דרושים » אבטחת מידע וסייבר » Security Engineer (Network & Apps Research)

looking for a high-energy, talented people to join the Security team. As a Security Engineer, you will take part in product content development and build logics and signatures to mitigate emerging security threats. Your work outcome will feed Cato Cloud security products such as the IPS and Suspicious Activity Monitoring with the latest protections. You will analyze protocols and investigate various attacks utilizing network analysis tools and modern data analysis frameworks. Joining is an excellent opportunity for network security enthusiasts who are passionate about the future of Networking and Security.

Responsibilities:

Research and analyze new threats and develop product content such as IPS signatures and logic to provide the best protection for Catos customers.
Enhance product accuracy and its ability to detect new threats in the dynamically-changed security landscape.
Monitor your work using different monitoring tools and methods over the cloud.
Utilize Cato Data Warehouse with big-data technologies to support your work.

We are looking for a highly skilled Product Security Architect to join our team at our company. This role is pivotal in ensuring the security of our applications from inception to production and beyond. The ideal candidate will have a solid development background that has evolved into security expertise, enabling them to work closely with development teams to implement security best practices and develop protection mechanisms.
In this role, you will be responsible for:
Partner with all our company development teams to establish and govern security practices from the outset of development to production.
Conduct application security assessments, including architecture design reviews and threat modeling.
Act as a security advisor to cross-functional teams, including product, engineering, and others, to support secure software development.
Design, build, and implement advanced application security solutions.
Lead security audits, vulnerability assessments, and code reviews.
Develop and share software security guidelines, including training materials, secure coding checklists, best practices, and reusable code.
Ensure ongoing compliance with security policies and procedures in support of regulatory requirements.
Elevate security awareness across the SSDLC, defining tailored training roadmaps as needed.
Manage and review security issues in products, analyzing severity and risk, and recommending remediation steps.
Establish, manage, and lead a VDP/Bug Bounty program.

We are looking for a researcher to help us harness the power of trillions of security signals to rapidly diagnose and alert the latest attacker behaviors, drive critical context-rich signals, construct new tools and automations to support customers, identify threats, and detect advanced attacker techniques.

Responsibilities
Analyze various network devices, configurations and security products
Implement methods and algorithms to discover network topology, relationships between devices and potential lateral movement paths
Conduct network security assessments to identify weaknesses in customers network infrastructure, and recommend mitigations to monitor and limit unauthorized access
Develop research tools and frameworks to perform automatic analysis of network devices and security products
Research and analyze network-related cybersecurity threats and trends
Work closely with other internal engineering and AI teams to integrate new capabilities into our platform and guide cross-product architectural decisions
Act as a security subject matter expert for multidisciplinary teams

As the Senior Information Security Architect , you will be the owner and chief designer of our corporate security architecture.

Youll be in charge of embedding security by design into every layer of the corporate technology stackcloud, SaaS, applications, and infrastructure.

In this highly influential role, you will set the strategic vision for secure architecture, lead threat modeling initiatives, and act as the ultimate authority on how builds, scales, and protects its corporate systems. Youll partner with engineering, product, and operations leaders to ensure that security is not just an add-on, but a foundational principle driving every decision.
Key Responsibilities-
Architect secure-by-design systems across corporate multi-cloud (Azure, AWS, GCP) and SaaS applications, ensuring strong IAM and key management practices.
Design and manage secure network architectures, applying strong knowledge of TCP/IP, DNS, VPNs, and enterprise firewalls, IDS/IPS, and traffic monitoring tools.
Secure operating systems (Linux, macOS) and oversee endpoint protection through leading EDR/XDR solutions
Act as the architectural authority in design decisions, setting technical direction and influencing company-wide security practices.
Take ownership of threat modeling for the corporate most critical systems, leading structured analyses to anticipate where attacks may occur and how to prevent them.
Skilled in vulnerability scanning, patching strategies, and prioritizing risks with enterprise-grade scanning platforms.
Hands-on experience designing, implementing, and enforcing security controls to prevent data leaks, unauthorized access, advanced cyberattacks, and emerging threats. This includes working with DLP solutions (e.g., Symantec DLP, Microsoft Purview, Digital Guardian), IAM and PAM platforms (e.g., Okta, Azure AD, CyberArk), endpoint protection and XDR tools (e.g., CrowdStrike, SentinelOne).
Lead the evaluation and adoption of next-generation security tools and technologies, ensuring stays ahead of attackers.
Serve as a trusted advisor and security leader, guiding executives and engineers alike in making security-first decisions.

At our company, we're on a mission to redefine vehicle safety and reliability on a global scale. Founded in 2016, we have pioneered the world's first fully automated suite of vehicle inspection systems. At the heart of this innovation lies our advanced AI-driven technology, representing the pinnacle of Machine Learning, GenAI, and computer vision within the automotive sector. With close to $400M in funding and strategic partnerships with industry giants such as Amazon, General Motors, Volvo, and CarMax, we stand at the forefront of automotive technological advancement. Our growing global team of over 200 employees is committed to creating a workplace that celebrates diversity and encourages teamwork. Our drive for innovation and pursuit of excellence are deeply Embedded in our vibrant company culture, ensuring that each individual's efforts are recognized and valued as we unite to build a safer automotive world.
We seek a highly skilled and proactive Senior SecOps Engineer to join our Security team and lead security operations across the organization. In this role, you will report directly to our CISO and work in close collaboration with the DevOps and R&D teams to embed security into every stage of the software lifecycle, protect our multi-cloud infrastructure, and ensure compliance with leading industry standards.
A day in the life and how youll make an impact:
* Report directly to the CISO and collaborate with DevOps and R&D teams to embed security into every stage of the SSDLC.
* Integrate security into CI/CD pipelines, Infrastructure as Code (Terraform, Helm, GitOps), and development workflows.
* Design, enforce, and monitor secure cloud configurations (AWS, GCP), including networking, IAM, encryption, and Kubernetes hardening.
* Implement and manage application security controls (SAST, DAST, SCA, code reviews).
* Lead incident response activities, including forensic investigations, vulnerability management, and threat mitigation.
* Deploy and operate CSPM tools (Wiz, Prisma, Orca), SIEM, WAF, and runtime security solutions.
* Drive compliance with ISO 27001, SOC 2, GDPR, ensuring audit readiness.

We are seeking a highly skilled and experienced Windows Malware Security Researcher to join our growing Windows malware research team. In this role, you will play a key part in enhancing our Endpoint Detection and Response (EDR) agent by prototyping new protection components and techniques and developing advanced malware prevention strategies. You will work on identifying, analyzing, and mitigating sophisticated threats, Working closely with various teams to drive innovation.
The proposed role will be part of the Windows malware research team of the Cortex-XDR agent group.
You will focus primarily on our cutting-edge agent technology, with an emphasis on real-time prevention on Windows endpoints. A deep understanding of the Windows Operating System is essential
Your Impact
Playing a pivotal role in shaping the future of our security solutions.
enhance the effectiveness of our EDR product by designing cutting-edge protection components and developing sophisticated prevention rules
Researching OS internals and how Windows works under the hood - leveraging this knowledge to develop and improve our anti-malware mechanisms and capabilities
Research and lead novel protection ideas to production-grade level, serving as the feature subject matter expert
Research new malware and APT mitigation techniques and develop corresponding capabilities (POC level) or improve existing mitigation capabilities.
Respond to malware-based security events at clients networks.
Stay up to date with current malware and APT techniques.
You will provide feedback to the product management team on new feature requests and product enhancements from our customer base
Find new malware techniques and APT attacks including analysis of caught-in-the-wild malware.

We are looking for a highly skilled Application Security Architect to join our team at our company. This role is pivotal in ensuring the security of our applications from inception to production and beyond. The ideal candidate will have a solid development background that has evolved into security expertise, enabling them to work closely with development teams to implement security best practices and develop protection mechanisms.
In this role, you will be responsible for:
Partner with all our company development teams to establish and govern security practices from the outset of development to production.
Conduct application security assessments, including architecture design reviews and threat modeling.
Act as a security advisor to cross-functional teams, including product, engineering, and others, to support secure software development.
Design, build, and implement advanced application security solutions.
Lead security audits, vulnerability assessments, and code reviews.
Develop and share software security guidelines, including training materials, secure coding checklists, best practices, and reusable code.
Ensure ongoing compliance with security policies and procedures in support of regulatory requirements.
Elevate security awareness across the SSDLC, defining tailored training roadmaps as needed.
Manage and review security issues in products, analyzing severity and risk, and recommending remediation steps.
Establish, manage, and lead a VDP/Bug Bounty program.

Were seeking an AI Innovation Security Researcher to serve as the critical link between our AI development team and our security experts. In this role, you will:

Translate real-world security challenges into AI-driven solutions
Shape prompt strategies and model workflows for security use-cases
Contribute to AI system developmenthelp architect, prototype, and iterate on models and pipelines
Design and execute rigorous benchmarks to evaluate the performance of security-focused AI tools
Your work will power capabilities such as automated exploitability checks for SAST/SCA findings, AI-guided remediation of container vulnerabilities (e.g. Dockerfile misconfigurations, unsafe downloads), and detection/analysis of data leaks. Youll also help amplify our thought leadership by authoring blogs and delivering conference talks on cutting-edge AI-security topics.

Key Responsibilities

Research & Benchmarking

Define evaluation frameworks for AI models tackling security tasks
Build test suites for exploitability analysis (e.g. proof-of-concept generation, severity scoring)
Measure and report on model accuracy, false-positive/negative rates, and robustness
AI Collaboration & Development

Work with ML engineers to craft and refine prompt templates for security scenarios
Contribute to model architecture design, fine-tuning, and deployment workflows
Investigate model behaviors, iterate on training data, and integrate new AI architectures as needed
Security Expertise & Tooling

Apply deep knowledge of static and software composition analysis (SAST/SCA)
Analyze container build pipelines to identify vulnerability origins and remediation paths
Leverage vulnerability databases (CVE, NVD), threat modeling, and risk assessment techniques
Content Creation & Evangelism

Write technical blog posts, whitepapers, and documentation on AI-driven security solutions
Present findings at internal brown-bags and external conferences
Mentor teammates on AI security best practices

we are seeking a passionate and skilled Information Security Engineer to join our team. In this role, youll be responsible for enhancing the security of our enterprise environment, working with a variety of security tools and technologies. We're looking for individuals with a strong background in information security who are eager to help shape the future of cybersecurity and protect our organization from evolving threats.
In this position you will:
Design, implement, and maintain robust security controls across our enterprise infrastructure, including endpoint, identity, and data protection systems.
Lead and support efforts to harden our companys internal environments against evolving threats, including proactive risk identification and remediation.
Collaborate closely with DevOps, IT, and engineering teams to secure enterprise platforms.
Contribute to the evaluation and deployment of security technologies (e.g., EDR, DLP, IAM, MFA, logging and monitoring solutions).
Take ownership of end-to-end security projects, from concept through implementation and operationalization.
Help define and enforce security policies, standards, and best practices across the organization.
Participate in threat modeling, vulnerability management, and incident response processes.
Engage in continuous improvement efforts in a collaborative, agile, and fast-paced environment.

The company IGS Managed Security Services division is seeking a Managed Services Team Lead Consultant to join our growing team. In this role, you will lead a team of experts within the Network Security Managed Services group and serve as a hands-on specialist on the company security platform. Your responsibilities will include advanced policy management, appliance upgrades, complex troubleshooting, and high-level administration. This is a great opportunity for someone with strong technical knowledge and leadership skills who is looking to grow within a dynamic and impactful security organization.
Key Responsibilities
Core Responsibilities:
Strong networking fundamentals
Strong diagnostic skills
Strong written and verbal communication skills
Proactive, self-motivated, and strong ability to learn new things with little guidance
Function in a client facing role, providing high level remote troubleshooting and problem resolution on multiple network environments
Participate in an on-call rotation
Team Manager
Daily Responsibilities:
Configure, manage, and upgrade NGFW, IPS, UTM, DLP, VPN, Web Filtering Appliances, and a wide variety of other security products
Provide support for integration and onboarding activities to ensure smooth client transition
Perform network troubleshooting to isolate and diagnose common network problems, using strong TCP/IP networking skills
Participate in the completion of required project deliverables for network and security assessments, implementations, and other scopes of work.