לוח משרות דרושים הייטק אבטחת מידע / סייבר משרה מלאה

Requirements:
What youll need?
Experience: 5+ years in SecOps/IR with hands-on threat detection and mitigation, specifically in cloud-centric, production-scale environments.
Technical Skills: Strong capability in Cloud-focused threat detection, incident response, and analysis of complex attack patterns. Skilled in writing SIEM queries/alerts with an outcome-orientation (e.g., measurable improvements in MTTD or alert fidelity).
Scripting & Automation: Knowledge of Python, SQL, or Bash for SOC automation, with practical experience building SOAR playbooks, data enrichment scripts, and Detection-as-Code solutions.
AI & LLM Security: Understanding of the AI threat landscape (including adversarial ML and OWASP Top 10 for LLMs) and exposure to securing GenAI pipelines.
Investigations: Extensive experience with end-to-end security investigations, deep knowledge of security network protocols, and familiarity with the OWASP Top 10 vulnerabilities.
Security Tools: Hands-on experience managing, configuring, and investigating security events across EDR, Firewall, SIEM, and SOAR platforms.
Core Skills: Strong problem-solving, analytical, and organizational skills. Comfort leading initiatives without direct authority, a security-first approach, and the ability to mentor SOC analysts.

Itd be cool if you also: [NOT A MUST]
Familiar with industry frameworks (ISO 27001, PCI-DSS, SOC2, NIST, etc.) and regulatory requirements.
Have one or more certifications: CRTP, OSCP, OWSP, OSDA, GCIH, GIAC, CSA, CompTIA CySA+, or other relevant certifications.
Experience with building agents and utilizing LLM\AI in day2day work

Requirements:
4+ years of experience in cybersecurity research, detection engineering, threat hunting, or incident response (including military experience).
Have hands-on experience in developing, testing, and tuning detections based on attacker behavior or system telemetry.
Have a solid understanding of networking protocols and technologies (TCP/IP, DNS, SMB, HTTP/S, etc.) and their application in cloud environments.
Be familiar with attacker tactics, techniques, and procedures (TTPs) and the MITRE ATT&CK framework (including Cloud TTPs).
Demonstrate programming skills in Python and SQL with experience analyzing large datasets using common tools.
Have a curious, team-oriented mindset and an interest in applying AI and automation to cybersecurity detection.

Requirements:
Requirements
* 1-3 years of experience in Offensive Security/Cyber.
* Extended knowledge in researching, simulating, and analyzing different application attack vectors.
* Advantage – Experience using a hacking framework or pen-testing tools such as Frida, Magisk, Multiproxy, and Cheat Engine.
* Ability to create analysis plans and execute them, as well as document and troubleshoot errors.
* Ability to understand the system from multiple perspectives, including high-level and low-level technical architecture.
* Experience in Mobile (iOS/Android) analysis environments and automation tools. Advantages
* Bachelor’s degree in a relevant field.
*  Software development and scripting experience.
Company Overview Appdome's mission is to safeguard mobile apps and their users globally. We offer the industry's only patented, centralized, data-driven Mobile Cyber Defense Automation platform, providing rapid no-code, no-SDK security and integrated defenses against fraud, malware, and bots, along with Threat-Events™ UI/UX controls, ThreatScope™ Mobile XDR, and Certified Secure™ DevSecOps Certification. With Appdome, mobile developers and cyber teams can expedite delivery, ensure compliance, and utilize automation for building, testing, and monitoring mobile app security within DevOps and CI/CD pipelines. Our platform is trusted by leading brands across financial, healthcare, m-commerce, consumer, and B2B sectors, securing over 50,000 apps and protecting over 3 billion end users worldwide. Equal Opportunity Employment Appdome is an Equal Opportunity Employer committed to diversity, equity, and inclusion. We evaluate all qualified applicants without discrimination based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or other protected characteristics.

Requirements:
5+ years of experience in SecOps, Security Engineering, or DevSecOps roles
Hands-on experience with cloud environments (AWS preferred)
Strong background in Kubernetes, Microservices and CI/CD pipelines
Experience with SIEM, CSPM, EDR, and vulnerability scanning tools
Solid understanding of threat models, attack vectors, and incident response
Ability to work independently with strong ownership and problem-solving skills

Requirements:
Minimum of 3 years of experience in intelligence analysis, with a focus on WEBINT / OSINT.
Strong understanding of Cyber Threat Intelligence (CTI), the cybercrime ecosystem, and underground information sources.
Excellent analytical thinking and report-writing capabilities, supported by a proven track record.
Fluent in English, both written and spoken.
A proactive, team-oriented attitude and strong multitasking skills.

Requirements:
5+ years of experience in sec-ops positions with relevant certifications
Demonstrable experience working in IT, Networking, Infrastructure, DevOps environments
Deep understanding of cloud platforms (AWS, GCP) and their security best practices(CSPM, ASPM, DSPM).
Strong knowledge of cloud networking(VPC), firewalls, IAM roles, and encryption.
Familiarity with ISO 27001, SOC 2, GDPR, and other security and regulatory frameworks, as part of GRC.
Experience performing or overseeing penetration testing processes.
Experience working with Forensic & Threat Detection Tools such as AWS GuardDuty, Azure Sentinel, Splunk, Qradar, Arcsight, and other SIEM systems
Experience working with multiple EDR and XDR Tools (CS, SentinelOne, MS Defender, etc)
Excellent verbal and written communication skills, capable of explaining technical security concepts to non-technical stakeholders.
Ability to think critically and act decisively under pressure.
Integration and project lead experience

Requirements:
2-3 years of experience in Application Security, with a strong background in secure application design, vulnerability analysis, and risk assessment.
Past experience as a Penetration Tester (Web and APIs), including extensive manual testing (not tool-only).
Strong ability to read, understand, and reason about code, especially in C# and JavaScript.
Deep understanding of OWASP Top 10 and OWASP Top 10 for LLM Applications.
Solid knowledge of OWASP ASVS (Application Security Verification Standard) and its practical application in security reviews.
Proven experience conducting application security reviews, including threat modeling and secure design validation (advantage).
Strong communication skills with developers, including the ability to explain security findings, risks, and remediation clearly and pragmatically.
Familiarity with cloud environments such as AWS, Azure, or GCP, including common security pitfalls.
Experience with bug bounty programs and/or Red Team activities (advantage).
High proficiency in English, both written and spoken.

Requirements:
5+ years of experience in cybersecurity.
3+ years in a Security Operation Management role.
Strong knowledge of security operations, incident response, threat intelligence, and digital forensics.
Experience with SIEM, EDR, SOAR, firewalls, and other SOC technologies.
Relevant certifications such as CISSP, CISM, GIAC, or equivalent are highly desirable.
Knowledge of attacker tactics, techniques, and procedures (TTPs), as well as methods for defense.
Excellent analytical, problem-solving, and organizational skills.
Exceptional communication skills, with the ability to convey complex security concepts to technical and non-technical audiences.
Ability to work under pressure, manage multiple priorities, and respond to high-impact incidents effectively.
Demonstrated experience in developing, tracking, and reporting on key performance indicators (KPIs) to measure SOC effectiveness and drive continuous improvement.

Requirements:
Deep understanding of network security, endpoint security, cloud security, and security operations.
3+ years experience working within a security operation/Security architecture teams.
2+ years experience working with SOAR platforms for security automation.
Hands-on experience in researching emerging threats and vulnerabilities, and developing new detection use cases to identify and block attacks.
Demonstrated knowledge and experience with MITRE ATT&CK Framework
Proficiency in using security tools and technologies, such as SIEM, EDR, SOAR, EASM, CSPM and threat intelligence platforms.
Proficient in Azure and AWS Cloud platforms
Ability to analyze complex security problems and develop effective solutions.
Strong analytical thinking, effective leadership, and clear communication of complex technical concepts to any audience.

Requirements:
Bachelors degree in Electrical Engineering, Electronics Engineering, or Software Engineering - must
Experience in system engineering for multidisciplinary systems or hardware/software embedded development - must
Experience or significant training across various cybersecurity domains - strong advantage
Strong interpersonal skills, with the ability to lead and motivate others.

Requirements:
Bachelors or Masters degree in Cybersecurity, Computer Science, Information Technology, or related field.
7+ years of cybersecurity experience, with 3+ years in a leadership role.
2 years of Incident Response and or SOC management role.
Deep expertise in Microsoft 365 security (Defender suite, Microsoft Purview, Azure AD Identity Protection, Sentinel).
Strong knowledge of Active Directory, Azure Active Directory, Windows Servers, DNS, DHCP, and Group Policy.
Broad experience with SIEM, EDR, Threat intelligence, and vulnerability management tools.
Proven knowledge of security frameworks: NIST, ISO 27001, CIS, or equivalent.
Professional certifications required: CISSP, CISM, CEH, MS-500, SC-200, or comparable.
Strong leadership, communication, and problem-solving skills.
Experience working within multinational, matrixed environments.

Requirements:
* At least 2–3 years of proven experience in information security – mandatory
* Hands-on experience with EDR solutions (e.g., Microsoft Defender, CrowdStrike, etc.), MDM (e.g., Intune, JAMF, Kandji) and email security/mail relay solutions.
* Solid knowledge of endpoint hardening techniques (Windows, MacOS, Linux), device management and protection strategies.
* Experience with cybersecurity technologies, tools, and frameworks - EPM, PAM, Whitening systems, WAF, FW, ZTNA, EDR, NAC.
* Excellent communication skills (English & Hebrew).
* Knowledge of cloud environments and Microsoft 365 security
* Strong knowledge of network security, operating systems (Windows/Linux/Mac), and cloud security concepts.
* Familiarity with standards and regulations such as ISO 27001, NIST, or similar.
* Understanding of networking infrastructure, routers, and switches
* Strong problem-solving skills.
* Ability to work independently and manage multiple priorities.
* Relevant certifications (e.g., Security+, CySA+, Microsoft AZ-500)

Requirements:
● +2 years of group management experience or 4+ years at team leadership (non-military or major rank), and at least 3 years of hands-on (bare minimum of 8+ years total)
● Proven experience leading advanced research groups (Threat, Offensive, or Cyber Intelligence).
● Ability to bridge the gap between deep technical research and business value(ARR impact).
● Deep understanding of Cloud, Forensics, Incident Response (IR), AI, and modern Threat Landscapes.