לוח משרות דרושים איש אבטחת מידע / סייבר בתל אביב יפו

We believe that every person has the right to participate fully in the global economy. Our mission is to democratize financial services to ensure that everyone, regardless of background or economic standing, has access to affordable, convenient, and secure products and services to take control of their financial lives.
Job Description Summary:
Information Security Engineer focused on cloud infrastructure and application security. There will be a heavy focus on large scale and highly dynamic GCP and AWS cloud environments with global presence.
Job Description:
Your day to day:
This role will be focused primarily on the security in AWS and GCP cloud environments in our company. This will include the security aspects of infrastructure, build pipelines, application design, cloud native service and tool design patterns, stakeholder communications, consulting and advisement of peer security teams, and solution review and approval.
What Do You Need To Bring
* A minimal of 5 years of experience working in a cybersecurity related position.
* Experience working with cloud-native security tools, AWS and GCP Infrastructure design, operation, and deployment, container and host security.
* Excellent communication and documentation skills.
* Knowledge of Kubernetes, terraform, source code management, infrastructure and application security tools such as CSPM, SAST, DAST, API security, DDOS and WAF.
* Development experience is a plus.
 
Our Benefits:
Were committed to building an equitable and inclusive global economy. And we cant do this without our most important assetyou. Thats why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.
 
Who We Are:
We have remained at the forefront of the digital payment revolution for more than 20 years. By leveraging technology to make financial services and commerce more convenient, affordable, and secure, the company`s platform is empowering more than 400 million consumers and merchants in more than 200 markets to join and thrive in the global economy. For more information, visit our website.
We provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, we will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us.

The Security Research team focuses on constantly improving our detection and protection coverage against ever-evolving cyber-security attack techniques and tools. The team comprises top-tier global security researchers with expertise in offensive (red teamers, penetration testers) and defensive (SOC, DFIR, malware analysts, and reversers). Each research project and detection & protection rule become a core part of our various platforms.

In this position, you will

Conduct in-depth research of OS internals (including user space and kernel space components)
Guide other researchers and developers throughout the company
Take part in shaping our security vision - identify needs, perform in-depth research, and implement new and innovative security capabilities
Nurture ideas from their inception to their deployment over millions of endpoints worldwide
Focus on detecting and preventing malicious behavior, working with our developers to integrate the findings into our system.
Closely cooperate with other teams to constantly improve our product

inventing a new way of managing IT end-to-end for IT professionals and teams worldwide.

By creating an AI-powered IT platform, all-in-one Remote Monitoring and Management (RMM) Helpdesk, Ticketing, and Reporting solution helps more than 23,000 IT pros achieve 10X operational efficiency, cut down time-to-resolution, and deliver better outcomes faster. Located in the heart of Tel Aviv, our team of passionate, like-minded individuals is driven by a shared mission to unleash everyone's potential and constantly innovate. We create an open, transparent, and supportive environment that gives our teams the autonomy, resources, and freedom to thrive.
We are looking for an experienced Application Security Engineer to join our team! As an Application Security Engineer, you will work with our security and R&D teams and collaborate with other IT professionals to ensure that our application, the product, the services, and the data are protected.
This is a full-time and onsite (hybrid-remote) role at our Tel Aviv office.

Responsibilities
Providing technical leadership, guidance, and direction to the DevOps, Development, and Product teams on secure code programming based on industry best practices.
Developing and maintaining specific documentation of application security controls, policies, and procedures and ensuring their implementation.
Designing technical solutions to address security weaknesses.
Analyzing system services and spotting issues in code, infrastructure, and applications.
Develop and implement continuous service improvements to the Application Security Management program.
Deliver next-generation application security controls, solve technical barriers with tools and processes, and align with application teams to ensure strong adoption.
Perform threat modeling, static and/or dynamic analysis, application security validation (negative and positive), source code review, and app PenTests to provide development guidance based on security best practices.
Update the library of information security documentation with application standards, work instructions, and training materials.
Develop communication plans for the enterprise security application function by partnering with business and enterprise architects.
Conducting pilot or POC with selected vendors for threat modeling, architecture reviews, code scanning, and penetration testing.
Collaborating with cross-functional teams and getting their cooperation.

We are recruiting a senior Product Manager to join our Product department.
Responsibilities:
Drive the product and business-planning process, in your respective line of responsibility, across cross-functional teams of the company
Manage product definition from initial concept to launch delivering features iteratively, and with agility, to solve the key customers challenges
Have a deep understanding of customers needs and market trends
Translate product strategy into detailed requirements, to guide the entire process from the realization of a concept, supporting the build-up of mockups/prototype up to final product development
Drive the execution of all product lifecycle processes for products, including product research, market research, competitive analysis, planning, positioning, pricing, roadmap development, requirements development, and product launch
Collaborate closely with engineering, production, marketing, and sales teams on the development, QA, and release of products and balance of resources to ensure success for the entire organization
Drive user research and creative feedback mechanisms to validate product hypotheses and optimal product solutions

We are looking for an experienced Product Manager to help us build a cloud-native security product with state-of-the-art architecture and cutting-edge technology.
The Product Manager will play a key role in the product life cycle with an emphasis on customer requirements, as well as generating and defining the product vision. The Product Manager will work closely with multiple departments including product management, engineering, UX/UI, sales, customer support, finance and marketing to ensure customer requirements are met.
This is an exciting opportunity to join a fast-growing and innovative startup, and be part of a strong team with the chance to lead a product that solves a high-profile problem in the Cloud Security space. You will be joining the companys product team and working directly under the CPO.
Your Opportunity:
Define product strategy and roadmap
Understand the cloud ecosystem, markets, competition and user requirements in depth
Conduct market research, and analyze and gather relevant information about market trends
Perform product demonstrations for customers
Launch new products and features
Develop innovative solutions to hard problems by collaborating, as needed, across regions, product areas, and functions

As Senior Software Engineer, you'll work as part of our Attack Path Analysis
Your Opportunity:
As a member of our team, you will work as part of our Exposure Management platform engineering team. As a member of our team, you will be in charge of researching, designing, and implementing microservices that provide customers with the ability to find and eliminate attack paths.
We have over 43K customers and you will play a key part in our strategy for the future.
It's a unique opportunity to join a team that works like a startup with the backing of a large and successful company. This is a great place for passionate individuals who are looking for a chance to make an impact, learn, and grow!

We are looking for a Software Research Engineer to join our Operational Technology Content team.
In this role, you will take part in protecting our customers' OT environments from a wide range of cyber threats.
Your contributions will be directly impactful, not only ensuring our customers' success but also making a significant difference in the evolving landscape of OT security.
Your Opportunity:
Research OT/IoT threats, malware and exploitation tools
Develop effective threat detection rules and enhance our product's capabilities for better threat detection
Research newly published vulnerabilities and security advisories in order to develop new detection plugins for our OT Security product
Research, develop and improve methods of detection for currently unsupported OT/IoT devices

As a Security and Compliance Solutions Architect, youll build technical relationships with customers of all sizes and operate as their trusted advisor, ensuring they get the most out of the cloud at every stage of their journey.

Youll manage the overall technical security relationship between us and our customers, making recommendations on security, compliance, cost, performance, reliability, and operational efficiency to accelerate their challenging projects.

Internally, you will be the voice of the customer, sharing their needs and wants to inform the roadmap of our security services and features.

As a Security Specialist Solutions Architect (SA), you will help customers select the technologies that will support their business requirements. Part of the Specialist Solutions Architecture team, you will work closely with the other Specialist SAs on Big Data, Databases, Analytics, Artificial Intelligence, or Modern Applications Development, as well as the Business Development teams, to enable large-scale customer use cases and drive the adoption of us for their platforms. You will interact with other SAs, providing guidance on their customer engagements by developing white papers, blogs, reference implementations, and presentations to enable customers and 3rd parties to fully leverage the company`s platform. You will also create field enablement materials for the broader SA population, to help them understand how to integrate our solutions into customer architectures.

We're looking for an experienced Threat Intelligence Researcher to join our team
WHAT YOULL DO

Track cyber threat activity targeting cloud environments
Build and maintain profiles of state-sponsored or financially motivated cyber threat actors
Track private and public threat intelligence feeds and sources
Investigate threats to customer environments based on analysis of product telemetry
Correlate and cross-reference intelligence from multiple sources to build a deeper understanding of threat activity
Work with the product and sales teams to provide security insights to customers and support decision-makers
Operationalize your knowledge to help build detections for emerging threats
Produce various forms of analytic reports describing threat activity and security incidents impacting customer environments
Publish your insights about the cloud threat landscape with the wider security community

We are looking for a GRC Analyst.
As a GRC analyst, you will be working very closely to participate in all aspects of cyber security and compliance. The role is a crucial part in our Cyber Security team and the entire security program. We are looking for a team member with experience in compliance frameworks operating with modern systems. You will be involved in all information security processes and activities, with the different teams, make risk mitigation recommendations, and suggest and review solutions. This is a key position in the process of building the security culture in the entire organization.
The ideal candidate is highly motivated, demonstrating a can do' attitude and needs to have a combination of troubleshooting and communication skills, as well as the ability to handle a mix of multiple tasks in parallel.
This role will provide career growth opportunities as you develop/acquire new security skills in the course of your duties.
RESPONSIBILITIES:
Support local, regional, and global initiatives and activities related to governance, risk, and compliance.
Establish, maintain, and publish up-to-date security and compliance policies, standards, and guidelines, and oversee training and dissemination of policies and procedures.
Identify and track timely closure of control gaps and risk mitigation plans.
Participate in ISO 27001, SOC, and other compliance assessment, evidence collection, and reporting.
Develop and implement various Governance, Risk, and Compliance tools.
Utilize a risk-based approach for vendor management, including assessing and treating the risks.
Assist with Incident Response and Business Continuity to include running table-top exercises.
Other related duties such as Incident response process, Vulnerabilities management and more.