לוח משרות דרושים הייטק אבטחת מידע / סייבר משרה מלאה

Security Lead BOA Ideas has been delivering smart, scalable web solutions for nearly two decades, specializing in Shopify, application development, and third-party system integrations. We love connecting systems almost as much as we enjoy connecting with our clients. We are a growing software company seeking a Security Lead to take full ownership of our company-wide security posture. This hands-on, cross-functional role will focus on building and leading security practices across development, infrastructure, and internal operations, with a strong emphasis on cloud and infrastructure security.
What you’ll do
* Take end-to-end ownership of security across the company
* Define and implement security standards, policies, and best practices
* Lead our cloud and infrastructure security efforts
* Identify risks, prioritize them, and drive remediation with relevant teams
* Select and implement security tools
* Integrate security into our development lifecycle
* Work closely with engineering teams to promote secure development practices
* Define and enforce internal security policies
* Conduct periodic reviews, audits, and security assessments

we are looking for an Android Security Research team leader to manage a team of super-talented malware researchers and reverse engineers. Our teams help top-level companies improve their security mechanisms using our insights on the latest malware trends, adversarial shifts, and new techniques. Combining intelligence, sophisticated forensics, and data science helps us catch the most relevant and up-to-date threats and threat actors.
What will you do?
* Lead and mentor a team of security researchers across multiple projects
* Own long-term malware and security research of a variety of Android frameworks, technologies, and domains
* Detect large-scale malware campaigns and help bring their operations down
* Review and enhance your team's research reports and code
* Collaborate with other teams throughout the organization
* This role is a management position with 40% hands-on technical work
* Find the bad guys - take them down
About us:
we are a trust, safety, and security company built for the AI era. We safeguard the communicative technologies people use to create, collaborate, and interact-whether with each other or with machines. In a world where AI has fundamentally changed the nature of risk, our company provides end-to-end coverage across the entire AI lifecycle. We support frontier model labs, enterprises, and UGC platforms with a comprehensive suite of solutions: from model hardening evaluations and pre-deployment red-teaming to runtime guardrails and ongoing drift detection.

We are At our company, we're building the financial infrastructure that powers global innovation. With our cutting-edge suite of Embedded payments, cards, and lending solutions, we enable millions of businesses and consumers to transact seamlessly and securely. With 900+ employees worldwide and an R&D center of over 160 employees in Jerusalem - were reshaping how financial technology is developed and delivered..
The Role:
This role focuses on ensuring the security and compliance of cloud infrastructure by implementing and maintaining robust security controls across AWS environments. The position involves automation for security monitoring, adhering to best practices, and collaborating cross-functionally with other teams.
Who You Are:
A strong individual contributor who takes pride in delivering high-quality security outcomes while collaborating closely with peers and stakeholders. You are able to build trust, provide thoughtful input, and continuously grow your technical and operational expertise. You are passionate about exploring new technology and using it to make an actionable impact to the future of fintech. You can balance the needs of the business and the team's goals with strong value for code quality and adherence to implementing best practices. A highly skilled AWS Security Engineer with additional FinOps expertise to ensure the security and compliance of our cloud infrastructure. You are able to implement and maintain robust security controls across AWS environment. You are passionate about best practices, automation for security monitoring, and collaborating with other teams.
What Youll Actually Be Doing:

* Cloud Security Implementation: Contribute to the design and implementation of security measures across AWS environments to ensure systems are secure, compliant, and aligned with industry best practices. Including implementation, automation and development of security policies
* Conduct regular security assessments, control testing, and audits to proactively identify risks and vulnerabilities (and support remediation efforts with partner teams)
* Collaboration with Internal Teams: Work closely with internal teams to integrate security best practices into development and operational workflows
* Security Automation & Infrastructure Management: Design and implement automation strategies for security monitoring, auditing, and incident response
* Cost Efficiency through Security: Contribute to cloud cost management by optimizing cloud resources without compromising on security.
* Incident Response & Threat Management: Participate in incident response efforts to support timely identification, analysis, containment, and remediation of security threats. Contribute to post-incident reviews, help maintain incident response playbooks, and support internal teams by sharing learnings and updated procedures.

Why Youll Love Working Here:


* Flexible hybrid work model: three days a week at our Jerusalem office
* Monthly wellness reimbursement - from therapy to gel manicure, it's up to you
* Full Keren Hishtalmut, private health and dental insurance
* Volunteer days, donation matching, Yoga and Pilates
* A supportive, collaborative culture that puts our people first

Required Staff Windows Detection Engineer
What are we looking for?
We are looking for a talented detection engineer, someone who looks at the world differently, who explores, hunts, lives to beat the system and challenge it. Someone who can address tough security problems and deliver solutions quickly.
Why us?
Because you will meet extraordinary challenges facing the newest attacks and tech obstacles and overcoming them.
You will work with the very BEST in the industry in a flexible and independent environment.
You will influence the design of a disruptive product that will shape the security industry of tomorrow.
What will you do?
You will be responsible for detecting the newest malware and exploits based on our EPP platform. The role includes an end to end responsibility for behaviour based detection capabilities, starting from reversing the samples, designing new methods to detect or prevent those, and implementing it in the product in the end. You will be developing and using internal research tools, PoCs and discovering new ways to detect/prevent exploitation attacks (EoP, drive-by attacks and more). At the end of the day, your deliveries will enhance the security of dozens of millions of Windows endpoints which are protected by our platform.

Required Staff Windows Detection Engineer
What Are We Looking For?
Were looking for people who are relentlessly curious and committed to continuous learning. AI is reshaping every function across our business, and we enable every team member, regardless of role or level, to build fluency in AI tools and concepts. Those who thrive here actively seek out new solutions, experiment thoughtfully, and apply what they learn to drive better, faster, smarter outcomes.
As a Staff Windows Detection Engineer, you will research and detect the latest malware and exploits on the EPP platform. You will reverse-engineer samples to design and implement robust detection methods that prevent sophisticated attacks. Additionally, you will develop custom research tools and PoCs to strengthen protection across millions of endpoints.
Why us?
Because you will meet extraordinary challenges facing the newest attacks and tech obstacles and overcoming them.
You will work with the very BEST in the industry in a flexible and independent environment.
You will influence the design of a disruptive product that will shape the security industry of tomorrow.
What will you do?
You will be responsible for detecting the newest malware and exploits based on our EPP platform. The role includes an end to end responsibility for behaviour based detection capabilities, starting from reversing the samples, designing new methods to detect or prevent those, and implementing it in the product in the end. You will be developing and using internal research tools, PoCs and discovering new ways to detect/prevent exploitation attacks (EoP, drive-by attacks and more). At the end of the day, your deliveries will enhance the security of dozens of millions of Windows endpoints which are protected by our platform.

Required Senior Windows Detection Engineer
What Are We Looking For?
Were looking for people who are relentlessly curious and committed to continuous learning. AI is reshaping every function across our business, and we enable every team member, regardless of role or level, to build fluency in AI tools and concepts. Those who thrive here actively seek out new solutions, experiment thoughtfully, and apply what they learn to drive better, faster, smarter outcomes.
As the Senior Windows Detection Engineer, you will research and detect the latest malware and exploits targeting the EPP platform. You will reverse-engineer samples to design and implement robust detection methods that prevent sophisticated attacks. Additionally, you will develop custom research tools and PoCs to enhance security across millions of endpoints.
Why us?
Because you will meet extraordinary challenges facing the newest attacks and tech obstacles and overcoming them.
You will work with the very BEST in the industry in a flexible and independent environment.
You will influence the design of a disruptive product that will shape the security industry of tomorrow.
What will you do?
You will be responsible for detecting the newest malware and exploits based on our EPP platform. The role includes an end to end responsibility for behaviour based detection capabilities, starting from reversing the samples, designing new methods to detect or prevent those, and implementing it in the product in the end. You will be developing and using internal research tools, PoCs and discovering new ways to detect/prevent exploitation attacks (EoP, drive-by attacks and more). At the end of the day, your deliveries will enhance the security of dozens of millions of Windows endpoints which are protected by our platform.

As a Security Specialist, you will play a meaningful role in shaping how our company operates and scales its security posture. You will be the hands-on backbone of our security team, you will keep our systems running, respond to alerts, and ensure our SDLC is secure from commit to production.
You will work closely with R&D, DevOps, and the IT team, take ownership over daily security operations and automations, and help transform complex security threats into clear, structured outcomes.
Responsibilities
Own and execute daily security operations with independence and accountability, including monitoring, triaging, and responding to alerts across all platforms.
Collaborate with R&D and DevOps to align security priorities within the CI/CD pipeline and embed secure coding practices into the development lifecycle.
Turn ambiguity into structured processes by building SOAR playbooks to automate repetitive tasks and creating detection rules tuned to our companys environment.
Drive high-quality execution in vulnerability management, coordinating remediation with engineering teams according to strict SLA timelines.
Communicate clearly by documenting incident root causes, maintaining security dashboards (MTTD/MTTR), and reporting on security metrics.
Continuously improve workflows by tuning security tools (EDR, CNAPP, IAM), suppressing false positives, and automating evidence collection for compliance.
What Success Will Look Like
Success in this role means becoming a trusted, reliable contributor who brings clarity and stability to our companys security environment.
Within the first months, you are expected to:
Take full ownership over the security alert workflow and operate independently in incident investigation.
Deliver consistent, high-quality outcomes in managing our security tooling stack (EDR, IAM, and secrets management).
Proactively identify gaps in the SDLC security gates or inefficiencies in manual triage and address them through automation.
Build strong working relationships with the Engineering and IT teams based on trust and accountability.
Contribute to a calmer, more predictable, and better-organized security environment by reducing noise and automating toil.

We are looking for a strategic leader to evolve our Threat team into a comprehensive
Deep Research Group
. As the Head of Research, you will lead innovation across AI Security, Threat Intelligence, and Intelligence, transforming raw research into core platform differentiators. This is a pivotal leadership position responsible for delivering high-signal content and product-impacting discoveries that will directly influence our expansion into the enterprise market.
Responsibilities:
●
Organizational Leadership:
Lead, mentor, and scale a diverse group, including the Threat Research Team, Offensive Research Team, AI Research & Innovation Team, and OSINT/Vulnerability squads
●
Strategic Delivery:
Oversee the lifecycle of major research initiatives, from initial discovery to full productization, ensuring deep technical findings are translated into user-facing value.
●
Proactive Hunting:
Drive a proactive hunting strategy, utilizing external scanning and internal signals to uncover emerging campaigns and validate novel threats before they become widespread.
● Cross-Functional AI Integration:
Collaborate with the AI Lead and Engineering to integrate proprietary intel into our detection models and strengthen our AI-driven security architecture.

We are seeking an experienced Vulnerability Researcher to join our team, where our ethos of customer-centric problem solving, ownership, professionalism, and resourcefulness are at the heart of everything we do. The team faces complex research issues daily, solving new challenges and constantly improving the existing solutions. In this key position, you'll dive deep into complex security puzzles, pushing the boundaries of our vulnerability research and solutions. Collaborating on challenges with our team means working with the leading cloud platforms (AWS, GCP, Azure) and leveraging advanced technologies like Kubernetes, EBPF, Docker, and more.
Responsibilities :
Vulnerability research in the major Cloud providers and cutting-edge technologies.
Collaborate with teams across the organization, including Product, and GTM, to develop and integrate top-tier features.
Conduct deep technical research into cloud-native environments.
Lead offensive investigations in Kubernetes, eBPF, AI/ML‑based anomaly detection, and runtime security, translating findings into production‑grade detections.
Create authoritative content - white‑papers, conference papers, blogs, and release notes that educate users and elevate brand.
Deep dive into threat detection and product content that provide our customers deep insights and added value.

Were looking for a highly technical and creative Security Researcher to join our research group. This role is central to navigating complex security landscapes, advancing our CNAPP offerings, crafting sophisticated algorithms, and pioneering cloud security research. Working alongside a diverse team, youll explore the cutting edge of cloud and AI-driven security, uncovering critical vulnerabilities, developing novel detection techniques, and driving impactful research publications. Join us in shaping the future of cloud security, where your work not only advances our technology but also deeply resonates with our commitment to exceeding customer expectations, streamlining for simplicity, and tackling challenges with creative solutions.
Responsibilities :
Collaborate with teams across the organization, including Product, Frontend, DevOps, and GTM, to develop and integrate top-tier features.
Conduct deep technical research into cloud-native environments.
Lead initiatives from their inception through to deployment, emphasizing backend system efficiency, scalability, and reliability.
Innovate in Defense Evasion, amplifying the capabilities of our agents and engines.
Forge new paths in cloud security research and cyber security algorithm development.
Deep dive into threat detection and product content that provide deep insights and added value to our customers.

We are looking for a Security Analyst to join our MDR team. In this role, you will be part of our security function, focusing on proactive reviews and providing advanced guidance to customers. This is an opportunity to develop your expertise in cloud security while working closely with analysts, researchers, and engineers.
Responsibilities :
Assist in fine-tuning detection and response mechanisms.
Support proactive reviews of customer environments to identify risks, exposed attack surfaces, and recommend improvements.
Lead and conduct in-depth security investigations, documenting outcomes and developing playbooks to enhance future detection and response.
Collaborate with Security Analysts, Research, and Backend teams to enhance detection quality.
Contribute to the handling of complex or critical incidents escalated from Tier 1/2.
Participate in recurring customer meetings, helping translate security findings into clear, actionable recommendations.
Stay up to date with emerging threats, attack techniques, attack surfaces, and best practices in cloud security.
Contribute to the development and training of AI-driven detection models, leveraging machine learning to improve investigation accuracy and response efficiency.

Were looking for a highly skilled Technical Support Engineer to lead the charge in troubleshooting complex technical issues, ensuring exceptional customer satisfaction, and providing strategic solutions. Youll play a key role in documenting solutions, escalating critical cases, and leveraging your cloud expertise to deliver unparalleled support and build strong, lasting relationships with our customers.
Responsibilities :
Provide accurate and timely support via Slack, chat, or email to troubleshoot and resolve customer issues.
Diagnose and resolve technical problems, escalating complex issues to R&D or Product when needed.
Build strong relationships, educate customers on product features, and maintain a professional, supportive tone.
Create and update support documentation while logging all interactions in the support system.
Enhance skills through ongoing training to maintain technical excellence and deliver top-tier support.

Required Senior Cloud Security Architect
Position Overview:
As a Cloud Security Architect, you will be responsible for defining and strengthening the security posture of our products and cloud environments. You will lead threat modeling, risk assessments, and the design of secure architectures, while guiding teams in implementing effective security controls and secure development practices. Working closely with developers, engineers, and management, you will ensure security is embedded throughout the product lifecycle and clearly communicate complex concepts across the organization. This role requires strong technical expertise, strategic thinking, and a proactive approach to emerging threats.
Key Responsibilities:
Conduct Threat Modeling and Security Risk Assessment to identify weaknesses in existing security measures and develop strategies to address them.
Design Security Architecture that withstand attacks and ensure the confidentiality, integrity, and availability of the product. This involves establishing secure configurations, access controls, authentication mechanisms, and encryption methodologies.
Implementing Security Controls guiding the integration of secure coding practices, establishing secure development lifecycles, and ensuring adherence to established security standards.
Collaborate with stakeholders including developers, engineers, and management teams. Communicate complex security concepts in a clear and concise manner, ensuring that all parties understand the importance of incorporating security measures into the product development process.
Stay updated with emerging threats and remain vigilant, continuously monitoring emerging threats and vulnerabilities.

Required Security Researcher
Position Overview:
Join our Forensic Research Group and take part in uncovering hidden data across mobile applications and cloud ecosystems. The team identifies, analyzes, and extracts forensic artifacts from mobile apps, APIs, cloud services, and raw binary data.
Research areas include protocol analysis, data extraction, file format reverse engineering, and decryption. The team specializes in black-box reverse engineering and advanced mobile analysis across Android and iOS.
You will investigate how mobile applications interact with cloud services and APIs, uncover hidden data flows, and extract forensic artifacts. Your work will include analyzing network traffic, reverse engineering API communication, and understanding data exchange between mobile apps and backend systems. You will conduct research across mobile platforms and cloud environments, reverse engineer protocols and data formats, and develop production-grade code in C# and Python to support large-scale data extraction and analysis, while maintaining internal parsers and research infrastructure.