דרושים » אבטחת מידע וסייבר » Information Security

we are a global fintech company (NASDAQ; TASE: NYAX) and a leading provider of cashless payment, consumer engagement, and business management solutions for the unattended retail sectors.
We are looking for a highly experienced and detail-oriented Risk and Compliance Operations Manager to join CoinBridge. This is a unique opportunity to join an early-stage company and significantly impact its product and success. In this role, you will take the lead on evaluating and mitigating financial risk, with a strong focus on AML, fraud prevention, and transaction monitoring across complex fintech operations. You will play a key role in safeguarding our business and ensuring full compliance with global regulatory frameworks.
Key Responsibilities:
Evaluate CoinBridge clients using a comprehensive KYB process, assign risk scores, and assess ongoing relationships with larger and more complex customers.
Design, review, and calibrate risk scoring models, fraud detection rules, and AML/terrorist financing controls to ensure effective coverage and timely detection.
Work closely with product and engineering teams to implement, test, and refine fraud prevention mechanisms and compliance features within the platform.
Monitor real-time financial transactions (e.g., wire transfers, card activity) to identify suspicious behavior and ensure compliance with regulatory requirements.
Analyze past transaction data to identify patterns indicative of fraud, money laundering, terrorist financing, or sanctions evasion.
Investigate and escalate suspicious activities to the MLRO, ensuring all regulatory filings (e.g., SARs, STRs) are accurate, timely, and well-documented.
Operate and maintain fraud detection software and AML tools, conducting periodic system checks and identifying any process vulnerabilities.
Collaborate with CoinBridge s third-party partners (e.g., Card scheme, card processors, compliance vendors) to ensure adherence to their regulatory and risk requirements and support any related audits or reviews.

Be the guardian of trust in a fast-moving fintech world. As a GRC Security Specialist, youll lead cybersecurity governance, drive compliance with global standards (SOC 2, PCI-DSS, NIST), and partner with tech and legal teams to embed security into every layer of the business. If you live and breathe risk, regulation, and resiliencethis is your arena.
What youll do:
Developing and maintaining policies, procedures, and controls to ensure compliance with regulatory, legal, and audit requirements, as well as best business practices.
Creating a cybersecurity compliance strategy and ensuring alignment with contractual obligations and globally recognized standards and guidelines.
Identifying regulatory, legislative, and industry-specific compliance requirements and defining controls to meet them.
Conducting and participating in periodic internal reviews or audits to ensure compliance procedures are followed.
Overseeing and evaluating compliance systems to ensure their effectiveness.
Compiling and presenting reports to management on compliance activities and progress.
Staying up to date on industry developments, regulatory trends, and best practices to assess their impact on the organization.
Designing and implementing improvements in compliance communication, monitoring, and enforcement mechanisms.
Developing and executing a compliance awareness program, including the creation and distribution of materials for all employees.
Partnering with Legal and IT teams to manage data protection agreements and compliance initiatives.
Leading the development and execution of company-wide security awareness and training initiatives.
Assisting in incident response planning and investigations when necessary.

We are looking for a IT Risk Management and SOC2 Manager.
The IT risk management team specializes in identifying and mitigating technological risks, developing solutions, and enhancing organizational systems and processes to prevent potential business impact. Leveraging local experts with global experience in complex projects, unique methodologies, and advanced technological tools, the team partners with leading companies across technology, industry, and finance. Our projects span collaborations with US and the largest organizations in Israel, including major banks and top technology companies traded in the US.
Role Overview:
As a Manager in the TPA practice, you will lead and oversee multiple client engagements from initiation through to the reports. You will be responsible for managing project timelines, budgets, and team members, ensuring high-quality deliverables and client satisfaction.
Your role will include:
Managing end-to-end IT risk management and assurance engagements, including planning, execution, and reporting.
Overseeing the delivery of Information Security and IT Governance Risk and Compliance (GRC) services.
Leading SOC2 and SOC1 audits, information systems risk assessments, cyber risk surveys, and both external and internal IT audits.
Consulting on and testing automated controls within business processes and organizational systems, and establishing methodologies for IT risk management in cloud and digital environments.
Advising clients on authorization processes and segregation of duties (SoD) in information systems and business operations.
Managing and mentoring team members, allocating resources, and monitoring engagement hours to ensure projects are delivered on time and within budget.
Serving as the primary point of contact for clients, maintaining strong relationships and ensuring their needs are met throughout the engagement lifecycle.

Who We Are At Cross River, we're building the financial infrastructure that powers global innovation. With our cutting-edge suite of embedded payments, cards, and lending solutions, we enable millions of businesses and consumers to transact seamlessly and securely. With 900+ employees worldwide and an R&D center of over 160 employees in Jerusalem – we’re reshaping how financial technology is developed and delivered

The Role:
We’re looking for an IT Compliance Associate to join our Technology team and help ensure our systems, vendors, and internal processes meet legal, regulatory, and security standards. In this role, you’ll support the design and implementation of an effective IT compliance framework, manage access controls, assess risk, and guide teams in upholding compliance across the organization. You’ll also help shape policies, identify gaps, and drive remediation efforts with cross-functional stakeholders. This is a collaborative, detail-oriented position with room for growth in the cybersecurity and compliance domain

Who You Are:

* A sharp, analytical thinker with high attention to detail
* Collaborative, reliable, and able to thrive in a structured environment
* Comfortable analyzing complex data, identifying risk, and advising on controls
* Driven by doing things ethically, legally, and right the first time

What You’ll Actually Be Doing:

* Native-level fluency in English
* Develop and maintain an effective IT compliance program
* Conduct risk assessments on internal processes and systems
* Lead access recertification and vendor risk assessment processes
* Draft, manage, and update internal compliance policies and documentation
* Review vendor documentation for regulatory and security alignment
* Analyze data, identify compliance gaps, and implement remedial actions
* Prepare reports, dashboards, and compliance summaries for internal stakeholders
* Organize and contribute to quarterly Cyber Steering Presentations

Why You’ll Love Working Here:
Flexible hybrid work model: three days a week at our Jerusalem office Monthly wellness reimbursement – from therapy to gel manicure, it's up to you Full Keren Hishtalmut, private health and dental insurance Volunteer days, donation matching, Yoga and Pilates A supportive, collaborative culture that puts our people first

Next Step:
Hit apply. You bring your compliance mindset; we’ll bring the challenge (and the snacks!)

We are seeking a passionate and skilled Information Security Engineer to join our team. In this role, youll be responsible for enhancing the security of our enterprise environment, working with a variety of security tools and technologies. We're looking for individuals with a strong background in information security who are eager to help shape the future of cybersecurity and protect our organization from evolving threats.

In this position you will:
Design, implement, and maintain robust security controls across our enterprise infrastructure, including endpoint, identity, and data protection systems.
Lead and support efforts to harden our internal environments against evolving threats, including proactive risk identification and remediation.
Collaborate closely with DevOps, IT, and engineering teams to secure enterprise platforms.
Contribute to the evaluation and deployment of security technologies (e.g., EDR, DLP, IAM, MFA, logging and monitoring solutions).
Take ownership of end-to-end security projects, from concept through implementation and operationalization.
Help define and enforce security policies, standards, and best practices across the organization.
Participate in threat modeling, vulnerability management, and incident response processes.
Engage in continuous improvement efforts in a collaborative, agile, and fast-paced environment.

Were looking for an IT Compliance Associate to join our Technology team and help ensure our systems, vendors, and internal processes meet legal, regulatory, and security standards. In this role, youll support the design and implementation of an effective IT compliance framework, manage access controls, assess risk, and guide teams in upholding compliance across the organization.
Youll also help shape policies, identify gaps, and drive remediation efforts with cross-functional stakeholders. This is a collaborative, detail-oriented position with room for growth in the cybersecurity and compliance domain .
What Youll Actually Be Doing
Native-level fluency in both English and Hebrew (written and verbal)Must
Develop and maintain an effective IT compliance program
Conduct risk assessments on internal processes and systems
Lead access recertification and vendor risk assessment processes
Draft, manage, and update internal compliance policies and documentation
Review vendor documentation for regulatory and security alignment
Analyze data, identify compliance gaps, and implement remedial actions
Prepare reports, dashboards, and compliance summaries for internal stakeholders
Organize and contribute to quarterly Cyber Steering Presentations

We are looking for a highly motivated Operational Risk Manager to join the Second Line of Defense Risk team. The role is based in Tel Aviv. It is a key role in our Risk organization, responsible for helping the company identify and mitigate risks arising from internal processes, people, systems, and external events.

Responsibilities:
Help enhance the companys Operational Risk Framework, including policies, procedures, and controls.
Collaborate with key stakeholders in business units to perform operational risk management processes, e.g., document Important Business Services, conduct operational resilience reviews, investigate operational processes and procedures, perform risk and control assessments.
Maintain risk registers and implement key risk indicators to monitor operational risks.
Help strengthen the companys risk management programs (e.g., incident management, outsourcing).
Communicate risk information to stakeholders across the company and help prepare regular reports on operational risk matters.

Required Director of FinCrime Ops
Description
We are a rapidly growing, award-winning B2B tech unicorn with an ambitious mission to revolutionize the payroll & payments industry. With over $400M raised from multiple tier-one investors, our innovative technology provides a comprehensive solution for managing global workforces, encompassing everything from hiring and onboarding to managing and paying employees in over 160 countries.
As a Director of FinCrime Ops you will:
Oversee the implementation of any necessary amendments to Due Diligence & AML SOPs and programs following changes in AML and Regulatory Compliance risk assessments.
Effectively manage the work of the KYC & AML team, using clear and transparent KPIs and metrics.
Act as advisor on CDD related queries from the Compliance Team members (both 1LOD and 2LOD) and the Company Staff.
Conduct Due Diligence checks of high-risk accounts/customers for escalated cases.
Supervise Due Diligence checks conducted by the Compliance Team members (ongoing Quality Control).
Liaise with other business stakeholders including IT to ensure a proper integration of KYC verification and / or AML tools and other systems designed to support the Due Diligence processes.
Ensure the proper training of relevant employees in Compliance.
Implement any necessary amendments in the sanctions procedures and programs following any changes in the AML and Regulatory Compliance Manual.
Cooperate with third party vendors and relevant stakeholders including IT in ensuring the proper integration of sanctions screening tools.
Ensure that proper record keeping of 1LOD checks is being performed by 1LOD Compliance transaction monitoring results, implement any necessary amendments in the transactions monitoring procedures and programs following any changes in the AML and Regulatory Compliance Manual.
Supervise the adjustment of the transaction monitoring rules according to the current fraud, money laundering or terrorist financing patterns and trends.
Conduct enhanced verification of large value transactions based on customer risk ratings.
Maintain a QC program over the teams activities.
Support the Group Compliance Officer in ensuring appropriate compliance posture.
Report any knowledge or suspicion of money laundering or terrorist financing to the relevant MLROs.
Advice business stakeholders on the compliance tools and other fraud and compliance related matters.
Communicate with the competent authorities, banks and partners regarding various requests.

We are seeking a highly motivated and analytical Information Security Consultant to join our team. As an Information Security Consultant, you will be responsible for performing a variety of IT audit activities for SaaS start-up companies including planning, fieldwork, and reporting. You will have the opportunity to work with a diverse group of clients and industry sectors while developing your technical and professional skills.

Job Description:
Assist with the planning and execution of information security audits.
Identify and evaluate information security risks, controls, and business processes.
Understand and evaluate the impact of emerging technologies on client operations.
Communicate audit findings and recommendations to clients and management.
Contribute to the development of audit methodologies, tools, and best practices.

Join Our Technology Risk Management Team as a Consultant!
Our Technology Risk Management team excels in identifying and mitigating technological risks, enhancing systems and processes to prevent potential business impacts, and minimizing risks. Leveraging local expertise and global experience in complex projects, unique methodologies, and cutting-edge technological tools, we collaborate with leading companies in technology, industry, and finance sectors. Our team partners with US and top companies in Israel, including the largest banks and leading technology firms traded in the US.
Role Responsibilities:
Conduct comprehensive information systems risk surveys and perform both external and internal information systems audits.
Design and test IT controls, including SOX IT compliance.
Advise companies on application controls within business processes and ERP-CRM systems, establishing robust methodologies and capabilities in IT risk management, particularly concerning cloud and digital aspects.
Provide consulting on access rights and segregation of duties (SOD) roles within information systems and business processes.
Hybrid Work Environment: Work from our offices in Tel Aviv/ Beit Shemesh/ Rishon LeZion / Ra'anana, combined with working from home