לוח משרות דרושים מהנדס סייבר בתל אביב יפו, לחיפוש זה נמצאו 32 משרות

We are looking for a Identity Security Analyst who will focus on investigating and resolving customer-reported security bugs. In this role, youll sit at the intersection of security research, product engineering, and customer success: youll reproduce issues, analyze impact and root cause, coordinate fixes with R&D, and communicate findings back to customers in a clear, actionable way.

This is a hands-on, technical position ideal for someone who enjoys debugging, incident-style investigations, and direct customer impact.

Key Responsibilities

Bug Triage & Investigation

Review and prioritize customer-reported security bugs (vulnerabilities, false positives, detection gaps, performance/coverage issues).

Reproduce issues in lab environments using customer-provided data, logs, and configurations.

Validate whether a bug is product defect, configuration issue, environmental limitation, or expected behavior.

Security Analysis

Analyze suspected vulnerabilities, misconfigurations, or detection gaps to determine impact, severity, and likelihood.

Correlate product behavior with attack techniques (e.g., MITRE ATT&CK, AD / identity attacks, NTLM relay, Kerberos abuse).

Perform log and event analysis (Windows Security / Sysmon / AD / LDAP / application logs) to understand bug context and side effects.

Resolution & Fix Coordination

Work closely with R&D / engineering teams to:

Provide clear reproduction steps, data, and technical context.

Propose mitigations and contribute to detection or logic fixes.

Verify hotfixes and releases against customer scenarios.

Track bugs through their full lifecycle to ensure timely resolution and high SLA adherence.

Customer Communication

Collaborate with Support, Customer Success, and SEs to:

Explain root cause and resolution in customer-friendly language.

Provide interim workarounds or configuration guidance when needed.

Contribute to knowledge base articles, runbooks, and best-practice guides.

Quality & Continuous Improvement

Identify recurring patterns in customer bugs and propose long-term product or process improvements.

Help refine internal monitoring, alerting, and testing for security-sensitive components.

Contribute to test cases and validation criteria for new features from a security QA perspective.

We are looking for a SecOps Engineer to join our Security Operations team as the technical lead for Incident Response and Cloud Security.

The team is responsible for monitoring our production and corporate environments, responding to security incidents, and continuously hardening our cloud, network, and CI/CD posture. This role is the senior technical anchor of the function: the first responder during critical incidents, the architect behind our cloud and network defenses, and a technical mentor to the rest of the team.

You will own the Incident Response practice, lead our cloud security program across CNAPP, SASE/ZTNA, and CI/CD supply-chain security, and partner with Engineering, DevOps, and Platform teams to drive security improvements at scale. Participation in an on-call rotation for critical incidents is required.

How Will You Make an Impact?

Own our SASE/ZTNA stack: policy management, network security, secure access.

Own our CNAPP platform: workload protection, posture management, vulnerability prioritization.

Own our CI/CD security platform and drive software supply-chain security across the organization.

Serve as IR Expert: first responder for critical security incidents, owning detection, containment, eradication, and recovery.

Lead post-incident root-cause analysis and drive remediation across the organization.

Build and maintain IR playbooks, runbooks, and tabletop exercises.

Partner with DevOps and Platform teams on secure-by-default cloud architecture.

Contribute to broader security architecture decisions across the security stack.

Mentor more junior engineers on the team and lead technical reviews of their work.

Act as deputy to the SecOps Team Lead on strategic initiatives.

Participate in the critical-incident on-call rotation.

We are looking for a Security Engineer to join our Security Operations team and grow into our SOAR and automation specialist.

The team is responsible for monitoring our environments, identifying and responding to security alerts, and continuously improving how we detect and respond to threats. This role focuses on the automation side of the function: building the workflows that make the rest of the team faster, from automated alert triage to enrichment pipelines to response playbooks.

You will work closely with senior engineers on the team to build and maintain SOAR content, integrate our security tools, and support detection deployment efforts. This role offers a strong opportunity to grow professionally in the security field, with direct exposure to detection engineering, incident response, and a modern enterprise security stack.

How Will You Make an Impact?

Own day-to-day operation of our SOAR platform.

Build and maintain automation playbooks for alert triage, enrichment, ticketing, and notifications.

Build and maintain integrations between SOAR and the broader security stack via APIs.

Monitor integration health, API connections, and credential rotation across automated workflows.

Measure and report on automation impact: alerts auto-resolved, analyst time saved, and MTTR reduction.

Support detection engineering on testing, deployment, and rollout of new content.

Write small scripts to support ad-hoc threat hunting and IR work.

Create and maintain technical documentation for playbooks and integrations.

We help organizations reinvent themselves. Through data, technology, and strategic thinking, we lead transformation processes that reshape how organizations operate, make decisions, and grow. If youre looking to work in an environment that encourages initiative, challenges ideas, and creates real impact - this is the place for you. Integrity, excellence, and innovation are not just values - they are our standard.
We are seeking a Cloud Security Engineer with 2-5 years of experience to provide advisory services to leading clients and support the design and security of cloud environments, with a growing focus on AI security. This is a temporary position (maternity leave replacement).
Major Responsibilities
* Advise clients on designing and securing cloud environments
* Deliver cloud security solutions as part of client engagements
* Lead requirements analysis, architecture design, and security controls planning
* Perform cloud security assessments and configuration reviews
* Act as a technical focal point for clients
* Provide guidance on AI systems security, including risk identification and data protection
תת מחלקה:
יעוץ סייבר ואבטחת מידע

Were looking for a top-notch Detection Software Engineer to join our Threat Research team and further develop the company Runtime Sensor. In this role, you will work on a world-class runtime security solution affecting some of the largest cloud workloads, collaborating closely with engineering and research to enable new and better threat detection capabilities.
WHAT YOULL DO
Work on a world-class runtime security solution affecting some of the largest cloud workloads
Work closely with engineering and research to enable new and better threat detection capabilities
Build and extend our research infrastructure, automated testing infra and release processes
Conduct research and develop new detection capabilities, from concept to implementation
Constantly shift things from an art to a science - make the hard things easy, fast and scalable
Quickly address gaps and changes when needed. Bias towards action
Analyze, debug and solve problems in test, staging and production environments
Create and enforce best practices and security policies
Work with customers in response to requests and questions when needed.

We're looking for a Security Engineer - our company Product to spread the power of our company. The ideal candidate will have experience performing security reviews, vulnerability management, and detection and response operations in cloud-native environments. Youll get to collaborate with our software development and DevOps teams to secure our companys products, CI/CD infrastructure, and production infrastructure. Youll also have the opportunity to influence our product roadmap by utilizing our company-for-our company to assess, monitor, and harden our environments.
WHAT YOULL DO
Lead threat modeling and security review exercises across our companys production and CI/CD environments - identifying and mitigating risks in our products and the cloud services that support them
Drive vulnerability management and remediation efforts - prioritizing issues, implementing mitigations, and designing strategic preventative controls
Extend our detection and response capabilities - building scalable solutions to identify malicious activity, triage alerts, and investigate and remediate incidents
Collaborate with our company Federal team - extending our DevSecOps and Product Security practices to our companys FedRAMP environment and ensure it meets key security requirements
Build deep functional partnerships with our companys engineering and operations teams - helping them deliver secure-by-design solutions.

Were looking for an Application Security Engineer with a passion for AppSec to join our growing team.

Responsibilities:
‍‍Build and maintain an advanced security research lab to test, evaluate, and supercharge detection tools.
Analyze tools across multiple domains: SAST, SCA, DAST, Secret Detection, IaC Scanning, Container Scanning, CSPM, and more.
Identify detection gaps and develop techniques and rules to close them.
Leverage Python and AI practices to automate research and drive smarter detection strategies.
Monitor emerging threats, CVEs, and high-profile incidents - and develop relevant detection content and platform enhancements.
Collaborate closely with engineering, product, and marketing.

This role is centered on gathering customers resources and insights from various cloud products, establishing connections between data sources, and handling large-scale data operations to run comprehensive evaluations and generate actionable posture intelligence.


What You'll Do:

You'll be responsible for processing vast amounts of customer data to create meaningful conclusions that help customers:

Discover misconfigurations, security risks, and compliance violations in cloud environments

Identify and prioritize security risk issues that require immediate attention

Gain valuable insights into their cloud resources and assets to enable faster, more effective investigations

Understand the potential risks associated with their assets and cloud environment

Make data-driven security decisions based on comprehensive analysis of their environment

This role is centered on gathering customers resources and insights from various CrowdStrike cloud products, establishing connections between data sources, and handling large-scale data operations to run comprehensive evaluations and generate actionable posture intelligence.


What You'll Do:

You'll be responsible for processing vast amounts of customer data to create meaningful conclusions that help customers:

Discover misconfigurations, security risks, and compliance violations in cloud environments

Identify and prioritize security risk issues that require immediate attention

Gain valuable insights into their cloud resources and assets to enable faster, more effective investigations

Understand the potential risks associated with their assets and cloud environment

Make data-driven security decisions based on comprehensive analysis of their environment

Senior Enterprise Security Engineer
As a Senior Enterprise Security Engineer, you will be a foundational architect of our corporate security posture, directly safeguarding our infrastructure, sensitive data, and global workforce. This is a highly hands-on, configuration-driven role focused on hardening our environment through identity governance, endpoint security, and automated threat response.
What Youll Do:
Identity & Zero Trust: Architect robust IAM principles (Okta, Entra ID) and Zero Trust strategies. Enforce granular authentication, lifecycle management, and device trust to ensure secure access across all corporate resources.
Endpoint Security & Fleet Hardening: Lead the administration of our EDR (CrowdStrike Falcon) and MDM/UEM (Intune, Jamf). Manage patch lifecycles, endpoint state attestation, and proactive threat hunting to neutralize threats across all corporate devices.
Threat Detection & Automation: Develop advanced detection logic (SIEM/XDR) and build SOAR workflows to reduce Mean Time to Detect (MTTD) and Respond (MTTR).
SaaS Security & DLP: Secure our ecosystem by managing email security (e.g., Material Security) and implementing Data Loss Prevention (DLP) across SaaS platforms (Google Workspace, Salesforce, Box).
Cross-Functional Leadership: Partner with Engineering and IT to embed security-by-design, automate compliance checks for new infrastructure, and manage security integration for mergers and acquisitions.

we are looking for a Product Security Engineer.
Responsibilities:
Own, maintain, and continuously improve the Secure Design Review process, ensuring security considerations are integrated early in the development lifecycle.
Develop, implement, and maintain Zenitys Application Security Program, including controls, standards, developer enablement, and automation.
Manage SAST and DAST tooling, including configuration, integrations, alerting, developer workflows, and program-wide reporting.
Monitor and enforce SDLC security controls, ensuring consistent application of secure development practices across all engineering teams.
Develop and maintain Zenitys Cloud Security Program, defining guardrails, policies, and automated controls for secure-by-default cloud deployments.
Manage CSPM tooling, including configuration, findings triage, reporting, and alignment with internal risk and compliance processes.
Partner with DevOps to design, implement, and maintain a fully secured CI/CD pipeline, ensuring that security checks, guardrails, and automated gates are embedded throughout build, test, and deployment stages.
Collaborate closely with engineering teams to deliver actionable guidance, model threats, advise on architecture, and support secure implementations.
Drive automation-first approaches to product and cloud security, reducing friction and enabling fast, safe development.
Define and track KPIs, metrics, and reporting for application and cloud security health.
Identify gaps in product, application, and cloud security posture and drive end-to-end remediation plans.
Promote a culture of security and developer empowerment by delivering clear, pragmatic, and scalable guidance.

As a Senior Information Security Engineer, youll be on the front lines of protecting the systems, users, and data at scale. This role is about turning strategy, architecture, and intent into enforced controls, effective detections, and resilient operations. Youll work hands-on with the tools, signals, and incidents that define our real security posture.
If you believe security should be practical, measurable, and embedded into daily operations-and not just documented-we want you on the team.
What the Role Looks Like in Practice
You will be the technical anchor of our internal security posture:
Architectural Ownership: Deploy, manage, and tune enterprise-grade security stacks (EDR, DLP, IAM, CASB, MDM) with a focus on deep integration and automation.
The AI Frontier: Lead the charge on AI Security. You will implement and secure AI-driven workflows, ensuring LLM use is governed and protected against emerging threats such as data leakage and prompt injection.
Proactive Defense: Build and maintain high-fidelity detections and guardrails that align with real-world attack techniques.
Cross-Functional Synergy: Partner as a peer with Engineering, IT, and DevOps to ensure security controls are frictionless, automated, and effective.

We are looking for a proactive Security Assurance Lead to advance our security program into a proactive validate and verify model. Your mission is to ensure our defenses arent just present, but effective. In this hands-on technical role will own and manage testing, validating and reporting on our security posture, through automated testing against our controls, and ensure our security stack is optimized, integrated, and fully utilized.
Key Responsibilities:
Security Assurance Management: Define, orchestrate and drive the security assurance program from vision to full implementation.
Continuous Control Validation: Design and execute automated testing (e.g., Breach & Attack Simulation) to verify that prevention and detection controls are functioning across cloud, SaaS and IT environments.
Central Visibility Hub: Build and maintain a real-time Security Posture Dashboard. This hub will provide a single pane of glass for the coverage and health of our security stack.
Tool Optimization & Efficacy: Review our existing security suite to ensure tools are properly configured, integrated, and delivering ROI. You will identify blind spots where tools are installed but not effectively monitoring or blocking.
Offensive Testing Strategy: Coordinate regular external offensive testing cycles such as Penetration Testing, Phishing, etc. and translate broken controls and findings into actionable items.
Operational Excellence: Define clear ownership, maintenance schedules, and lifecycle processes for all security technologies to prevent tool rot.

The Application Security team treats security as a high-stakes engineering discipline, not an administrative task. We are looking for an Adversarial Builder to lead the defense of our Global Application Landscape-securing everything from our core SDLC and Software Supply Chain to our enterprise-wide AI adoption.
In this hands-on role, you will:
Engineer, Dont just triage: Move beyond manual reviews to build code-driven detection logic and custom AI agents that automate vulnerability hunting, triaging and remediation.
Security by design: Partner with R&D teams (including Infra and DevOps) to define the application-level technical guardrails for internal and external-facing products.
Scout the Frontier: Act as an early adopter of state-of-the-art systems, evaluating and integrating cutting-edge tech from frontier security startups in AI and Cloud Runtime security.

We help organizations reinvent themselves.
Through data, technology, and strategic thinking, we lead transformation processes that reshape how organizations operate, make decisions, and grow.
If youre looking to work in an environment that encourages initiative, challenges ideas, and creates real impact - this is the place for you.
Integrity, excellence, and innovation are not just values - they are our standard.
we are looking for an excellent Cloud Security Expert .
Major Responsibilities:
Be part of our Great and growing Cloud security team to consult, design, develop, implement, and support our customers secure cloud environments
Deliver technology-related aspects of cloud security solutions and services to client engagements
Requirements discovery, architecture, design, and implementation of technical controls and cloud security tools
Cloud environments configuration reviews and assessment
Act as technical subject matter expert and the technical focal point for clients
When working with clients abroad, collaborate with our company member firms teams.