts to operationalize ideas.
Identifying and offering solutions to gaps in current capabilities, visibility, and security posture.
Correlating information from disparate sources to develop novel detection methods.

Were looking for driven and talented people like you to join our R&D team and our mission to change the future of cloud security. Ready to dive in and swim with our pod?
On a typical day youll:
Be responsible for completing a thorough software and systems risk assessment, identifying vulnerabilities within a network, and creating firewall rules, hardenings, or configuring systems to enhance existing security features.
Is expected to respond to, and document, any security threats, resolve technical faults and allocate resources to deliver real solutions in a cost-effective way. They must also be proficient in:
Understanding complex technical issues and managing them within a fast-paced business environment
Maintaining all the software and hardware in relation to security
Documenting security certifications
Identifying current and emerging technology issues including security trends, vulnerabilities and threats
Threat intelligence
Sourcing and implementing new security solutions to better protect the organization
Conducting proactive research to analyze security weaknesses and recommend appropriate strategies
Liaising with vendors to implement security solutions

A B2B fast-growing cyber security start-up that fixes the root cause of most successful cyberattacks with a simple, fully automated platform for our trust segmentation and remote access.
We are seeking a highly motivated, versatile and skilled Security Analyst to join our dynamic team.
In this role, you will play a key part in building and implementing a new field within our product offerings. You will be responsible for envisioning and developing innovative security concepts, translating them into actionable designs, and implementing these advancements within our product suite.
Responsibilities:
Propose and develop innovative security concepts to enhance our cybersecurity solutions. Collaborate on the design and development of comprehensive security solutions for detection and prevention of cyber threats.
Apply data analytics techniques to investigate security-related data, extract actionable insights, and enhance threat intelligence.
Leverage current cybersecurity knowledge to interpret and contextualize findings, enabling informed decision-making and proactive measures to strengthen overall cybersecurity defenses.
Provide on-the-fly support during customer incident response events and penetration testing exercises by leveraging expertise to promptly detect and block security threats.