דרושים » אבטחת מידע וסייבר » Security Engineer - Surface Coverage, Detection Engineering

26/01/2025
משרה זו סומנה ע"י המעסיק כלא אקטואלית יותר
מיקום המשרה: תל אביב יפו
סוג משרה: משרה מלאה
משרות דומות שיכולות לעניין אותך
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
6 ימים
Meta
Location: Tel Aviv-Yafo
Job Type: Full Time
Meta Security is looking for a Security Engineer with experience in threat modeling, TTP identification, and detection engineering. Youll work alongside Software Engineers and Offensive Security Engineers to identify critical assets, assess the top risks, and evaluate potential attacks against Meta systems. You will be working across engineering teams supporting Production and Corporate systems to develop detection and response automation leveraging both industry-standard and custom detection and response platforms. Youll generate detection ideas utilizing some of the worlds largest data sets and build on top of hyper-scale data pipelines.
Security Engineer - Surface Coverage, Detection Engineering Responsibilities
Lead cross-functional projects to improve our capabilities to effectively detect and respond to security incidents
Review security architecture of large-scale custom and commercial systems and independently propose logging, detection and prevention controls
Perform TTP-based Threat Modeling for a wide variety of assets including endpoints, mobile, servers, internal services, public & private cloud environments and networking equipment
Perform analysis against logs from a variety of sources (e.g., individual host logs, network traffic logs) to identify potential threats and detection ideas
Build response workflows and actions that auto-resolve false positives and provide context scaling our ability to investigate
Support security incident response in a cross-functional environment and drive incident resolution
Design and implement attack testing automation to validate detection coverage
Build logging pipelines using our custom datasets and infrastructure
Requirements:
Minimum Qualifications
7+ years of experience in Detection & Response Engineering or similar Security Engineering role
Experience building complex automations and integrations using SOAR platforms
Bachelor's degree or equivalent experience in Security
Experience designing systems used for responding to both external and insider threats
Experience analyzing network and host-based security events
Knowledge of networking technologies, specifically TCP/IP and the related protocols
Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux
Coding/scripting experience in one or more general purpose languages
Experience with attacker tactics, techniques, and procedures
Preferred Qualifications
Background in security-focused software engineering, designing large scale systems and data pipelines, or offensive security
Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigates suspicious behavior across networks and systems
Broad knowledge across the Security domain, as well as deep focus in one (or more) areas such as Logs and events processing, Incident Management, Digital Forensics, Offensive Security Testing, Detection and/or Response tooling development
.המשרה מיועדת לנשים ולגברים כאחד
 
Show more...
הגשת מועמדות
עדכון קורות החיים לפני שליחה
94778
שירות זה פתוח ללקוחות VIP בלבד
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
6 ימים
Meta
Location: Tel Aviv-Yafo
Job Type: Full Time
Meta Security is looking for a Security Engineer with experience in threat modeling, TTP identification, and detection engineering. Youll work alongside Software Engineers and Offensive Security Engineers to identify critical assets, assess the top risks, and evaluate potential attacks against Meta systems. You will be working across engineering teams supporting Production and Corporate systems to develop detection and response automation leveraging both industry-standard and custom detection and response platforms. Youll generate detection ideas utilizing some of the worlds largest data sets and build on top of hyper-scale data pipelines.
Security Engineer - Surface Coverage, Detection Engineering Responsibilities
Lead cross-functional projects to improve our capabilities to effectively detect and respond to security incidents
Review security architecture of large-scale custom and commercial systems and independently propose logging, detection and prevention controls
Perform TTP-based Threat Modeling for a wide variety of assets including endpoints, mobile, servers, internal services, public & private cloud environments and networking equipment
Perform analysis against logs from a variety of sources (e.g. individual host logs, network traffic logs) to identify potential threats and detection ideas
Build response workflows and actions that auto-resolve false positives and provide context scaling our ability to investigate
Support security incident response in a cross-functional environment and drive incident resolution
Design and implement attack testing automation to validate detection coverage
Build logging pipelines using our custom datasets and infrastructure
Requirements:
Minimum Qualifications
5+ years of experience in Detection & Response Engineering or similar Security Engineering role
Experience building complex automations and integrations using SOAR platforms
Bachelor's degree or equivalent experience in Security
Experience designing systems used for responding to both external and insider threats
Experience analyzing network and host-based security events
Knowledge of networking technologies, specifically TCP/IP and the related protocols
Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux
Coding/scripting experience in one or more general purpose languages
Experience with attacker tactics, techniques, and procedures
Preferred Qualifications
Background in security-focused software engineering, designing large scale systems and data pipelines, or offensive security
Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigates suspicious behavior across networks and systems
Broad knowledge across the Security domain, as well as deep focus in one (or more) areas such as Logs and events processing, Incident Management, Digital Forensics, Offensive Security Testing, Detection and/or Response tooling development
.המשרה מיועדת לנשים ולגברים כאחד
 
Show more...
הגשת מועמדות
עדכון קורות החיים לפני שליחה
94780
שירות זה פתוח ללקוחות VIP בלבד
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
4 ימים
WIX
Location: Tel Aviv-Yafo
Job Type: Full Time
Join Wixs Internal Platform Engineering team. We define Wixs system architecture, network and security standards, and maintain our global infrastructure. Were responsible for the design, development, and operation of security services and components that engineering relies on to deliver solutions to Wix. In your day-to-day, you will:

Drive the development of new security capabilities to support delivery and ensure that the tools and approaches used are effective
Support the efficient delivery of services by employing industry best practices for the automated build and deployment of security infrastructure and code
Support Cloud Technology deployments, lift and shift migrations and transformation of Cloud solutions that manage hybrid and on-premises infrastructure
Assist with the execution of architecture blueprints and brings security into a DevOps mindset and culture
Collaborate with Product teams to support the evaluation of planned changes, to minimize security risk
Provide advice on security to contribute to different projects and product development
Requirements:
3+ years experience working in a large enterprise environment, with a solid grasp of SecOps, and a background in the design of secure systems
Knowledge and expertise of software engineering methodologies, corporate security, threat security, incident response and configuration management process
Experience with web application vulnerabilities, application authentication and authorization protocols, application security methodologies, secret management, PKI and SSL/TLS
Experience with networking foundations: TCP/IP, DNS, Load-balancers, network security, firewalls and routing protocols
Experience with SSO solutions:Keycloak, Okta, Google SAML, Azure Authentication
Experience of cybersecurity solutions: SIEM,EDR, Endpoint protection, Firewalls, Vulnerability scanning, Email Security
Excellent interpersonal and communication skills in both English and Hebrew
An advantage if you have:

Experience with at least one major cloud platform: AWS,GCP, or Azure
Experience with Docker, Kubernetes or other container-based technologies
Experience with automation/configuration management using tools like Terraform, Ansible or an equivalent
An understanding of the management of different software version control repositories, specifically Git and development frameworks
Experience in writing Security procedures and policies
.המשרה מיועדת לנשים ולגברים כאחד
 
Show more...
הגשת מועמדות
עדכון קורות החיים לפני שליחה
95203
שירות זה פתוח ללקוחות VIP בלבד
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
6 ימים
Meta
Location: Tel Aviv-Yafo
Job Type: Full Time
Meta's Product Security team is seeking a passionate hacker who derives purpose in life by revealing potential weaknesses and then crafting creative solutions to eliminate those weaknesses. Your skills will be the foundation of security initiatives that protect the security and privacy of over two billion people. You will be relied upon to provide engineering and product teams with mobile security expertise necessary to make confident product decisions.

As a Mobile Security Engineer at Meta, you will have the opportunity to explore a wide range of problem spaces working on multiple tech stacks across Android, iOS, and custom operating systems and hardware. You will engage directly with product teams to analyze application code and detect complex vulnerabilities, and assist them in mitigating these risks. You will develop frameworks and tools to perform automated detection of vulnerabilities and scale the impact of individuals.

Come help us make life hard for the bad guys.
Product Security Engineer Responsibilities
Security Reviews: perform manual design and implementation reviews of products and services that make up the Meta ecosystem, like Instagram, WhatsApp, Oculus, Portal, and more.
Developer Guidance: provide guidance and education to developers that help prevent the authoring of vulnerabilities.
Automated Analysis and Secure Frameworks: build automation (static and dynamic analysis) and frameworks with software engineers that enable Meta to scale consistently across all of our products.
Requirements:
Minimum Qualifications
B.S. or M.S. in Computer Science or related field, or equivalent experience
5+ years of experience finding vulnerabilities in mobile relevant languages (Java, Objective-C). Knowledge of best practice secure code development
Experience with exploiting common security vulnerabilities
Preferred Qualifications
Experience writing software that enables security processes
Contributions to the security community (public research, blogging, presentations, bug bounty, etc.)
.המשרה מיועדת לנשים ולגברים כאחד
 
Show more...
הגשת מועמדות
עדכון קורות החיים לפני שליחה
94777
שירות זה פתוח ללקוחות VIP בלבד
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
5 ימים
MICROSOFT ISRAEL
Job Type: Full Time
We are currently undergoing a significant hiring push, with numerous opportunities available. All relevant applicants will be matched to the most suitable team later in the hiring process.

Are you passionate about cyber defense and making major customer impact? Do you want to be part of an excellent team shaping the future of Cloud and Enterprise Security? Do you have excellent communication and problem-solving skills, strong technical background, and great passion for "moving the needle"?

If you're looking for way to change the world and to make an impact by making the world more secure, come join us working for the largest security company in the world, on the leading planet-scale products!


Our rapidly growing group builds leading globally available Cyber Defense solutions at massive scale, working with a diverse set of technologies spanning across, client, backend, big-data, and frontend.



Projects developed in our group includes:


Microsoft Defender for Cloud (MDC), that is disrupting CloudSecurity by building a solution for protecting multi-cloud workloads, including cloud security posture management (CSPM) that finds weak spots across cloud configuration, helps strengthen the overall security posture and identify risk, and Threat protection which identifies real time attacks and helps the SOC respond and mitigate.

And a major and disruptive, newly formed project, that aims to revolutionize Secure Posture Management and take -

cyber protection effectiveness to a new level, making a substantial difference across the Microsoft Defender Suite, through offering a Unified, complete and context rich, autonomous posture. As a member of our team, you'll get to work on an innovative product that's shaking up the cyber security market. This exciting security solution utilizes cutting-edge technology, big data, and machine learning to revolutionize the way security teams operate.
Responsibilities
As a Senior Software Engineer, you will have the incredible opportunity to work on business-critical initiatives that directly contribute to the future of Microsoft Security business. You must be deeply technical and be able to ramp up in new areas quickly since your responsibilities will span many areas of Microsoft Security products as well as all layers of the cloud technology stack. Excellent design and architecture skills, ability to grow top notch individual contributor dev talent along with proven capabilities in planning, designing and executing high quality feature work on schedule are all key expectations of the role.
Requirements:
7+ years of hands-on experience in Software Engineering
5+ years of proven hands-on technical skills working on large scale production systems
Experienced in cloud programming environments, using modern architecture
BSC or MSC in Software Eng. or Computer Eng.
Strong problem analysis skills
Team player with excellent collaboration, communication, and leadership skills
Attention to details and passion for quality engineering
Demonstrate success dealing with ambiguous unsolved problems; and the ability to independently make solid progress by breaking new ground
Advantages

Experience with Security/Cyber domains
Experience with Kubernetes and Containers
Experience with.NET/C#
Experience with Azure cloud environment
Experience with application and system monitoring systems
.המשרה מיועדת לנשים ולגברים כאחד
 
Show more...
הגשת מועמדות
עדכון קורות החיים לפני שליחה
94929
שירות זה פתוח ללקוחות VIP בלבד
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
5 ימים
MICROSOFT ISRAEL
Job Type: Full Time
We are currently undergoing a significant hiring push, with numerous opportunities available. All relevant applicants will be matched to the most suitable team later in the hiring process.



Are you passionate about cyber defense and making major customer impact? Do you want to be part of an excellent team shaping the future of Cloud and Enterprise Security? Do you have excellent communication and problem-solving skills, strong technical background, and great passion for "moving the needle"?

If you're looking for way to change the world and to make an impact by making the world more secure, come join us working for the largest security company in the world, on the leading planet-scale products!



Our rapidly growing group builds leading globally available Cyber Defense solutions at

massive scale, working with a diverse set of technologies spanning across, client,

backend, big-data, and frontend.



Projects developed in our group includes:



Microsoft Defender for Cloud (MDC), that is disrupting #CloudSecurity by building a solution for protecting multi-cloud workloads, including cloud security posture management (CSPM) that finds weak spots across cloud configuration, helps strengthen the overall security posture and identify risk, and Threat protection which identifies real time attacks and helps the SOC respond and mitigate.

And a major and disruptive, newly formed project, that aims to revolutionize Secure Posture Management and take -cyber protection effectiveness to a new level, making a substantial difference across the Microsoft Defender Suite, through offering a Unified, complete and context rich, autonomous posture. As a member of our team, you'll get to work on an innovative product that's shaking up the cyber security market. This exciting security solution utilizes cutting-edge technology, big data, and machine learning to revolutionize the way security teams operate. 

Responsibilities
As a Software Engineer, you will have the incredible opportunity to work on business-critical initiatives that directly contribute to the future of Microsoft Security business. You must be deeply technical and be able to ramp up in new areas quickly since your responsibilities will span many areas of Microsoft Security products as well as all layers of the cloud technology stack. Excellent design and architecture skills, ability to grow top notch individual contributor dev talent along with proven capabilities in planning, designing and executing high quality feature work on schedule are all key expectations of the role.
Requirements:
3+ years of hands-on experience in Software Engineering
1+ years of proven hands-on technical skills working on large scale production systems
Experienced in cloud programming environments, using modern architecture
BSC or MSC in Software Eng. or Computer Eng.
Strong problem analysis skills
Team player with excellent collaboration, communication, and leadership skills
Attention to details and passion for quality engineering
Demonstrate success dealing with ambiguous unsolved problems; and the ability to independently make solid progress by breaking new ground
Advantages

Experience with Security/Cyber domains
Experience with Kubernetes and Containers
Experience with.NET/C#
Experience with Azure cloud environment
Experience with application and system monitoring systems
.המשרה מיועדת לנשים ולגברים כאחד
 
Show more...
הגשת מועמדות
עדכון קורות החיים לפני שליחה
94927
שירות זה פתוח ללקוחות VIP בלבד
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
4 ימים
WIX
Location: Tel Aviv-Yafo
Job Type: Full Time
Research, identify, evaluate and implement the best solutions for security in Wixs production environment
Research, identify, evaluate and implement the best solutions for the platform code and services used by our developers
Work closely with development and system teams on all SDLC levels, performing security design reviews, threat modeling and penetration tests, while acting as a security mentor for developers
Investigate abnormal activity in production
Build creative tools and services to detect and solve cross-security issues
Requirements:
An Application Security Architect with 5+ years of hands-on experience in offensive application security
Passionate about cutting-edge technologies
Have in-depth knowledge of web application vulnerabilities, their exploitation in the real world, and browser security mechanisms
Have a great understanding of authentication and authorization protocols, and application security methodologies
Excited by the idea of taking on lots of responsibility, you can work independently and be flexible
Open-minded self-learner who can see the big picture, analyze complex systems, identify potential failure points and find opportunities for big security wins
Youll get bonus points if:

Youve published security research
Youve participated in bug bounty programs
You're familiar with Node/Java/Scala programming languages, or know your way around Docker containers and Kubernetes
Knowing your way around AWS and GCP environments, or cloud and microservice architectures
.המשרה מיועדת לנשים ולגברים כאחד
 
Show more...
הגשת מועמדות
עדכון קורות החיים לפני שליחה
95201
שירות זה פתוח ללקוחות VIP בלבד
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
4 ימים
WIX
Location: Tel Aviv-Yafo
Job Type: Full Time
Job Description
Quickly identify and resolve infrastructural problems related to networking and security stacks
Work with all aspects of our rapidly-developing infrastructure
Design and implement the next generation of tools and networking changes needed to assure stability, increase velocity, and enhance users experience by optimizing the networking stack
Be a member of the Systems Team and participate in on-call duties (1 week every 5-6 weeks)
Make sure that our network services across the entire company are effective, secure, and easy to use
Be part of Wixs innovative culture, which includes proposing, convincing, and executing any activity that you find contributes to the success of Wix
Requirements:
Youre a DevOps/System Security Engineer with 3-4 years of experience including networking
Experience with networking equipment like Juniper, F5, Palo Alto, Fortigate, Arista, open-software solutions (VyOS, pFsense, etc.) and have a full understanding of routing protocols (e.g. BGP, OSPF, etc), VPN/GRE tunneling, as well as strong networking foundations in TCP/IP, DNS, load-balancers, network security, etc.
Youre also great when it comes to hardware, from data center equipment to storage and backup systems
Experience with private and public clouds, as well as hyperconverged solutions
Your experience spans to Linux system internals, Windows, MacOS, Docker, Terraform, shell scripting (bash, sh, etc), scripting languages (GO, Python, Ruby, etc) as well as automation.
Bonus points if you have:
Experience in Docker or other container-based technologies
CCNP/CCIE or any other equal certification from other vendors (Juniper/Arista/etc)
Experience with perimeter and internal networking DDoS protections and security solutions e.g. WAF, Zero Trust, FWs, Micro Segmentation, Proxies, etc.
.המשרה מיועדת לנשים ולגברים כאחד
 
Show more...
הגשת מועמדות
עדכון קורות החיים לפני שליחה
95205
שירות זה פתוח ללקוחות VIP בלבד
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
1 ימים
Check Point
Location: Tel Aviv-Yafo
Job Type: Full Time and Hybrid work
We are looking for a Network Engineer, who is motivated, self-managed, team player with good interpersonal skills to be responsible for:

Engaging with customers worldwide to understand and address their technical requirements.
Deploying the company's cutting-edge Beta software and hardware on customers' sites, ensuring a seamless experience prior to market release.
Collaborating directly with development teams, QA engineers, and managers at all levels.
Conducting comprehensive testing, debugging, and documentation of beta deployments in simulated customer environments and during on-site activities.
Providing effective technical support to beta testing customers.
Requirements:
3-5 years of proven experience in the networking field.
In-depth knowledge of networking and protocols, including a strong grasp of TCP/IP fundamentals and widely used protocols such as DNS, HTTP(S), SMTP, FTP, and VOIP.
Exceptional troubleshooting skills.
Strong presentation and customer-facing abilities.
Proficiency in both written and spoken English.
Demonstrated autonomy, motivation, and self-management skills in the workplace.
Ability to travel approximately 20% of the time for on-site activities worldwide.
Advantageous Skills:

Candidates with the following additional skills will be at an advantage:

Knowledge of Check Point products.
Familiarity with other security products.
Understanding of cloud environments, including experience with Azure, AWS, or Google Cloud.
.המשרה מיועדת לנשים ולגברים כאחד
 
Show more...
הגשת מועמדות
עדכון קורות החיים לפני שליחה
93311
שירות זה פתוח ללקוחות VIP בלבד
דיווח על תוכן לא הולם או מפלה
מה השם שלך?
תיאור
שליחה
תודה על שיתוף הפעולה
מודים לך שלקחת חלק בשיפור התוכן שלנו :)
1 ימים
ריקרוטיקס בע"מ
מיקום המשרה: תל אביב יפו
סוג משרה: משרה מלאה ועבודה היברידית
ביצוע מגוון רחב של מבדקי חוסן אפליקטיביים ללקוחותינו ברחבי הארץ ובעולם.
ליווי צוותי פיתוח בסוגיות קוד מאובטח
דרישות:
ניסיון של שנתיים לפחות בביצוע PT על פלטפורמות WEB/Mobile
הכרות ויכולות כתיבת Scripts בשפות נפוצות, כגון: Python, Bash, JavaScript, HTML, PHP, C, C #, JAVA
יידע מעמיק במתודולוגיית OWASP Top 10.
היכרות וניסיון רב עם BURP עם תוכנות Proxy דומות.
הבנה מעמיקה בפרוטוקולי תקשורת (TCP/IP, HTTP/S וכו') והצפנות.
יכולת לאתר, לתעד ולדווח על פגיעויות באפליקציות ומערכות.
יכולת עבודה עצמאית ובצוות.
יכולת גבוהה בלימוד עצמי.
שליטה מלאה בעברית ובאנגלית, קריאה וכתיבה טכנית.
יידע ב-PT תשתיתי יתרון.
הסמכות בתחום (כגון OSCP, OSWE) יתרון משמעותי. המשרה מיועדת לנשים ולגברים כאחד.
 
עוד...
הגשת מועמדות
עדכון קורות החיים לפני שליחה
88896
שירות זה פתוח ללקוחות VIP בלבד