A very successful global Hitech company, cloud/SaaS based, which grows also in those dates, is looking for CISO/Director of information security.

In this role you will lead a team of 6-8 people including Appsec/product security, IT security and SOC/IR.

 

Specific responsibilities will include:

 


Develop and implement a comprehensive security strategy and roadmap to protect the company’s assets, employees, and customers.
Build secure cloud and kubernetes environment
Security training for developers and the organization
Work with DevOps and Developers to improve the security culture and areas needing improvement
Provide monitoring points to help improve SOC operations and logging/alerting


 

You should bring:


8+ years of relevant experience in creating enterprise information and product security, and overseeing their implementation.
3+ years in managing security groups
Strong experience in working with application security methodologies, frameworks, and tools including OWASP Top 10 and OWASP Application Security Verification Standard.
Strong experience in designing and implementing security operations in a fully cloud-based environment.


 

We are seeking a talented and experienced Cloud Researcher to join our team. As a Cloud Researcher, you will investigate and analyze emerging threats, multi-cloud attacks, and sophisticated attack methods over cloud environments.
Responsibilities:

Conduct research and analysis on emerging threats and multi-cloud attacks.
Investigate sophisticated attack methods in cloud environments.
Stay updated with cloud technologies, network security, and Kubernetes cyber security.
Provide technical expertise and guidance on cloud security matters.
Prepare internal reports and present research findings to stakeholders.

Requirements:


Minimum of 3 years of experience in cloud security research and analysis or cloud IR .
Strong knowledge of AWS, GCP, and Azure, including infrastructure and services.
Familiarity with network security, Kubernetes, and cloud-native architectures.



 

A global enterrise company is looking for an Associate Director – Cloud  Security Architect to enhance our team’s capabilities in securing our cloud environments.
This role will focus on the intersection of cloud architecture and identity & access management, ensuring robust, secure IAM practices are integrated into our public cloud and on-premise hosting environments in alignment with defined policies and industry standards.


Your responsibilities include but are not limited to:
 


Develop and maintain security roadmaps focusing on  cloud environments, collaborating with other security domain architects for technology and service alignment.
Lead the evaluation of new IAM technologies/products/solutions for Public Cloud technologies, providing thought leadership in identifying specific IAM security standards.
Engage in hands-on engineering work, driving product/solution Proof of Concept alongside security architects/engineers.


Role Requirements

 


4+ years of experience as an Information Security Architect, with a significant focus on IAM.
2+ years of experience with AWS or Azure, particularly with IAM security architecture (IaaS/PaaS).
2+ years of experience in DevOps/DevSecOps models, focusing on integrating IAM security practices.

In this SAAS hitech company , As red team expert, you will:


Leads focus of Red Team operations and development within Ethical Hacking Methodologies from kickoff to remediation, mentoring less experienced staff.
Conduct Red Team assessments against cloud environments and enterprise threat landscape to identify vulnerabilities in software, systems, networks, and logic.
Research and verify known attacks, exploits, and security weaknesses using researched and/or developed custom tools.
Develop accurate comprehensive reports and presentations for both technical and executive audiences that assist all other security team colleagues.
Assist with threat models with the developers and architecture teams 


You should apply if you have: 


5+ years of offensive security/red team experience
Threat modeling in a cloud environment
Knowledge of Secure SDLC
AWS Experience – a must

This leading startup hosting more than 100 million active users each month.


What You’ll Do:


Assess our app sec posture. Analyze our application to identify security issues
Strategize and Operate. Plan, execute, deploy, manage and maintain application security activities to maintain a low risk level
Collaborate. Work with our Development and DevOps team members to identify and remove security risks
Educate. Train developers on secure coding practices
You will be reporting to the Chief Information Security Officer.



What You’ll Bring:


4+ years of successful track record as an application security professional with focus on cloud native applications.
Experience with application security (hands-on penetration testing – advantage)
Experience in application development with at least one modern programming language.
Experience performing code reviews
s from start to finish. If you want to join an innovative tech company where you can challenge yourself, have the freedom to own your work, and make a lasting impact, then you have a spot within our growing community!

A leading Israeli cybersecurity and crisis management company. We secure companies in various verticals: finance, maritime, fintech, aviation, healthcare, and more.

Our outstanding consulting team is looking for a Director of Cyber Readiness.

Responsibilities


Manage, mentor, and develop the teams of cybersecurity consultants, ensuring that they have the necessary skills and knowledge to provide top-quality service to clients.
Manage the financial aspects of the department.
Maintain high levels of team knowledge for cyber crisis readiness processes.
Act as the main point of contact for customer inquiries, escalations, etc.
onsible for ongoing monitoring and analysis of Israeli and international regulations related to cybersecurity, privacy protection, and related fields.


Requirements:


A minimum of 4-6 years of experience leading and managing cross-organizational cybersecurity GRC projects in large or medium-sized organizations. This includes working on-site with clients as needed.
Proven experience in drafting and implementing cybersecurity policies and procedures, both in Hebrew and English.
Demonstrable experience with regulatory and standardization processes, as well as familiarity with certifications such as ISO27001/27032, GDPR, Israeli Privacy Protection Regulations, NIST, and sectorial regulations like SEC, FDA, etc.


 

A leading Israeli cybersecurity and crisis management company. We secure companies in various verticals: finance, maritime, fintech, aviation, healthcare, and more. We are looking for a new Manager for our outstanding Managed Services.

Reports to: MSSP Manager

Job Description:


Manage, mentor, and develop a small team of cybersecurity professionals
Continuously research new cybersecurity technologies and trends to ensure the MSSP remains at the forefront of the industry.
Define automations (SOAR) workflow to streamline security processes and reduce manual effort.
Participating in cyber incident response to support crisis management, monitor affected clients, and conduct investigations.
Onboarding and configuring clients assets for SIEM monitoring.


Position Requirements:


2+ years of hands-on experience in cybersecurity with a specific focus on SIEM, SOC, and MSSP functions.
Hands-on experience with security technologies (EDRs, QRadar, Ticketing, firewalls, IDS/IPS, SIEM, VPN, etc.) public cloud environments (AWS/GCP/Azure)
Experience and deep understanding of automation platforms – (SOAR)
Experience with one scripting or developing language (Python/bash) – Advantage.



risis management.

A a leading Israeli cybersecurity and crisis management company. We provide response to cyberattacks, cyber crisis management, and Managed Cybersecurity 

Reports to: CEO

Job Description:
Manage, mentor, and develop the teams of cybersecurity professionals, ensuring that they have the necessary skills and knowledge to provide top-quality service to customers.

Manage the financial aspects of the managed services.

Maintain high levels of team readiness for cyber incidents.

Be an escalation point to handle complex security issues.

Supervise and lead the automation development of the managed service to improve efficiency and effectiveness.

Develop incident response methodology and nurture cyber practitioners towards hands-on incident response expertise.


Position Requirements:

Experience in the cybersecurity ecosystem – minimum five years.

Experience in leading a SOC team – minimum two years.

In-depth knowledge of security controls and technologies: EDR, SIEM, SOAR, Patch management, zero-trust technologies, and phishing awareness platforms.

The Global Infosec Department is working in a huge scale, cloud based environment 
Responsibilities

– Lead the company ISO27001 program
– In charge of 3rd party risk management program
– Write, publish and track compliance with the company global Infosec policies and procedures.
– Lead the company Infosec awareness program
– Respond on behalf of the company to external infosec audits, data protection assessments, Privacy requirements and any other related activity.
What we expect

– At least 3 years of experience in a similar role in a software/technology company.
– Experience leading GRC initiatives and making a significant impact on a similar company.

.