לוח משרות דרושים מומחה אבטחת מידע / סייבר, לחיפוש זה נמצאו 162 משרות

Are you ready to evolve from a GRC Specialist into a strategic leader? We are looking for a high-potential GRC Specialist to join our company.
As a GRC at our company you will be responsible for aligning our companys security compliance and regulatory requirements. You will be responsible for preparing the business for certifications and regulations. You will verify that existing controls are adequate and define and oversee the implementation of new security controls. In addition, you will be responsible for) Risk management, employee awareness and Vendor Security assessment. You will devise new policies and update existing ones while aligning with business processes.
What am I going to do?
Oversee the company's security GRC program.
Lead annual certifications (ISO 27001, SOX-ITGC) and prepare for security audits (e.g., PCI DSS).
Third-party risk management.
Develop policies and guidelines aligned with security best practices for complex environments.
Conduct risk management and build plans to mitigate risks while engaging stakeholders.
Collaborate with IT, Legal, HR, Finance, and security teams to address gaps versus best practices.
Drive the security awareness program and explore strategies to enhance the security posture.

we are looking for a Embedded Systems Vulnerability Researcher.
As an Embedded Systems Vulnerability Researcher, you will operate at the cutting edge of security projects. Your mission is to identify, exploit, and mitigate security flaws in complex hardware/software ecosystems. You will bridge the gap between the digital and analog worlds, analyzing everything from low-level firmware to the electromagnetic spectrum.
Responsibilities:
Vulnerability Discovery: Perform deep-dive security analysis and "bug hunting" on proprietary embedded systems and RTOS.
Exploit Development: Create Proof-of-Concept (PoC) exploits for identified vulnerabilities, including memory corruption, logic flaws, etc.
Firmware Analysis: Conduct static and dynamic analysis of binary blobs using advanced reverse engineering suites.
Hardware Probing: Utilize JTAG, UART, and SWD interfaces to extract firmware, monitor execution, etc.
Tooling: Develop custom scripts and tools in Python, C, C++ to automate the research and exploitation pipeline.

We seek an embedded security researcher to join us in developing cutting-edge cybersecurity projects.
Responsibilities:
As an Embedded security researcher, you will be dealing with:
Embedded systems reverse engineering.
Kernel drivers research and development.
Real-time Embedded End-to-End Low-Level software developments on various unique embedded platforms and environments.

we are looking for a Security Researcher to research and develop cutting-edge cyber projects.
We face highly complex technological challenges and need talents to help us overcome them.
Do what you love:
As a vulnerability researcher, your main focus will be on vulnerability discovery and exploitation of most prominent OS`s in the market, and on various challenging platforms.

Were looking for a Security Response Engineer with strong expertise in Web Application security to join our Advanced Security Response Team (ASRT).
The Advanced Security Response Team is dedicated to the first response for security incidents, focusing primarily on the operational aspects of web application security. This includes analyzing threats, suggesting immediate remediation and mitigation methods, and actively working to block attacks in real time.
The scope of activities spans network layers 3, 4, and 7, covering a broad spectrum of threats. This includes defending against DoS & DDoS attacks, brute-force attempts, scraping, filtering unwanted traffic, as well as initial analysis and mitigation of application attack vectors such as XSS, SQL injection (SQLi), and remote code execution.
Another important responsibility of the ASRT is managing false positives. The team will investigate root causes of these misfires, propose optimal solutions to prevent recurrence, and apply necessary changes.
The ASRT works closely with the first-tier support team, serving as the focal point for security-related events and incidents. Additionally, the team maintains a two-way communication channel with the Threat Research team to share findings, exchange consultation, and stay updated on current security policies.
As a member of the ASR team, the specialist is expected to have a strong working knowledge of web application security and the current threat landscape, combined with in-depth familiarity with security policies and processes. Proficiency with relevant tools and methodologies is required, and continuous learning in security-related topics is encouraged.
This is a full-time position that requires weekend availability and participation in a rotating weekend shift due to the real-time nature of security response.
Key Responsibility:
Investigate and respond to active web and network-based security incidents in real time.
Apply and validate mitigations for attacks such as SQLi, XSS, and DDoS.
Troubleshoot false positives and fine-tune security policies.
Collaborate with internal teams to share findings and continuously improve detection and response.
Clearly explain security events and impacts to both technical and non-technical audiences.
Stay up to date on emerging web attack techniques and response methods.
Participate in a rotating weekend/on-call schedule to ensure 24/7 protection for our customers.

The secret to our success lies in our connectivity, while operating with a high degree of flexibility. Work-life balance remains our priority while feeling connected is important to maintain our strong culture, achieve our goals, and thrive as One.
This role is offered as a hybrid with expectations to come to the office in the Tel Aviv office in Israel at least 3 days per week. We are only able to accept applications for those based in Israel and have sponsorship to live and work in Israel.
What you'll do:
At our company, we empower people to be their best selves and do their best work. The Security Analyst role strengthens our ability to detect and respond to emerging mobile threats. With increasing mobile attacks and zero-day exploits, we need dedicated analysts to proactively protect our customers and expand detection coverage. As the analysts team has grown, this role now allows for broader coverage of emerging mobile threats and enables analysts to take on more diverse responsibilities. The expanded scope supports comprehensive threat research, detection development, and incident response, ensuring work is thorough,
prioritized, and aligned with evolving security challenges.
What you can expect to do in this role:
Research new ways to detect malicious activity on using a wide variety of custom-built tooling.
Participate on research how to protect users from 0-day attacks.
Perform analysis of detections according to the assignment to determine accuracy and precisions and tune detections accordingly based on results.
Stay up to date on the latest malware trends and design detections accordingly.
Support sales and marketing by timely information about emerging threats and trends.
Analyze device logs and search for malicious signs.
Write and manage detection patterns and algorithms to detect malicious mobile threats in Android and iOS devices.
Perform other duties and special projects as assigned.

we are looking for a Senior Cyber Security Researcher.
The Senior Security Researcher role involves developing detection methods and techniques to identify emerging threats for customers. Close collaboration with researchers, data engineers, and product teams is essential. Together, you will translate threat intelligence into production-grade detections and shape the future of AI-powered security operations.
In this role you will be:
Designing, building, and validating new detections across large-scale customer telemetry, transforming threat research into impactful results.
Building and deploying AI agents for independent investigation workflows and detection engineering pipelines, incorporating context management, tool orchestration, and multi-step reasoning.
Evaluating and iterating on detection quality - measuring false positive rates, building benchmarks, and establishing feedback loops that continuously improve accuracy.
Analyzing diverse telemetry including network connections, Active Directory, cloud activity, endpoint data (Windows/Linux), segmentation policies, and vulnerability exposure to identify threats and anomalies.
Leading key research initiatives and proof-of-concepts, shaping Hunt's detection and analytics platform's strategic direction.
Translating cutting-edge research into clear, actionable recommendations and effectively communicating findings to customers and stakeholders.

we are looking for a Senior Security Researcher.
As a member of our research team, you will investigate emerging attack surfaces across operating systems and modern technologies.
You will reverse engineer complex software, discover vulnerabilities, and develop original research.
Researchers are encouraged to explore new ideas and transform promising findings into published research shared with the global security community.
In this role you will be:
Leading end-to-end research projects - from idea generation, through discovery and exploitation, to publication
Conducting deep security research across operating systems, cloud environments, enterprise software, and emerging technologies
Developing proof-of-concepts and research tools
Leveraging AI to scale research workflow
Publishing research via technical blogs, whitepapers, and top-tier conferences
Collaborating with detection and product teams to translate research into security capabilities

We are seeking a motivated and detail-oriented Associate Threat Detection Analyst to join our Security Operations Center (SOC) team that is located in Atlanta, USA. The ideal candidate will play a crucial role in monitoring, analyzing, and responding to security incidents across the organizations IT infrastructure. This is an excellent opportunity for someone looking to start their career in cybersecurity and gain hands-on experience in a fast-paced environment. The work will be done in a hybrid, remotely, and from our Jerusalem-based office.

Key Responsibilities:

Monitor Security Alerts: Continuously monitor security alerts from various security tools (SIEM, IDS/IPS, firewalls, etc.) to identify potential threats.

Log Analysis: Perform routine analysis of logs and network traffic to detect suspicious activities and potential security breaches.

Escalation: Escalate critical incidents to senior SOC analysts or other relevant teams as per the established protocols.

Documentation: Document security incidents, including the steps taken to resolve them, and maintain accurate records for audit and reporting purposes.

Continuous Learning: Participate in ongoing training and development opportunities to enhance your cybersecurity knowledge and skills.

Were looking for a Pentest Product Associate to join our Product team and help expand the power of our company.
In this pivotal role, you will be the primary operator of our cutting-edge AI-driven Dynamic Application Security Testing (DAST) agent while simultaneously innovating detection mechanisms for cloud-native technologies.
You will bridge the gap between automated AI testing and cloud infrastructure, defining the "rules of engagement" for our agents to ensure they effectively simulate sophisticated attacks and accurately classify the modern attack surface.
WHAT YOULL DO
Engineer Detection & Attack Logic: Develop advanced detection algorithms to classify cloud technologies while fine-tuning the attack policies that define how our agents identify and exploit vulnerabilities.
Validate Complex Findings: Analyze cloud services, APIs, and log payloads to review complex attack paths, reducing false positives and ensuring compliance with industry standards.
Research Novel Threats: Stay at the forefront of novel attack vectors and emerging cloud/API threats, translating new techniques into executable behaviors for the company DAST engine.
Drive Product Evolution: Collaborate directly with Research, Backend, and R&D teams to turn operational insights into feature requests, positioning our company as the market leader in vulnerability management.

,As an Information security engineer, you will be responsible for designing, developing
implementing, and managing complex cybersecurity systems. Both cloud and on-prem
backend development. You will be required to develop software and use monitoring tools to
ensure resilience and high availability. The systems are highly sensitive and will be built with
top-notch security standards (OWASP TOP-10 to say the least). The development is mostly
server-side, with about 20% client-side
Job location- Central Israel
Employment type- Full Time.

We are Looking for a Senior Cyber Security Specialist for an operational position at the core of key intelligence operations
The role involves unique and covert missions, combining independent work with teamwork
Join an award-winning unit renowned for its dynamic and flexible-thinking people
Tackle complex technological challenges, that lead to significant breakthroughs in homeland security matters
Engage in meaningful work with a team of optimistic and driven professionals.
We are seeking individuals who are determined to make a meaningful impact.

We are seeking a highly skilled and motivated PT specialist to join our dynamic team. You will be responsible for conducting comprehensive penetration test in alignment with organizational needs.
Perform in - depth penetration tests to identify vulnerabilities and assess security posture
Provide professional insights during development phases, identify weaknesses and recommend mitigation strategies
Conduct independent research to proactively identify emerging vulnerabilities, attack trends, techniques and tools in the PT domain.
Regularly exercise the organizations defense systems in a diverse and dynamic technological environment, enabling personal and professional growth and direct impact on core organizational activities.