לוח משרות דרושים מומחה אבטחת מידע / סייבר משרה מלאה

Requirements:
Experience:
o Minimum of 5+ years of experience in IT infrastructure system and security within a large enterprise environment.
o In-depth knowledge of Windows Server administration (Active Directory, Group Policy, IIS, etc.).
o Experience with hardening operating systems according to security best practices (e.g., CIS benchmarks)
o Proven track record of securing complex, multi-vendor IT infrastructure systems, both on-premises and in public cloud environments (AWS, Azure, GCP).
o Experience with virtualization platforms (e.g., VMware vSphere, Hyper-V).
Technical Expertise:
o Deep understanding of IT infrastructure components, including servers (Windows and Linux), networking devices (firewalls, routers, switches).
o Strong proficiency in security principles and practices, including vulnerability management, threat detection, incident response, and security hardening.
o Expertise in implementing and managing security tools and technologies, such as:
Intrusion Detection/Prevention Systems (IDS/IPS)
Security Information and Event Management (SIEM) systems
Vulnerability scanners (e.g., Nessus, Qualys)
Firewalls (e.g., Palo Alto Networks, Fortinet)
Cloud security tools and services (e.g., AWS Security Hub, Azure Security Center, Defender for cloud).
IAM solutions.
o Proficiency in network security protocols (e.g., TCP/IP, DNS, DHCP, VPN, TLS/SSL).
o Experience with scripting languages (e.g., Python, Bash, PowerShell) for automation.
o Experience with security compliance frameworks (e.g., SOC 2, ISO 27001, NIST).
Analytical and Problem-Solving Skills:
o Excellent analytical and problem-solving skills to identify and resolve security vulnerabilities and incidents or system issues
o Ability to perform root cause analysis and implement effective remediation measures.
Communication and Collaboration:
o Strong written and verbal communication skills to document security procedures, report incidents, and collaborate with cross-functional teams.
o Ability to work effectively in a global team environment.
Preferred Qualifications:
Relevant security certifications (e.g., CISSP, CISM, CompTIA Security+).
Experience with network automation.
Experience with disaster recovery and business continuity planning.
Personal Attributes:
Proactive and self-motivated with a strong sense of ownership.

Requirements:
3+ years of experience as a threat researcher, incident responder, malware analyst, detection engineer or other relevant roles.
Practical experience in tracking state-sponsored or advanced financially motivated actors including malware, infrastructure and TTPs.
Profound knowledge and understanding of malware and common attacking techniques.
Hands-on experience in automating and optimizing hunting and enrichment processes using code (preferably Python).
Familiarity with query languages and data exploration tools.
Ability to translate technical findings into actionable detection and prevention signatures.
Experience in writing technical blog posts and technical analysis reports.
Experience in public speaking and presentation of research in cyber security conferences .
Fluent English.

Requirements:
2 years experience with intelligence analysis processes (army included), including Open-Source Intelligence (OSINT) and Web Intelligence (WEBINT), Virtual HumINT gathering, link analysis, and threat actor profiling.
Strong problem-solving and decision-making skills.
Technically inclined, and knowledge of analytical tools, including excel
Fluent English (written and verbal).
Proficiency in Ukrainian, Russian, Mandarin or Persian is a plus.

Requirements:
Project/Operations Management experience
R&D background including software development - MUST!
Proven ability to lead a project end to end, drive peers to execution and work with peers from different disciplines
Experience in matrix management of multidisciplinary teams including RND, QA, Tech writers, Management
Outstanding communication and presentation skills
Independent, Confident, Self-directed with a can-do attitude
It would be great if you also have:

Background in the security field
Experience working with customers
Background in cloud technologies
Knowledge and experience in CI/CD and agile methodologies
Familiarity with Check Point products

Requirements:
Requirements:
* Proven hands-on experience of 5+ years in cyber security/systems/computer networks, with emphasis on IT/OT security.
* Experience with one or more of the following solutions: EDR, DLP, Mail repay, CASB, DLP, NAC, and Microsoft E5 security.
* Familiarity with IT/OT security concepts and controls
* Familiarity with scripting languages
* Good knowledge of IT systems and security controls
* Hands-on, proven ability to deliver.
* Autonomous worker, willing to take ownership and lead.
* Strong collaboration & communication skills
* Proficiency in English SolarEdge recognizes its talented and diverse workforce as a key competitive advantage. Our business success is a reflection of the quality and skill of our people. SolarEdge is committed to seeking out and retaining the finest human talent to ensure top business growth and performance.

Requirements:
Technical Expertise:
Solid understanding of networking fundamentals (HTTP/S, TCP/IP, DNS, routing, etc.)
Strong knowledge of cybersecurity principles, including vulnerabilities and exploits
Experience or familiarity with developing and validating network-based signatures
Experience in coding - Python
Experience with code repositories (Git, BitBucket)
Experience with Docker technology - advantage
Hands-on experience with penetration and scanning tools like Metasploit, Nuclei and Nmap - ****advantage

Analytical Skills:
Strong problem-solving skills and keen attention to detail
Ability to analyze complex network data and identify anomalies

Communication:
Practical verbal and written communication skills for transparent reporting and teamwork

Requirements:
4-5 years of experience in software development.
Leadership experience or a strong background in mentoring and guiding technical teams.
Proficiency in Go a significant advantage.
Background in security preferred but not required.
Strategic thinking and problem-solving skills at a high level.
Ability to collaborate with various teams and stakeholders within the organization.
Excellent communication and leadership skills, with a passion for mentoring and guiding teams.

Requirements:
Vulnerability research and exploit development experience
Strong analytical and problem-solving skills
Knowledge of programming languages: Assembly, C and Python
Experience with reverse engineering tool

Requirements:
In-depth knowledge of Android OS Internals
At least 2 years of experience in one or more of the following areas: malware research, mobile forensics and vulnerability research
At least 2 years of hands-on experience with code analysis tools (both static and dynamic), such as: Frida, JADX, JEB, IDA or similar tools
Experience with evasion techniques and anti-RE techniques
Software development skills in at least one programming language: Java, C/C++, Python
B.Sc. in a technological field or a relevant IDF background
Ability to work independently and as a part of a team
Then we might have a match!

Requirements:
Minimum 3 years experience: Cloud infrastructure, Cloud security, securing Linux and Windows environments, AWS environments, and Azure environments- Must
2 Years of experience with IT software engineering in cloud-based environments. Intune, Azure AD, PAM- Must
Knowledge of security tools such as VPNs, firewalls, EDRs, CDN, CSPM,Cloudflare, patch management, and handling complex high-level systems- Must
Hands-on experience in AWS.
Familiarity with DevOps practices, K8s, version control, and security in K8 env and CI-CD process.
Experience with securing of complex cloud environments (Control Tower).
Experience with KMS, Secret Management, and Certificate Management.
Networking Skills: Experience with enterprise-level networks, including protocols, routing, and switching.
Strong understanding of Layer 7 security tools and protocols
Familiarity with ISO27001, SOC2, Dora, and optimizing cloud environments to keep compliant and up-to-date
Communication Skills: Excellent written and oral communication skills in English; ability to work collaboratively in a team.
Nice to Have:
Cloud Migration: Experience with cloud migration processes.
Hands on application security knowledge
Experience with Open source tools and systems
Knowledge in infrastructure-as-code (IaC) tools like Terraform, CloudFormation, or Pulumi.
Scripting and Automation: Proficiency in Python, PowerShell, or Bash scripting for automation.

Requirements:
5+ years of experience in web application penetration testing following OWASP methodologies
Hands-on experience with offensive security tools such as Burp Suite, Fiddler, SQLmap, Metasploit, Nmap, Netcat, BloodHound, Empire, and Wireshark
Strong understanding of network security concepts, including firewalls, VPNs (IPsec & SSL), IDS/IPS, and WLANs
Proficiency in scripting and automation (Python, PowerShell, JavaScript, Bash)
Experience managing and securing Windows and Unix/Linux environments
Knowledge of database security, including functions, interactions, and communications
Ability to effectively communicate findings to technical and non-technical stakeholders, including C-level executives
Hands-on experience in exploiting security vulnerabilities in lab or real-world environments (e.g., Capture the Flag challenges)
Experience in penetration testing for operational technologies (OT) - Advantage
OSCP / OSWE certifications or equivalent ethical hacking certifications - Advantage

Requirements:
7+ years of experience leading penetration testing, application testing, and red team engagements
Experience with security tools such as Nmap, Metasploit, Kali Linux, Burp Suite Pro, etc., as well as other various commercial and self-developed testing tools
Experience with scripting languages such as python, ruby, POSIX shell, as well as familiarity with programming languages such as: C/C++/ObjC/C#, Java, PHP, or .NET
Detailed technical knowledge in multi-security domains (Web, Network, OS, DB, IoT, Cloud, SCADA- advantage)
Knowledge in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
Expertise in performing advanced exploitation and post-exploitation attacks as part of ethical hacking exercises including writing proof-of-concept exploits and creating custom payloads and modules for common ethical hacking frameworks and tools

Requirements:
3-5 years of proven experience in the networking field.
In-depth knowledge of networking and protocols, including a strong grasp of TCP/IP fundamentals and widely used protocols such as DNS, HTTP(S), SMTP, FTP, and VOIP.
Exceptional troubleshooting skills.
Strong presentation and customer-facing abilities.
Proficiency in both written and spoken English.
Demonstrated autonomy, motivation, and self-management skills in the workplace.
Ability to travel approximately 20% of the time for on-site activities worldwide.
Advantageous Skills:

Candidates with the following additional skills will be at an advantage:

Knowledge of Check Point products.
Familiarity with other security products.
Understanding of cloud environments, including experience with Azure, AWS, or Google Cloud.

Requirements:
5+ years of experience in Application Security including penetration testing, deep understanding of major Application Security attacks, vulnerabilities, and mitigations including XSS, CSRF, SQL Injection, Deserialization, RCE, etc.
Experienced with Secure-SDLC methodologies and standards such as Microsoft SDL, OWASP SAMM, and OWASP ASVS
Experienced with threat analysis processes
Experienced with web & mobile application security, API analysis, and unique client/ server architectures
Experienced in code auditing and best practices
Deep understanding of OWASP Top 10 and CWE 25; with proven track record and experience in implementing and integrating remediation strategies
Managerial experience
Relevant certifications such as CEH and EWPTX an advantage
Hand-on proven experience in software development or familiarity with a vast range of high-level programming languages (Java, JS, Python, etc.) an advantage
Familiarity with cloud environments an advantage

Requirements:
3+ years of experience in Application Security Secure-SDLC practices, standards, methodologies, and software team escorting; including standards such as Microsoft SDL, OWASP SAMM, and OWASP ASVS.
Experienced with threat analysis processes.
Deep understanding of OWASP Top 10 and CWE 25; with a proven track record and experience in implementing and integrating remediation strategies.
Familiarity with a wide range of high-level programming languages (Java, JS, Python, etc.) and related secure Software Development Life Cycle (SDLC) activities.
Significant advantage: hands-on experience in application penetration testing.
Advantage: Proven experience in high-level code auditing.
Advantage: experience in CI\CD and CI\CD security.