דרושים » אבטחת מידע וסייבר » Security Analyst, Security Operations and Incident Response

Meta Security is looking for an Incident Response Engineer with experience in the identification, containment and mitigation of security incidents. You will be analyzing different data sources to detect, investigate and respond to internal and external threats. You will also be working with our software and production engineering teams to develop scalable systems to automate detection and remediation and help us build the next generation of security operations and response platforms.
Security Engineer, Incident Response Responsibilities
Lead security incident response in a cross-functional environment and drive incident resolution.
Contribute to Incident Response initiatives that improve Metas capabilities to effectively respond and remediate security incidents.
Perform digital forensic acquisition and analysis of a wide variety of assets including endpoints, mobile, servers and networking equipment.
Perform log analysis from a variety of sources (e.g., individual host logs, network traffic logs) to identify potential threats.
Perform security incident root cause analysis and drive implementation of containment and mitigation strategies.
Build automation for response and remediation of malicious activity.

Meta Security is looking for a Security Engineer with experience in threat modeling, TTP identification, and detection engineering. Youll work alongside Software Engineers and Offensive Security Engineers to identify critical assets, assess the top risks, and evaluate potential attacks against Meta systems. You will be working across engineering teams supporting Production and Corporate systems to develop detection and response automation leveraging both industry-standard and custom detection and response platforms. Youll generate detection ideas utilizing some of the worlds largest data sets and build on top of hyper-scale data pipelines.
Security Engineer - Surface Coverage, Detection Engineering Responsibilities
Lead cross-functional projects to improve our capabilities to effectively detect and respond to security incidents
Review security architecture of large-scale custom and commercial systems and independently propose logging, detection and prevention controls
Perform TTP-based Threat Modeling for a wide variety of assets including endpoints, mobile, servers, internal services, public & private cloud environments and networking equipment
Perform analysis against logs from a variety of sources (e.g., individual host logs, network traffic logs) to identify potential threats and detection ideas
Build response workflows and actions that auto-resolve false positives and provide context scaling our ability to investigate
Support security incident response in a cross-functional environment and drive incident resolution
Design and implement attack testing automation to validate detection coverage
Build logging pipelines using our custom datasets and infrastructure

Meta Security is looking for a Security Analyst to join our Bug Bounty program. You will be responsible for communicating with and validating security vulnerabilities from a community of security researchers around the globe. You will gain insights of Meta's codebase to understand the root cause of each vulnerability, and have the opportunity to play a key role in one of the largest bug bounty programs in the world.

The Bug Bounty program incentivizes security researchers to search for, find and report security vulnerabilities across Meta's family of products, including Facebook, Instagram, WhatsApp and Quest. The program serves as the final level of protection per Metas Shift Left operating model, aiming to discover and resolve vulnerabilities that have landed in production and are at risk of being exploited, and acts as a feedback loop for other security efforts.
Security Analyst - Bug Bounty Responsibilities
Analyze, assess, and respond to various security vulnerabilities we receive as part of our Bug Bounty program.
Follow up with researchers on unclear reports.
Understand the root cause of security vulnerabilities to help the product team fix them.
Play an active role in continuing to grow and develop the bug bounty program and other internal security and privacy initiatives.
Own expansions to the program, including private bounties.
Own critical submissions to resolution - liaise a plan with product teams, advise on the right mitigation strategy.
Implement bug fixes and feature enhancements to the program's public and internal code base.

Why Join Us?
Check Point Research (CPR) is looking for a Threat Researcher to join its Threat Intelligence Analysis (TIA) team. The team is responsible of discovering, analyzing and tracking advanced threat actors and campaigns, with a strong focus on high-end cybercrime and nation-state activities. You will join a team of motivated, independent and highly technical individuals to contribute the effort to protect Check Point customers and empower the Check Point brand.

Key Responsibilities
Identify, understand and monitor advanced campaigns using publicly available sources as well as internal data.
Analyze malware and other hacking tools utilized by threat actors in active campaigns and intrusions.
Create technical research content for external publications and private intelligence reports.
Help creating protections and detections based on deep understanding of advanced threat actors Tactics Techniques and Procedures (TTPs).
Collaborate with other security teams to assist in threat intelligence and research tasks.

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsofts mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.

Cloud Apps and Identity Research team is covering multiple SaaS based threat scenarios including Cloud Based Ransomware, Email and Files extortion, Business Email Compromise and related Nation State activity.
Responsibilities
Perform financial motivated attacker tradecraft research and threat landscape investigation across cloud-based attacks spanning permissions, identities, applications, and data.
Partner with engineers and data scientists in a geographically distributed team to deliver innovative new product capabilities.
Threat hunting to discover real world advanced attacks together with designing and implementing automated detection and hunting analytics combining alerts and signals across Microsoft Defender security products.
Contribute to active engagement with the security ecosystem through papers, presentations, and blogs.
Provide subject matter expertise to customers based on industry attack trends and product capabilities.

Why Join Us?
In this role, you will be leading code and containers security product offering. Using data, customer feedback, and market research you will be responsible for understanding the customer needs and will use this to define and drive code and containers security offering forward. Strong customer focus, excellent communication skill both with customers and R&D including the ability to translate customer into clear requirements.

Key Responsibilities
Manage 1-2 product managers in different, integrated product lines

Develop and execute product strategies that align with the CloudGuard platform vision and market needs. Collaborate with cross-functional teams to define product roadmaps and integrated product roadmap and prioritize feature development.
Work closely with engineering teams to define product requirements, user stories, and acceptance criteria. Ensure timely delivery of high-quality features that meet customer expectations.
Collaborate with marketing and sales teams to develop product messaging, and sales enablement materials. Support product launches and drive adoption.
Engage with customers to gather insights and validate product ideas. Use customer feedback to iterate on product features and improve user experience
Present our products and solutions in formal and informal settings.

Why Join Us?
Join our dynamic and innovative team at Check Point, a leading security software company committed to safeguarding digital landscapes. We are currently seeking a skilled and experienced Data Protection Officer to lead our data protection initiatives and ensure compliance with global privacy regulations.

At Check Point, we are committed to fostering a culture of innovation, collaboration, and continuous learning. As a Data Protection Officer, you will play a pivotal role in shaping and enhancing our data protection practices. Join us in our mission to create a secure digital future while enjoying professional development opportunities, and a vibrant workplace culture.

If you are passionate about data protection and privacy and eager to make a significant impact in a cutting-edge security software company, apply now to be part of our dynamic team!

* This role reports directly to the CISO.





Key Responsibilities
Policy Development: Formulate and enforce comprehensive data protection policies in alignment with relevant laws and regulations.
Data Privacy Impact Assessments (DPIA): Lead the DPIA process to evaluate and mitigate privacy risks associated with new projects and systems.
Risk Assessment: Conduct thorough risk assessments to identify and mitigate potential data protection risks within the organization.
Compliance Oversight: Stay abreast of evolving privacy laws and regulations, ensuring our company policies and practices remain in compliance.
Training and Awareness: Implement training programs to educate employees on data protection policies and best practices, fostering a culture of privacy awareness.
Data Subject Rights: Manage and respond to data subject access requests and other requests related to individual privacy rights.
Collaboration: Work closely with cross-functional teams, legal counsel, and IT security to integrate data protection principles into business processes.
Reporting: Regularly report to executive leadership on the state of data protection within the organization.

required Application Security Expert
Work closely with dev teams on all SDLC levels, performing security design reviews, threat modeling, and penetration tests, while acting as a security mentor for developers
Perform code reviews to identify security flaws and vulnerabilities
Research the platform code and services used by our developers
Build creative tools and services to detect and solve cross-security issues
Develop and deliver security training CTFs for Wix developers