לוח משרות דרושים מומחה אבטחת מידע / סייבר עבודה היברידית

We are looking for a Security Operation Specialist.
The ideal candidate will specialize in security tools like EDR, data protection, email protection, DNS protection, and SASE.
Responsibilities include configuring, maintaining, and automating security tools, addressing weaknesses, and researching new threats.
The candidate will build, install, and configure security solutions, ensuring operational compliance with established baselines.
He will also evaluate controls for improvement, write technical standards, and stay informed on emerging security trends.
Job Description:
Evaluate, implement, and manage a wide range of cybersecurity products.
Response to cybersecurity incidents.
Assisting in deploying automation of operational processes and procedures.
Identify weaknesses, propose, plan, and deploy improvements to address and enhance the infrastructure design.
Research new and emerging security attacks and develop techniques to control risks.
Maintain operational configurations of all in-place security solutions per the established baselines.
Works closely with IT teams to implement technical and procedural controls.
Evaluate each control, technology, and gap for potential improvement and refinement.
Follow security-related policies, standards, procedures, and guidelines.
Replies to security-related inquiries from prospects, customers, and other entities.
Reports to the Security Operations Manager.

We are looking for a highly motivated, talented, and hands-on Application Security Engineer who will participate in building our next-generation static code analysis engines for detection and remediation capabilities.
This role offers challenges across a wide variety of responsibilities.
You will have an opportunity to establish the application security discipline in the SAST group, and define working procedures, processes, and tools.
The successful candidate will work closely with algorithms developers, improving the engines, developing security rules, performing a security review of source code, and suggesting optimization. We are searching for a team player with a can-do approach.
**In this position, you will work in a hybrid model, which means you will spend two days at the office and three days working from home.**
Responsibilities:
Performing security source code analysis.
Analyze application vulnerabilities and provide mitigation strategies.
Researching, designing, and writing application security rules for detection, while working closely with a development team for SAST
Analyzing different programming frameworks in different programming languages for potential sources and sinks for SAST.
Handling complex cases escalated from the field and other teams.
Improving our SAST engines for various programming languages.

Were looking for a Senior Software Engineer with expertise in Application Security, operating systems, and cloud technologies to work on bleeding edge technology in our cloud-native team.
What you will do
Solve hard problems in the domain of containers, security scanners, cloud, operating systems, package managers, Kubernetes, DBs and Linux.
Come up with innovative solutions to complex software static analysis problems.
Being responsible for shipping cutting edge technologies that transforms the container scanning industry.
End-to-end development of backend software components (research, design, development, testing, rollout, monitoring).

We are looking for a SecOps Director.
In this role, you will be responsible for:
Aligning vulnerability management functions with the organization's overall business objectives by reducing information technology threat
Improving & maturing established security metrics associated with vulnerability management, security operations center, security monitoring, etc.
Overseeing projects for deploying new cyber security tools and processes
Leading successful projects, ensuring high quality and timely delivery of features
Ensuring the team builds operational processes that are architecturally consistent, of high quality, and that follows operational best practices
Overseeing the development and implementation of appropriate and effective controls to mitigate identified threats and risk
Have fingerprints on building the future of Gates' cyber security organization.
Collaborate and engage with key business stakeholders, including technology peers to help them better manage their technology risk through pragmatic and fit for purpose solutions.
Be responsible for auditing, assessing & architectural recommendations as it pertains to our technical cyber security infrastructure while helping to continuously improve our Cybersecurity maturity and defensive posture.
Work with our internal stakeholders to provide support related to security functions and technologies including Privileged Access Management (PAM), Threat hunting management, SSO/MFA, Active Directory, Windows/Linux OS hardening, vulnerability remediation, EDR, SOC oversight, security metrics, E-Discovery and incident response

As an Application Security Engineer, you will play a pivotal role in safeguarding our products against security threats and vulnerabilities. You will work closely with our development teams to integrate security best practices into the software development lifecycle, conduct thorough security assessments, and implement robust security measures to protect our applications and data.
Key Responsibilities:
Collaborate with development teams to integrate security controls into the software development lifecycle (SDLC).
Conduct regular security assessments, including code reviews, vulnerability scans, and penetration testing, to identify and remediate security vulnerabilities in applications.
Design and implement security solutions to protect against common security threats, such as SQL injection, cross-site scripting (XSS), and authentication bypass.
Conduct threat modeling and architecture security review.
Develop and maintain secure coding standards and guidelines for application developers.
Monitor and analyze security incidents and provide timely response and resolution.
Stay current with emerging threats, vulnerabilities, and industry best practices in application security.
Participate in security incident response activities and contribute to post-incident reviews and remediation efforts.
Collaborate with cross-functional teams to ensure security requirements are effectively integrated into product development processes.
Deliver secured development training to developers.

Required Technology Consultant (Security)
Responsibilities:
As a passionate technical expert, you'll engage with external decision-makers, facilitating technical design workshops to translate business needs into Azure solutions. Some of your key responsibilities will include:
Hands-on solution implementation with your peer consultants acting as a technical lead within your specialized area, you'll understand commercial responsibilities and align technical delivery with program milestones, taking accountability for technical risks.
Serving as an advisor and mentor, fostering technical expertise within the Consulting community and your industry vertical.
Collaborating with account teams to strengthen the relationship between sales and delivery and liaising with our product group to access engineers building solutions, all in the pursuit of delivering our offerings effectively to customers.
Contributing to pre-sales efforts by shaping deals through understanding business requirements and providing industry and technical insights.
Assisting in drafting proposals and statements of work.

Required Senior Privacy Program Manager
Are you analytical and passionate about enhancing customer trust and protecting the brand? Are you interested in defining the future for a leading-edge privacy compliance program to the next level? If yes, then this role is for you! The Security Privacy Program team is looking for an experienced, highly driven Program Manager to work as part of a team to enhance our Privacy Program.
This role provides you with the leadership opportunity to effect change that will have enterprise-wide impacts. As a Program Manager, you will initially work on leading our consolidated documentation efforts for a data storage commitment program across security products and services. As our primary point of contact you will be the connective tissue between our privacy compliance goals as a company and the product teams across providing strategic insights and guidance.
A significant part of your role will be to ensure that Security products and services comply with our privacy requirements while also taking the lead on the roll-out and support of enterprise-wide cutting-edge privacy compliance solutions. You will contribute to the development and execution of our best-in-class strategic privacy practices and initiatives, to ensure we continue to be a leader in privacy while exceeding customer expectations.
The ideal candidate could have an engineering or compliance background, command of engineering best practices, and experience in raising the quality of existing solutions. This candidate must have excellent written and verbal communication, a passion for technology, experience providing guidance and direction to technical audiences, ability to drive towards the big picture while managing details, and the ability to build relationships with key partners.
Responsibilities:
The successful candidate will be responsible for the following:
Support risk and compliance program activities across the Security Division.
Contribute incremental improvement to the privacy program increasing efficiency of operating processes.
Continuously aligning services and strategy with the company standards, policy, and strategies, and understanding how they need to be applied within our organization.
Identifying opportunities to expand the services model to include other risk and compliance offerings across the enterprise.
Support the team in clarifying business, tooling, and engineering requirements to land impactful outcomes for compliance and risk management.