דרושים » אבטחת מידע וסייבר » Application Security Engineer

We are looking for a highly skilled Product Security Architect to join our team at our company. This role is pivotal in ensuring the security of our applications from inception to production and beyond. The ideal candidate will have a solid development background that has evolved into security expertise, enabling them to work closely with development teams to implement security best practices and develop protection mechanisms.
In this role, you will be responsible for:
Partner with all our company development teams to establish and govern security practices from the outset of development to production.
Conduct application security assessments, including architecture design reviews and threat modeling.
Act as a security advisor to cross-functional teams, including product, engineering, and others, to support secure software development.
Design, build, and implement advanced application security solutions.
Lead security audits, vulnerability assessments, and code reviews.
Develop and share software security guidelines, including training materials, secure coding checklists, best practices, and reusable code.
Ensure ongoing compliance with security policies and procedures in support of regulatory requirements.
Elevate security awareness across the SSDLC, defining tailored training roadmaps as needed.
Manage and review security issues in products, analyzing severity and risk, and recommending remediation steps.
Establish, manage, and lead a VDP/Bug Bounty program.

At our company, we're on a mission to redefine vehicle safety and reliability on a global scale. Founded in 2016, we have pioneered the world's first fully automated suite of vehicle inspection systems. At the heart of this innovation lies our advanced AI-driven technology, representing the pinnacle of Machine Learning, GenAI, and computer vision within the automotive sector. With close to $400M in funding and strategic partnerships with industry giants such as Amazon, General Motors, Volvo, and CarMax, we stand at the forefront of automotive technological advancement. Our growing global team of over 200 employees is committed to creating a workplace that celebrates diversity and encourages teamwork. Our drive for innovation and pursuit of excellence are deeply Embedded in our vibrant company culture, ensuring that each individual's efforts are recognized and valued as we unite to build a safer automotive world.
We seek a highly skilled and proactive Senior SecOps Engineer to join our Security team and lead security operations across the organization. In this role, you will report directly to our CISO and work in close collaboration with the DevOps and R&D teams to embed security into every stage of the software lifecycle, protect our multi-cloud infrastructure, and ensure compliance with leading industry standards.
A day in the life and how youll make an impact:
* Report directly to the CISO and collaborate with DevOps and R&D teams to embed security into every stage of the SSDLC.
* Integrate security into CI/CD pipelines, Infrastructure as Code (Terraform, Helm, GitOps), and development workflows.
* Design, enforce, and monitor secure cloud configurations (AWS, GCP), including networking, IAM, encryption, and Kubernetes hardening.
* Implement and manage application security controls (SAST, DAST, SCA, code reviews).
* Lead incident response activities, including forensic investigations, vulnerability management, and threat mitigation.
* Deploy and operate CSPM tools (Wiz, Prisma, Orca), SIEM, WAF, and runtime security solutions.
* Drive compliance with ISO 27001, SOC 2, GDPR, ensuring audit readiness.

At our company, were reinventing DevOps to help the worlds greatest companies innovate -- and we want you along for the ride. This is a special place with a unique combination of brilliance, spirit, and just all-around great people. Here, if youre willing to do more, your career can take off. And since software plays a central role in everyones lives, youll be part of an important mission. Thousands of customers, including the majority of the Fortune 100, trust our company to manage, accelerate, and secure their software delivery from code to production -- a concept we call liquid software. Wouldn't it be amazing if you could join us on our journey?The companyCSO Security team is looking for a Senior Application Security Researcher. In this role, you will perform vulnerability research, assess existing architectures, and build and run tools to secure the company application landscape at scale. You will work closely with R&D and DevOps teams and be the focal point for identifying and solving complex security challenges. This is a hands-on, development-focused role with the goal of ensuring our company products adhere to the stringent security requirements of our thousands of customers.
As a Senior Application Security Researcher at our company you will
Continuously assess and challenge our companys overall security posture to ensure optimal and up-to-date platform security in our products and systems
Evaluate architecture, design, and code to ensure they are free from potential vulnerabilities and security risks
Train and mentor developers about security frameworks, testing, vulnerabilities, and best practices to ensure code compliance
Evaluate new technologies and standards in the application security domain
Plan and lead cross-company efforts with the R&D that will improve our companys security posture.

we are seeking a passionate and skilled Information Security Engineer to join our team. In this role, youll be responsible for enhancing the security of our enterprise environment, working with a variety of security tools and technologies. We're looking for individuals with a strong background in information security who are eager to help shape the future of cybersecurity and protect our organization from evolving threats.
In this position you will:
Design, implement, and maintain robust security controls across our enterprise infrastructure, including endpoint, identity, and data protection systems.
Lead and support efforts to harden our companys internal environments against evolving threats, including proactive risk identification and remediation.
Collaborate closely with DevOps, IT, and engineering teams to secure enterprise platforms.
Contribute to the evaluation and deployment of security technologies (e.g., EDR, DLP, IAM, MFA, logging and monitoring solutions).
Take ownership of end-to-end security projects, from concept through implementation and operationalization.
Help define and enforce security policies, standards, and best practices across the organization.
Participate in threat modeling, vulnerability management, and incident response processes.
Engage in continuous improvement efforts in a collaborative, agile, and fast-paced environment.

As the Senior Information Security Architect , you will be the owner and chief designer of our corporate security architecture.

Youll be in charge of embedding security by design into every layer of the corporate technology stackcloud, SaaS, applications, and infrastructure.

In this highly influential role, you will set the strategic vision for secure architecture, lead threat modeling initiatives, and act as the ultimate authority on how builds, scales, and protects its corporate systems. Youll partner with engineering, product, and operations leaders to ensure that security is not just an add-on, but a foundational principle driving every decision.
Key Responsibilities-
Architect secure-by-design systems across corporate multi-cloud (Azure, AWS, GCP) and SaaS applications, ensuring strong IAM and key management practices.
Design and manage secure network architectures, applying strong knowledge of TCP/IP, DNS, VPNs, and enterprise firewalls, IDS/IPS, and traffic monitoring tools.
Secure operating systems (Linux, macOS) and oversee endpoint protection through leading EDR/XDR solutions
Act as the architectural authority in design decisions, setting technical direction and influencing company-wide security practices.
Take ownership of threat modeling for the corporate most critical systems, leading structured analyses to anticipate where attacks may occur and how to prevent them.
Skilled in vulnerability scanning, patching strategies, and prioritizing risks with enterprise-grade scanning platforms.
Hands-on experience designing, implementing, and enforcing security controls to prevent data leaks, unauthorized access, advanced cyberattacks, and emerging threats. This includes working with DLP solutions (e.g., Symantec DLP, Microsoft Purview, Digital Guardian), IAM and PAM platforms (e.g., Okta, Azure AD, CyberArk), endpoint protection and XDR tools (e.g., CrowdStrike, SentinelOne).
Lead the evaluation and adoption of next-generation security tools and technologies, ensuring stays ahead of attackers.
Serve as a trusted advisor and security leader, guiding executives and engineers alike in making security-first decisions.

Were hiring a Senior Security Engineer to help shift security left across product and platform teams, while also supporting internal corporate security needs. Youll drive impact through enablement, automation, and practical risk reduction.
Why this role matters?
Youll secure both what we build and how we work. That means embedding security into our products and CI/CD, and also supporting internal teams.
Security here is not a gate; its a force multiplier. Youll help engineering teams move faster safely, and ensure our colleagues have a secure foundation to do their best work.
Success means faster, safer releases and fewer reactive security escalations.
What will you do?
As a Senior Security Engineer, your mission will be to:
Partner with developers to embed security into design, build, and deploy stages
Automate vulnerability triage and mitigation flows
Secure CI/CD pipelines (GitHub, Jenkins) and execution environments (Kubernetes, Docker)
Tune WAFs, manage cloud security (AWS, GCP, Azure), and evolve Terraform practices
Support internal teams with secure production accesses, endpoint hardening, and access policies
Lead security reviews across app, infra, and corporate environments
Advocate for security standards with clarity and empathy.

We are seeking a highly skilled and experienced Information Security Specialist to join

As the Information Security Specialist, you will be responsible for designing, implementing, and maintaining robust security measures to protect our assets and data. Working closely with various international stakeholders to integrate security best practices in all stages of the design and operating model, from design and deployment to monitoring and incident response.

What You'll Do:

Design and maintain the =security model, ensuring alignment with best practices and regulatory requirements.
Manage and maintain =security, including the site and endpoints employees use.
Assist with the deployment and assurance activities associated with Security controls with =. .
Continuously monitor environments, detect threats, and lead effective incident response and remediation efforts.
Ensure compliance with global standards (e.g., GDPR, ISO 27001, NIST) by driving audits, risk assessments, and security governance processes.
Co-ordinate offensive security activities including penetration testing, red team exercises, and third-party risk evaluations.
Drive continuous improvement of security operations, championing automation, zero-trust architecture, and emerging security capabilities.

The Trusted Infrastructure Team plays a pivotal role in laying down the foundational frameworks for secure and confidential computing. By combining advanced security protocols with the latest innovations in confidential computing, we lead the charge in ensuring data security and integrity in all our operations. This unit is perfect for those who are eager to influence large-scale, transformative security practices and enjoy the challenge of developing state-of-the-art infrastructure technologies.

What Youll Do
Lead and Mentor: Manage a team of talented developers, setting technical direction and providing mentorship to foster professional growth and inspire innovative solutions.
Confidential Computing Development: Drive key projects involving the design and deployment of confidential computing frameworks, setting the stage for the companys future security standards.
Innovative Strategy Implementation: Play a strategic role in influencing and advocating for the integration of new security technologies and protocols across our infrastructure.
C++ Development: Utilize your expertise in C++ to design robust, efficient, and secure software solutions that meet our high standards.
Collaboration and Knowledge Sharing: Work closely with cross-functional teams, leading workshops and presentations to share insights and innovations within the organization.
Production Issue Resolution: Tackle complex production and security challenges, developing robust solutions that enhance our overall operational security and performance.

We are looking for a highly motivated Security Operations (SecOps) Engineer to join our growing security team. The ideal candidate will bring 34 years of hands-on experience in cybersecurity operations and incident response, with strong expertise in cloud environments. You will play a key role in designing, implementing, and managing security monitoring, detection, and response capabilities that safeguard our organizations assets, data, and customers.


Key Responsibilities
Design and maintain monitoring flows and detection use-cases across SIEM and related systems.
Develop, optimize, and tune security rules, alerts, and dashboards.
Integrate threat intelligence feeds into monitoring tools.
Lead and support security investigations, from triage to remediation.
Coordinate with internal teams and external partners to contain and resolve incidents.
Create and maintain playbooks, runbooks, and IR documentation.
Build and maintain security automation and orchestration workflows to accelerate response.
Ensure compliance with security policies, frameworks, and regulatory requirements (SOC 2, ISO 27001, GDPR, etc.).
Maintain clear documentation of procedures, incidents, and improvements.

We are seeking a talented and experienced Senior Full Stack Engineer to join Application Team. In this role, you will develop the customer-facing application that delivers our security solutions. This team works closely with Solutions Architects, Customer Success, and Pre-Sales Engineers, ensuring a seamless and powerful user experience.
Responsibilities:
Designing and implementing core components within the web app and our backend services.
Planning and implementing the rollout, testing and monitoring of features deployed to production end to end.
Conducting design and code reviews with the other team members.
Analytical approach for scale, optimizations and also awesome UX.
Drive and passion for pushing cross R&D-product workflows and initiatives.