דרושים » אבטחת מידע וסייבר » Experienced Penetration Tester

Penetration Testing Specialist.
A company located in central Israel is looking for an experienced Penetration Tester to join its team.
The company provides security services to clients, and the role involves managing and performing penetration testing while providing on-site security services at the client's location.
This is an exciting opportunity for someone who thrives in a dynamic environment and enjoys taking ownership of projects from start to finish.
Responsibilities:
Conduct and manage penetration testing for clients across web applications, networks, and cloud environments.
Identify vulnerabilities, assess security risks, and provide actionable recommendations to improve security posture.
Work independently and take ownership of individual projects, ensuring all tasks are completed on time and to the highest standards.
Collaborate with internal teams and clients to tailor testing approaches based on specific security needs.
Provide expert guidance on remediation efforts, and support the implementation of security improvements.
Document findings, prepare detailed security reports, and deliver presentations to clients.
Stay up-to-date with the latest trends and tools in penetration testing, and continuously expand your skill set.
Location: Central Israel (providing on-site penetration testing services at client locations).
Position: Full-time.
If you are passionate about cybersecurity, possess a strong sense of ownership, and are looking for an opportunity to work on challenging security projects, wed love to hear from you!
CVs should be sent to our email.

The Incident Response Team Leader will be key to the success of Incident Response projects worldwide, and should possess strong leadership skills, be highly technical and thrive in a fast-paced and dynamic environment.

Main Responsibilities

Lead a team of top-tier cyber security researchers and forensic experts conducting assessments and in-depth analysis in complex investigations, as well as security assessments.

Guide and empower team members, enhancing their technical and research skills.

Lead client-facing projects including incident response and hunting efforts for large-scale sophisticated attacks, to contain and defeat real-world cyber threats.

Collaborate and work with clients IT and Security teams during investigations.

Design and improve internal incident response technologies, methodologies, and processes.

Ask a member of our team and theyll answer, Our people! We work together to build and innovate best-in-class cybersecurity solutions for our customers; all while creating a culture of belonging, respect, and excellence where we can be our best selves. When youre part of our team, you can expect to partner with some of the most talented and passionate people in the industry, and have the support and resources you need to do work that truly matters. We deliver results that exceed expectations and we win together!
Cloud Security was established through the acquisition of Ermetic, an innovative cloud-native application protection platform (CNAPP) company, and a leading provider of CIEM. This acquisition is a significant step in mission to shift organizations towards proactive security, offering market-leading contextual risk visibility, prioritization, and remediation across both on-premises and cloud infrastructures.
Your Opportunity:
Cloud Security is seeking a Senior Vulnerability Researcher. In this role, you will research various cloud assets, roles, relations, and configurations to uncover 0-day vulnerabilities in major cloud providers and technologies. You will lead innovation, solve complex problems, and develop strategies for both attacking and defending cloud environments.
Furthermore, you will be in charge of fostering and spreading Cloud Securitys technical expertise. You will present your novel work at conferences and author papers and blogs. You will also build open-source cloud security tools and solutions.
If youre a curious, creative, technical person with an attackers mindset, strong systemic thinking, and a passion for taking things apart and understanding how they work, we encourage you to apply.
Your Role:
Investigate and analyze the multi-cloud stack to find 0-day vulnerabilities, security holes, weaknesses, and design flaws
Follow emerging security threats, author blogs about novel research, publish content, and speak at conferences
Conduct technical research on cloud platforms to yield new insights, theories, analyses, TTPs
Serve as a technical leader and contributor for a research team exploring emerging cloud technologies and services

Participate in forensic and incident response investigations, including large scale sophisticated attacks, conduct log analysis, host and network-based forensics and malware analysis.

Participate in threat hunting: proactively hunt for targeted attacks and new emerging threats in clients networks; as well as security assessments and simulations.

Identify indicators of compromise (IOCs) and tools, tactics, and procedures (TTPs) to help ascertain whether and how breaches have occurred.

Utilize and develop tools and methodologies to improve Sygnias existing investigative and hunting technological stack.

Collaborate with IT and Security teams during investigations.

Generate and present a comprehensive and professional report of findings from investigations.

We are seeking junior Detection Engineers who look for their first (or second) steps in the Cybersecurity industry. The position is in our Research department, focusing on detection rules in the domains of Enterprise Copilots, GenAI technologies, and Low-code/No-code platforms. This role offers a unique opportunity to work closely with Inbar Raz, a prominent figure in the security research community known for his pioneering work and thought leadership. Inbars extensive expertise and innovative approach to security research will not only guide but also inspire your work, making a place where your contributions can have a significant impact on the future of application security. This role will set you on a path into the Cybersecurity world and let you evolve your skills into the directions of a security researcher or a security engineer.

We are seeking an experienced Senior Security Researcher to join our Research department, focusing on low-code/no-code platforms, AI copilots, and generative AI technologies. This role offers a unique opportunity to lead cutting-edge security research and help shape the future of application security in these rapidly evolving fields.

Responsibilities

Conduct thorough research to identify security weaknesses and vulnerabilities within low-code/no-code platforms, AI copilots, and Gen AI technologies.
Perform in-depth analysis of web and API security, identifying potential threats and developing mitigation strategies.
Work closely with cross-functional teams to address security concerns throughout the development lifecycle, particularly in AI and low-code/no-code environments.
Stay up-to-date with the latest industry trends, security threats, and advancements in low-code/no-code and AI technologies.
Develop proof-of-concept exploits, provide recommendations for remediation to affected vendors, and contribute to security detections in the platform.
Contribute to the development of security guidelines, best practices, and standards tailored for low-code/no-code platforms and AI security.
Collaborate with external security researchers and organizations to enhance the security posture of the low-code/no-code and AI landscape.
Conduct publishable research, sharing insights through blog posts, conference talks, and meet-ups to advance the broader security community.

Ask a member of our team and theyll answer, Our people! We work together to build and innovate best-in-class cybersecurity solutions for our customers; all while creating a culture of belonging, respect, and excellence where we can be our best selves. When youre part of our team, you can expect to partner with some of the most talented and passionate people in the industry, and have the support and resources you need to do work that truly matters. We deliver results that exceed expectations and we win together!
cloud Security was born out of the acquisition of Ermetic, an innovative cloud-native application protection platform (CNAPP) company, and a leading provider of cloud infrastructure entitlement management (CIEM). The acquisition combines two cybersecurity innovators and marks an important milestone in mission to shift organizations to proactive security. The combination of and Ermetic offerings will add capabilities to deliver market-leading contextual risk visibility, prioritization and remediation across infrastructure and identities, both on-premises and in the cloud.
looking for an experienced Senior Product Manager to help us build a cloud-native security product with state-of-the-art architecture and cutting-edge technology.
The Senior Product Manager will play a key role in the product life cycle with an emphasis on customer requirements, as well as generating and defining the product vision. The Senior Product Manager will work closely with multiple departments including product management, engineering, UX/UI, sales, customer support, finance and marketing to ensure customer requirements are met.
This is an exciting opportunity to join a fast-growing and innovative company, and be part of a strong team with the chance to lead a product that solves a high-profile problem in the Cloud Security space. You will be joining the companys product team and lead a significant domain.
In this role, you will:
Define product strategy and roadmap
Understand the cloud ecosystem, markets, competition and user requirements in depth
Conduct market research, and analyze and gather relevant information about market trends
Perform product demonstrations for customers
Launch new products and features
Develop innovative solutions to hard problems by collaborating, as needed, across regions, product areas, and functions

Provide immediate onboarding activities such as installation and training for IL and APAC, commercial customers
Manage the assigned customers to the established SLA
Assist and provide expert deployment, operational best practice
Translate customer product usage data into actionable advice for customers
Establish regular touch-points with assigned customers per the established SLAs, to review progress against strategic and technical objectives
Take technical ownership of the entire customer lifecycle where you will develop and implement strategies to increase usage, adoption, and growth.
Assist customers with planning and execution of technical solution implementations, and removing technical blockers
Lead complex implementation and onboarding projects for products and services.
Deliver professional and technical account management services following the best practices and established procedures through proactive communication, strategic advisory, technical project management, service reviews, escalation management, training, and more.
Work closely with Product, Engineering, Support teams as well as Upper Management, and Sales to advocate customer needs, resolve technical & business issues, defining feature requests, identifying growth opportunities, and collecting customers feedback
Proactively identify issues and coordinate with teams to proactively remediate issues as they are identified. Leverage internal tools, including Gainsight, to centrally archive customer activity and other key data points.

Analyses the feature specifications and determines the required coding, testing, and integration activities.
Designs and develops moderate to complex cloud application modules per feature specifications adhering to security policies.
Identifies debugs and creates solutions for issues with code and integration into application architecture.
Develops and executes comprehensive test plans for features adhering to performance, scale, usability, and security requirements.
Deploy cloud-based systems and applications code using continuous integration/deployment (CI/CD) pipelines to automate cloud applications' management, scaling, and deployment.
Contributes towards innovation and integration of new technologies into projects.
Analyzes science, engineering, business, and other data processing problems to develop and implement solutions to complex application problems, system administration issues, or network concerns.