A leading Israeli cybersecurity and crisis management company. We secure companies in various verticals: finance, maritime, fintech, aviation, healthcare, and more.

Our outstanding consulting team is looking for a Director of Cyber Readiness.

Responsibilities


Manage, mentor, and develop the teams of cybersecurity consultants, ensuring that they have the necessary skills and knowledge to provide top-quality service to clients.
Manage the financial aspects of the department.
Maintain high levels of team knowledge for cyber crisis readiness processes.
Act as the main point of contact for customer inquiries, escalations, etc.
onsible for ongoing monitoring and analysis of Israeli and international regulations related to cybersecurity, privacy protection, and related fields.


Requirements:


A minimum of 4-6 years of experience leading and managing cross-organizational cybersecurity GRC projects in large or medium-sized organizations. This includes working on-site with clients as needed.
Proven experience in drafting and implementing cybersecurity policies and procedures, both in Hebrew and English.
Demonstrable experience with regulatory and standardization processes, as well as familiarity with certifications such as ISO27001/27032, GDPR, Israeli Privacy Protection Regulations, NIST, and sectorial regulations like SEC, FDA, etc.


 

The Global Infosec Department is working in a huge scale, cloud based environment 
Responsibilities

– Lead the company ISO27001 program
– In charge of 3rd party risk management program
– Write, publish and track compliance with the company global Infosec policies and procedures.
– Lead the company Infosec awareness program
– Respond on behalf of the company to external infosec audits, data protection assessments, Privacy requirements and any other related activity.
What we expect

– At least 3 years of experience in a similar role in a software/technology company.
– Experience leading GRC initiatives and making a significant impact on a similar company.

Our GRC Team (in the Security department) is expanding in a leading Hitech company, and we are looking for a GRC expert to join us and lead the company’s identity and data protection strategy.

As an GRC specialist you will be responsible for:
– Setting up strategic direction and policies for the company’s identity and data management program, that is robust and scalable to support the company’s growth.
– Mapping, establishing and improving global user management processes
– Crafting and improving DLP processes
– Assessing and managing risks for third parties
– Lead collaboration efforts across the organization

We’re looking for:
– 3-5 years of relevant experience working in a global SaaS company (or equivalent) as in-house identity management, information system management, GRC, information security or similar.
– Strong understanding of permission management and security principles, such as: RBAC, least privileges and need to know basis.

A top tier cyber technology and services company, providing consulting and incident response support for organizations worldwide.

Main Responsibilities

– Evaluate the state of security, configurations, and security strategy, identifying gaps and opportunities and anticipating needs
– Consult in cyber security engagements, including development of a cyber security plans and design implementation, and provide guidance on building security
– Recommend cyber security strategies, policies, and procedures

– Develop and support clients with internal training to assure deep understanding of fundamental cyber security practices, risks, and recommended mitigation tactics

Main Requirements

– At least 3 years of experience as a cybersecurity professional, including:

Knowledge of security design and architecture

Hands-on technical configuration and implementation of cyber security standards and controls

– Demonstrated experience working in IT, security engineering, application security, or similar positions in which you have gained profound network security understanding (routers, firewalls and NG FW & IPS, proxies, WAF, DLP, AD, GPO, EDR, cloud security)

Knowledge of authentication protocols, Active Directory, Exchange and Office365, Azure and AWS knowledge – advantage

– Fluent English (written and spoken)

Software & Cyber Security experts to provide top notch professional services in the field of Product and Application Security. Looking for Application Penetration Tester.

RESPONSIBILITIES

– As an Application Security, you will preemptively work with clients to enhance their resilience i.e. their capability to deny and sustain attacks and detect and react to these attacks in real time.
– Your focus will be on building application security strategies and evaluating and enhancing the security throughout system development lifecycle.

REQUIREMENTS

– Up to 2 years of experience with Application security penetration testing.
– Good understanding of application security methodologies and frameworks (e.g. OWASP) including Stride, Dread, Application Threat Modeling – advantage
– Database security experience including AAA, integration & connection – advantage
– Application Security design and architecture – advantage
– Fluent English (written and spoken) and proven presentation skills
– Relevant education (e.g., BSc., CISSP, OSCP)

Are you a Cybersecurity Consultant?


Join the new venture to that is offering tailor-made cybersecurity solutions for the global industry, to increase cyber readiness and ensure business continuity in the event of cyber-attack.



In this role you will establish effective relationships with clients, partners, and subcontractors, and participate in cybersecurity advisory projects.


Directly report and support the CEO in driving a pipeline of new business, and take ownership on specific efforts as part of the company set up process.


Position Requirements:


– 2-5 years of cybersecurity consulting experience. Interface with senior managerial levels – advantage
– Solid technical background, with knowledge of operating systems, experience with networks, security architecture, network protocols and cloud solutions – advantage
– Firm understanding of regulations, standards, and risk management methodologies (NIST, FAIR, MITRE ATTACK, ISO, GDPR, CCPA etc).