לוח משרות דרושים הייטק אבטחת מידע / סייבר משרה מלאה

We are looking for a hands-on security researcher who combines an attacker mindset, fraud-domain curiosity, strong technical depth, and data analysis skills. You will investigate real-world fraud patterns, reproduce attacker techniques, analyze telemetry, enrich our data collection capabilities, discover new security signals, and work closely with product, data, and engineering teams to turn research insights into production-grade detection and prevention mechanisms.
This role is especially relevant for researchers with experience in browser technologies, mobile-native applications, or both. You may work on desktop and mobile browsers, browser APIs, browser automation, client-side signals, native mobile applications, Android/iOS behavior, mobile security, emulators, device signals, and mobile automation.
You will help expand our visibility into new signals and patterns that improve fraud detection, model performance, and customer protection.
If you are a talented researcher who enjoys solving complex problems, working with messy real-world data, and building practical defenses against modern fraud and abuse, we want you to join our team.

We are seeking an experienced Security Engineer to join our team and take ownership of our enterprise security infrastructure. In this role, you will be responsible for managing, monitoring, and optimizing our security stack to protect the organization against evolving cyber threats. You will play a critical role in ensuring the security and integrity of our network, endpoints, cloud services, and email communications.
What youll do:
Manage and maintain FortiGate firewalls, including policy configuration, VPN setup, traffic monitoring, and firmware updates to ensure robust network perimeter security, Hands-on experience with next-generation firewalls, preferably FortiGate
Administer Cisco Meraki cloud-managed networking infrastructure, including security appliances, access points, and network segmentation policies
Oversee Netskope CASB and SASE solutions to enforce cloud security policies, manage data loss prevention (DLP), and ensure secure access to cloud applications
Monitor and respond to security incidents using CrowdStrike EDR, including threat hunting, investigation, containment, and remediation of endpoint threats
Manage Abnormal Security platform to detect and respond to advanced email threats, including business email compromise (BEC), phishing, and account takeover attacks
Administer Kandji MDM solution for Apple device management, ensuring endpoint compliance, software deployment, and security policy enforcement across the Mac and iOS fleet
Secure and manage Google Workspace environment, including user access controls, security configurations, and audit log monitoring
Develop and maintain security documentation, playbooks, and incident response procedures
Collaborate with IT and DevOps / R&D teams to implement security best practices across the organization
Conduct regular security assessments, vulnerability scans, and risk analyses
Stay current with emerging threats and security trends to continuously improve the organization's security posture
Experience managing cloud-based networking solutions such as Cisco Meraki

We're seeking an exceptional, results-oriented Cyber Security Engineer who will be responsible for designing, implementing, and maintaining security measures to protect our computer systems, networks, and data. Reporting to the Cyber Security Team Leader, the Cyber Security Engineer will play a crucial role in maintaining a robust cybersecurity infrastructure, mitigating risks, and protecting against cyber threats for our organization
What will you be doing:
Implementing and managing cybersecurity tools and technologies such as antivirus (AV), Extended Detection and Response (XDR), Data Loss Prevention (DLP), Privileged Access Management (PAM), email security solutions, Endpoint Privilege management and Application Control (EPM), vulnerability assessment tools, Prisma browser, OPSWAT, and Zero Trust, solutions and more.
Designing, implementing, and maintaining security measures to protect computer systems, networks, and data.
Developing and implementing security policies, standards, and procedures.
Collaborating with teams from various departments within the organization to ensure the integration of security best practices into infrastructure design and development.
Providing security guidance and support to project teams and business units.
Remaining up-to-date with the latest cybersecurity trends, technologies, and threats, and advising on security enhancements accordingly.

The Cyber Security team is looking for a highly motivated GRC Specialist to join our team and take ownership of our Governance, Risk & Compliance program.
In this role, youll work closely with the CISO and cross-functional teams to embed security and compliance into everything we do. enabling the business to scale securely while meeting regulatory and customer expectations.
This is a high-impact position for someone who thrives in dynamic environments and wants to build, improve, and influence how security is managed across the organization.
What will you be doing:
Own and lead the organizations Governance, Risk & Compliance (GRC) program
Reporting the CISO to define and execute a GRC strategy aligned with business objectives and risk appetite
Develop, implement, and maintain security policies, standards, and procedures aligned with industry best practices and regulatory requirements
Lead and manage risk assessment processes across cybersecurity, IT, third-party, and operational domains
Maintain and actively manage the risk register, ensuring risks are identified, prioritized, tracked, and remediated
Drive and manage compliance programs (e.g., ISO 27001, NIST, CIS, GDPR), ensuring continuous audit readiness
Lead internal and external audits end-to-end, including evidence collection, auditor coordination, and remediation tracking
Manage third-party risk (TPRM), including vendor security assessments, questionnaires, and ongoing monitoring
Support product and engineering teams by integrating security and compliance requirements into new features and systems
Build and deliver risk and compliance reporting, including dashboards, KPIs, and executive-level insights
Translate technical risks into clear, business-relevant communication for leadership and stakeholders
Drive security awareness initiatives and promote a security-first culture across the organization

The cyber & information security department is looking for a Security Solutions Architect to support our business and drive its growth.
As a Security Solutions Architect, you will play a pivotal role in information security department, contributing to the overall success of company. This position offers an exciting opportunity for individuals who are passionate about field and are eager to make a meaningful impact through responsibilities.
In this role, you will work closely with the IT, R&D, finance, and other departments in the company.
In this job you will have the opportunity to make big impact on the security level of the company.
What will you be doing:
Develop and lead information security strategies by defining and implementing security policies, procedures, system hardening, incident response, disaster recovery, and addressing emerging cybersecurity threats and best practices.
Ensure secure project architectures by overseeing project and system designs to meet security requirements and integrating risk analysis.
Collaborate across teams by working with development, infrastructure, and security teams to resolve issues and implement improvements.
Act as a security design authority by reviewing, approving, and providing security sign‑off on solution architectures, including threat models, trust boundaries, and architecture decision records.
Participate in strategic meetings by engaging in project steering committees and regular discussions to drive security initiatives.
Conduct security reviews and risk assessments by assessing product features, technologies, and applications to meet security standards.
Plan and design security solutions by developing solutions to identify, protect, detect, respond, and recover from cyber threats.

Required Tetragon Threat Detection Engineer - Isovalent
About this role:
Cilium Tetragon is a flexible, Kubernetes-aware security tool, with real-time observability and enforcement. Leveraging the power of eBPF, Tetragon offers a low-overhead, in kernel solution that enhances security posture by monitoring system behaviors such as process executions, system call activities, and both network and file access events.
Tetragon Threat Detection Engineers primarily focus on creating and maintaining
Tetragon runtime security policies, based on the latest threat intelligence, vulnerability disclosures, and their own research.
Policies can act either as a mitigation to known vulnerabilities or as monitoring and protection against unknown security issues.
What youll do:
Develop and maintain Tetragon runtime security policies to ensure customers have good visibility of suspicious activity on their infrastructure and are protected against the latest emerging threats
Help design frameworks and architectures that allow customers to easily consume policies and understand their overall security posture
Monitor vulnerability disclosures (CVEs) and the latest threat intelligence to develop Tetragon runtime security policies
Work with software engineers at Isovalent and us to improve and enhance the capabilities of Tetragon security policies
Interact with solution architects and customers as necessary to support and deploy Tetragon security policies in production
Publish content and give talks based on your work.

As a Security Analyst , you will work with network data and customer-facing teams to analyze raw traffic, create data-driven insights, and design solutions that enhance product value and address client needs.

Responsibilities
As a Security Analyst , Your impact will be:

Analyze raw network traffic to uncover anomalous activities.
Perform in-depth data analysis utilizing various tools
Take responsibility for all data needs for certain clients
Create useful and creative data queries
Investigate complex security incidents within cyber-physical environments.
Develop heuristics and logic-driven analysis by both security and network insights to improve the value of the product
Initiation, Prioritization, and design of R&D work based on customer needs
Work with customers and our customer-facing teams to design new features, improve their workflows, and address issues

As a Vulnerability Research Team Lead , you will lead a world-class group of vulnerability researchers in analyzing complex cyber-physical systems. You will balance hands-on technical excellence with people management, guiding your team through deep-dive disassembly, code audits, and exploit development. You will be responsible for the team's research roadmap, ensuring we stay ahead of emerging threats while fostering a culture of innovation and professional growth.

Responsibilities
As a Vulnerability Research Team Lead, your impact will be:

Leadership & Mentorship: Lead, hire, and develop a team of high-performing Vulnerability Researchers, fostering a collaborative and high-standard environment.
Research Strategy: Define and execute the team's research roadmap, prioritizing targets that provide the highest value to customers and products.
Technical Oversight: Provide expert guidance on static/dynamic analysis, reverse engineering, and exploit development projects.
Cross-Functional Collaboration: Work closely with R&D, Product Management, and Threat Intelligence teams to translate research findings into actionable security features.
Thought Leadership: Represent research in the industry through blogs, whitepapers, or conference presentations (BlackHat, DEF CON, etc.).

We're looking for a security practitioner who wants to go deeper than monitoring dashboards and triaging alerts. Someone who understands what good detection looks like, knows their way around a SIEM, and isn't afraid to roll up their sleeves with APIs and automation. You'll be the bridge between the security products our customers already trust and the our company platform that validates whether those products are actually doing their job.

Opportunity Highlights
Our integrations team is responsible for connecting our company with the security products that make up enterprise defense stacks worldwide - EDR and XDR platforms, SIEMs, vulnerability management tools, threat intelligence platforms, email security products, and cloud security solutions.

You'll own the full lifecycle of these integrations: building new ones, keeping existing ones healthy, and setting up realistic lab environments that mirror what our customers actually run. When something breaks in the field (or can't be reproduced internally) you'll be the one figuring it out.

You won't be doing this alone. You'll work closely with our Product, Engineering, and Security teams, and you'll have access to modern AI-powered development tools that let you move fast without sacrificing quality.

The Impact You Will Have

Design, build, and maintain integrations with leading third-party security products
Own the full lifecycle of existing integrations - maintenance, bug fixes, upgrades, and reliability improvements
Research vendor APIs, authentication flows, event schemas, and product capabilities to unlock new integrations
Translate complex security telemetry into normalized, actionable data
Build and maintain lab environments that mirror real enterprise security deployments
Reproduce field scenarios, validate detections, and troubleshoot integration behavior end-to-end
Investigate issues in customer-like environments when they can't be reproduced internally
Continuously evaluate new security technologies and identify integration opportunities
Use modern AI-driven development tools to accelerate delivery and improve quality

We are seeking a detail-oriented, self-driven Security Analyst, based in Israel, to join the Risk and Compliance team and operate our ISO-aligned Event Management Process end-to-end. This role is the front door for security events in our company - the person who makes sure that every reported security event (from employees, vendors, and automated monitoring) is triaged, classified, escalated where required, and closed with documented evidence.

The Security Analyst is both an operator and a process owner. This is an excellent entry-point role for a Computer Science graduate or similar background person looking to build a foundation in security operations and compliance. You will run the daily flow of events, partner with Corporate IT, R&D/DevOps, and the CISO to drive down events, implement improvements and take corrective and preventive actions. You will report directly to the Chief Information Security Officer and work closely with the broader employee base engaging them directly.
This role covers five primary pillars: Security Event Intake and Triage; Classification, Escalation and Coordination; Process Operations and Continuous Improvement and Ai Automation.
This is a temporary position with an hourly pay.


RESPONSIBILITIES:
Event Intake & Triage
Own the front door for all reported security events - internal security hotline , IT services alerts, employee reports and automated monitoring - and make sure nothing falls through the cracks.
Triage security events within defined SLAs; gather context from logs, endpoints, identity systems, and SaaS admin telemetry to make a fast, defensible first call.
Maintain the Security Event Register as the single source of truth for every reported event - timeline, evidence, classification, owner, status, root cause, and corrective actions.
Review mail service admin holds that require review and investigation, user engagement and follow-up
Classification, Escalation & IRT Coordination
Classify security events against the defined severity matrix; distinguish security events from incidents and apply the agreed escalation criteria consistently.
Notify the CISO when escalation criteria are met, evidence collection, and timeline capture during incidents.
Process Operations & Continuous Improvement
Own and operate our ISO-aligned Event Management Process end-to-end - from intake through triage, response coordination, closure, and lessons learned.

Were looking for curious, motivated students to join our GRC (Governance, Risk & Compliance) team and gain hands-on experience at the intersection of security, compliance, and technology.
This is a unique opportunity to be part of a team working on real-world audits, security processes, and innovative GRC automation using AI.
What Youll Be Doing
Youll be involved in a variety of activities across GRC and Security:
Audit & Compliance
Support ongoing audits and certifications (ISO, ITGC, TISAX, SOC 1)
Assist with evidence collection, tracking, and documentation
Help ensure controls are properly implemented and monitored
Security & Risk
Participate in vendor risk assessments and system security reviews
Support Business Impact Analysis (BIA) activities
Work with teams to identify and track risks
Automation & AI in GRC
Assist in building and improving automated GRC processes
Explore and apply AI tools to streamline compliance and security work
Help optimize workflows and reduce manual effort.

We help organizations reinvent themselves. Through data, technology, and strategic thinking, we lead transformation processes that reshape how organizations operate, make decisions, and grow. If youre looking to work in an environment that encourages initiative, challenges ideas, and creates real impact - this is the place for you. Integrity, excellence, and innovation are not just values - they are our standard.
Our Cyber & Cloud Security Department is seeking an Information Security Architect to join us. This role focuses on leading and advising clients and internal teams on integrating information security into complex technology, cloud, and digital transformation projects.
Responsibilities:
* Lead security aspects in projects such as system implementations, cloud migrations, and digital transformation initiatives
* Design and define end-to-end security architectures and protection strategies across cloud and on-prem environments
* Provide expert guidance on Security by Design, Privacy by Design, and emerging areas such as AI Security
* Conduct risk assessments, threat modeling, and comprehensive security reviews
* Support implementation of security solutions and oversee security testing activities
* Define security requirements and support RFP processes and vendor evaluations
* Collaborate closely with development, product, infrastructure, cloud, and DevOps teams
תת מחלקה:
יעוץ סייבר ואבטחת מידע

As a talented researcher, you will be joining the industrys leading digital intelligence Security Research Labs group. In this position you will be taking part and leading new projects in little-explored vulnerability research territories, producing world-unique capabilities to extract evidence from phones and other embedded devices. Recent phones (from burner phones to the latest flagships) are increasingly challenging from a forensics perspective, and involve hardware-backed encryption (FDE/FBE), secure boot chains (Verified Boot/dm-verity), evolving hardened SELinux policies, as well as adventures in ARM TrustZone secure worlds.
Key Responsibilities:
You will join Cellebrites digital intelligence Security Research Labs Group and be a part of a team of passionate researchers, dedicated to solving modern digital intelligence challenges, years ahead of others in the industry. Our world-class research results assist law enforcement by enabling lawful evidence extraction, and putting criminals behind bars, every day.
You are a security researcher who cares about the ethical use case for his/her work, and if the art of engineering and crafting a platform-wide native payload in a fragmented ecosystem of gaping variance is the kind of challenge you appreciate, you belong with us. We need your help to make the world a safer place.