לוח משרות דרושים מומחה אבטחת מידע / סייבר

We are looking for an Adversarial Builder to lead the defense of our Global Application Landscape-securing everything from our core SDLC and Software Supply Chain to our enterprise-wide AI adoption.
In this hands-on role, you will:
Engineer, Dont just triage: Move beyond manual reviews to build code-driven detection logic and custom AI agents that automate vulnerability hunting, triaging and remediation.
Security by design: Partner with R&D teams (including Infra and DevOps) to define the application-level technical guardrails for internal and external-facing products.
Scout the Frontier: Act as an early adopter of state-of-the-art systems, evaluating and integrating cutting-edge tech from frontier security startups in AI and Cloud Runtime security.
This role demands a practitioner who thinks like an attacker, possesses a developers urge to automate, and has the broad landscape understanding to connect dots across complex, modern domains.
What Youll Do:
Promote Enterprise-Grade Security Initiatives: Engineer and scale the security strategy for entire product ecosystem, spanning both internal infrastructure and external-facing products. You will ensure code security at scale by hardening the SDLC, securing the Software Supply Chain perimeter, and designing the technical guardrails for AI adoption at both the enterprise and product levels.
AI Solutions Builder: scale our security program using AI-driven tools. You will develop and fine-tune autonomous agents to handle complex code analysis, vulnerability hunting, and automated remediation.
Drive Early Adoption of Frontier Tech: Act as a scout and evaluator for the worlds most innovative security startups. Youll partner with cutting-edge vendors in emerging fields like AI Security and Cloud Runtime Security, ensuring remains an early adopter of state-of-the-art defensive systems.
Scale Through Engineering: Move beyond manual reviews. Youll manage and extend AppSec tools to eliminate false positives and build custom logic that reflects our unique codebase.
Collaborative Engineering: Work alongside our in-house DevOps team to rapidly deploy custom security tools at an enterprise grade.

we are looking for a Senior Information Security Engineer.
As a Senior Information Security Engineer, youll be on the front lines of protecting the systems, users, and data at scale. This role is about turning strategy, architecture, and intent into enforced controls, effective detections, and resilient operations. Youll work hands-on with the tools, signals, and incidents that define our real security posture.
If you believe security should be practical, measurable, and embedded into daily operations-and not just documented-we want you on the team.
What the Role Looks Like in Practice
You will be the technical anchor of our internal security posture:
Architectural Ownership: Deploy, manage, and tune enterprise-grade security stacks (EDR, DLP, IAM, CASB, MDM) with a focus on deep integration and automation.
The AI Frontier: Lead the charge on AI Security. You will implement and secure AI-driven workflows, ensuring LLM use is governed and protected against emerging threats such as data leakage and prompt injection.
Proactive Defense: Build and maintain high-fidelity detections and guardrails that align with real-world attack techniques.
Cross-Functional Synergy: Partner as a peer with Engineering, IT, and DevOps to ensure security controls are frictionless, automated, and effective.

We are looking for a passionate and experienced Governance, Risk, and Compliance (GRC) operations specialist to contribute to our companys efforts in making the most security and trusted provider of digital asset management solutions.
This role is critical in driving our day-to-day GRC programs, ensuring they are well maintained, run according to schedule, and align with our business needs.
As the GRC operations specialist, you will oversee the successful implementation and progress of GRC programs, practices, and projects, while collaborating with multiple cross-functional teams within the security department and outside of it.
What You Will Do:
Own, manage, and continuously improve the companys Third Party Risk Management (TPRM) program, making sure it is both aligned with expected security standards and best practices, and meets business requirements and SLAs.
Own, manage, and continuously improve the companys security awareness program, making sure its scope, content, cadence and overall performance are always aligned with the latest and most relevant expectations, while also well received and relevant to the business.
Manage ongoing operations within the GRC team including project management and tracking, financial planning and reporting, annual and periodic planning, and more.
Drive ongoing GRC efficiency through innovation, automation, data-driven decision making research and exploration.
Support and contribute to ongoing GRC operations such as internal and external audits, risk assessments, certification processes, policy management, business continuity program and more.

We are looking for a senior, hands-on Security Operations Lead to build, mature, and operate detection, response, and corporate security capabilities. You will own the engineering, workflows, and processes that keep secure day-to-day, while continuously improving visibility, automation, and operational resilience across both corporate and production environments. This role requires a technical operator who can architect scalable detection and response pipelines, manage endpoint and identity security controls, streamline GTM security enablement, and collaborate across the company to reduce risk. You will balance strategic direction with hands-on execution-ensuring threats are identified quickly, incidents are handled effectively, and the organizations operational security posture remains strong as grows.
Responsibilities:
Own and mature Detection & Response program, including alerting, triage workflows, incident playbooks, and end-to-end response processes.
Build and maintain detection logic, integrations, and automation across logging, SIEM, EDR, cloud telemetry, and internal monitoring systems.
Lead incident investigations, coordinate response across engineering and business teams, and ensure clear communication and post-incident reviews.
Manage Corporate Security Program, including identity and access management, endpoint posture management, corporate data security controls, and DLP practices.
Oversee privileged access workflows and JIT access for corporate and production systems in alignment with least-privilege principles.
Partner with engineering teams to ensure production environments maintain strong security baselines, logging, and monitoring coverage.
Collaborate with GTM/Sales teams to support Security Enablement, including third-party security questionnaires, customer assurance needs, and auditor inquiries.
Build automation-first operational processes that reduce manual overhead and provide consistent, repeatable security outcomes.
Develop and refine detection and response runbooks, escalation paths, and cross-team coordination models.
Maintain and improve incident and operational metrics, dashboards, and KPIs to measure operational efficiency and threat coverage.
Drive the intake and prioritization of security operations requests through Jira and internal workflows.
Work closely with Product Security, Cloud/DevOps, and GRC to ensure shared visibility and aligned operational practices.
Identify operational security gaps, propose improvements, and lead implementation efforts across tooling, processes, and controls.
Promote a culture of proactive detection, fast response, and shared responsibility for organizational security.

,As an Information security engineer, you will be responsible for designing, developing
implementing, and managing complex cybersecurity systems. Both cloud and on-prem
backend development. You will be required to develop software and use monitoring tools to
ensure resilience and high availability. The systems are highly sensitive and will be built with
top-notch security standards (OWASP TOP-10 to say the least). The development is mostly
server-side, with about 20% client-side
Job location- Central Israel
Employment type- Full Time.

We are Looking for a Senior Cyber Security Specialist for an operational position at the core of key intelligence operations
The role involves unique and covert missions, combining independent work with teamwork
Join an award-winning unit renowned for its dynamic and flexible-thinking people
Tackle complex technological challenges, that lead to significant breakthroughs in homeland security matters
Engage in meaningful work with a team of optimistic and driven professionals.
We are seeking individuals who are determined to make a meaningful impact.

We are looking for an experienced Cybersecurity Incident Manager to join our dynamic team of cybersecurity professionals.
Responsibilities
Lead, manage and coordinate incident response efforts, participate in forensic and incident response investigations, including large scale sophisticated attacks, conduct log analysis, host and network-based forensics.
Collaborate with IT and Security teams during investigation.
Generate and present a comprehensive and professional report of findings from investigation.
Serve as the primary point of contact during major incidents, strategies to minimize the impact on the organization.

Providing expert guidance and professional direction to enhance cybersecurity defense levels within the organization.
Leading activities in incident management and proactive threat detection initiatives.
Responsible for formulating and directing technological responses, integrating and directing intelligence data, organizational capabilities and operational capacities, aligned with threat and damage levels as defined by the division.
Developing and maintaining working relationships with CISO's in guide entities and national regulatory, in compliance with legal requirements.
Analyzing and presenting the security readiness of responsible entities cyber threat.

You will join our Cyber Security Operations team and play a key role in protecting our cloud-native and enterprise environments. In this hands-on role, youll design, implement, and operate security controls across AWS, Kubernetes, CI/CD pipelines, and identity systems.
Youll lead incident response efforts, build security automation, and drive continuous improvement of our detection and prevention capabilities in a fast-paced, highly technical environment.
The day-to-day:
Own and enhance security for large-scale AWS environments (IAM, VPC, CloudTrail, GuardDuty, EKS, S3).
Build and operate threat detection, incident response, and DFIR processes across cloud, Kubernetes, identity, and SaaS platforms.
Design and implement security automation for access control, cloud hygiene, incident response, and SIEM workflows.
Drive DevSecOps initiatives, securing CI/CD pipelines and enabling shift-left security.
Develop and tune SIEM detections, threat hunting queries, and automated remediation pipelines.
Manage identity, access, and Zero Trust / ZTNA architectures using IdP, SSO, RBAC, and federation.
Simulate real-world attacks and perform vulnerability discovery to validate security controls.

We are looking for an Information Security Coordinator to join the team responsible for ensuring the organizations compliance with the most stringent information security and privacy standards.



Responsibilities:

Manage and maintain security and privacy standards (ISO 27001, ISO 27701, ISO 22301, SOC2).
Lead risk assessments, gap analysis, and audit preparation.
Coordinate penetration tests and periodic security reviews.
Manage audit findings and respond to customer security questionnaires.
Own the Security Awareness program.
Monitor compliance with relevant regulations and work with external vendors.
Support Business Continuity (BCP/DRP) activities.

We are seeking a highly skilled and motivated PT specialist to join our dynamic team. You will be responsible for conducting comprehensive penetration test in alignment with organizational needs.
Perform in - depth penetration tests to identify vulnerabilities and assess security posture
Provide professional insights during development phases, identify weaknesses and recommend mitigation strategies
Conduct independent research to proactively identify emerging vulnerabilities, attack trends, techniques and tools in the PT domain.
Regularly exercise the organizations defense systems in a diverse and dynamic technological environment, enabling personal and professional growth and direct impact on core organizational activities.

The job includes leading cyber operations, operational technology focus, Study and implement cutting edge technologies for cyber and field operations
Work with the pinnacle of global technology, leveraging the latest advancements in the field.
Demonstrate high analytical and creative thinking skills, extensive technical knowledge and problem-solving abilities in this role.

A Software company, developing a Cloud Security Platform, is looking for a Senior Cloud Security Software Engineer to join her team.

In this role, youll design and build backend components and security features for a scalable cloud security platform, working closely with product, frontend, and infrastructure teams.



What youll do:

Research and adopt new technologies.
Design and implement cloud security features.
Build MVPs for new product capabilities.
Write clean, efficient Go code.
Design data models and database schemas.
Write unit, component, and integration tests.
Debug and troubleshoot production issues.
Participate in code reviews and contribute to team standards.
Collaborate with frontend and platform teams on end-to-end integrations.
Assist with documentation and occasionally represent the product through blogs or talks.

we are looking for a SecOps Engineer.
This is a full-time on-site role located in Haifa for a SecOps professional.
The responsibilities include maintaining and optimizing security operations, identifying and mitigating potential vulnerabilities, implementing security monitoring solutions, and responding to security incidents. The role involves working collaboratively with cross-functional teams to ensure the deployment of robust security measures and policies across systems and infrastructures.