Collaborate closely with all development teams to build and govern security from day one to production, following best practices.
Perform application security assessments, including architecture design reviews and threat modeling.
Provide secure software guidance and act as a business enabler to cross-functional teams, including product, engineering, etc.
Design, build, and implement best-in-class application security solutions.
Lead and promote security audits, vulnerability assessments and code reviews.
Develop software security guidance, including training material, best practices, secure coding checklists, and reusable code.
Validate ongoing compliance with policies and procedures in support of regulations.
Raise the overall security awareness for the Secure-SDLC and define training roadmaps based on needs.
Work with different entities in the company to ensure S-SDLC compliance with company rules and industry standards.
Review & manage security issues identified in products, analyze severity and risk, and provide recommendations for remediation.
Establish, manage, and lead a bug bounty program

We are seeking a highly skilled and experienced Software Engineer to join our dynamic team. The ideal candidate will have a robust background in software development, a deep understanding of security technologies, and a passion for creating secure and efficient software solutions.
Key Responsibilities:
Design, develop, and maintain software solutions across the backend (Node.js), frontend (Vue.js), and additional client (Go).
Implement and manage robust security practices to protect our software and clients data in the cloud and on-premise
Manage encryption schemes, encryption keys and ensure secure key management practices.
Design and develop private blockchain solutions that meet the specific needs of an organization and into existing IT infrastructure.
Create and manage smart contracts for private blockchains.
Stay up-to-date on the latest developments in blockchain technology, Web3, and DRM.
Advise on the legal and regulatory implications of using blockchain technology.
Collaborate with other team members to define, design, and ship new features.
Write clean, maintainable, and efficient code.
Conduct code reviews and provide constructive feedback to team members.
Troubleshoot, debug, and upgrade existing software.
Stay up-to-date with emerging technologies and industry trends.

inventing a new way of managing IT end-to-end for IT professionals and teams worldwide.

By creating an AI-powered IT platform, all-in-one Remote Monitoring and Management (RMM) Helpdesk, Ticketing, and Reporting solution helps more than 23,000 IT pros achieve 10X operational efficiency, cut down time-to-resolution, and deliver better outcomes faster. Located in the heart of Tel Aviv, our team of passionate, like-minded individuals is driven by a shared mission to unleash everyone's potential and constantly innovate. We create an open, transparent, and supportive environment that gives our teams the autonomy, resources, and freedom to thrive.
We are looking for an experienced Application Security Engineer to join our team! As an Application Security Engineer, you will work with our security and R&D teams and collaborate with other IT professionals to ensure that our application, the product, the services, and the data are protected.
This is a full-time and onsite (hybrid-remote) role at our Tel Aviv office.

Responsibilities
Providing technical leadership, guidance, and direction to the DevOps, Development, and Product teams on secure code programming based on industry best practices.
Developing and maintaining specific documentation of application security controls, policies, and procedures and ensuring their implementation.
Designing technical solutions to address security weaknesses.
Analyzing system services and spotting issues in code, infrastructure, and applications.
Develop and implement continuous service improvements to the Application Security Management program.
Deliver next-generation application security controls, solve technical barriers with tools and processes, and align with application teams to ensure strong adoption.
Perform threat modeling, static and/or dynamic analysis, application security validation (negative and positive), source code review, and app PenTests to provide development guidance based on security best practices.
Update the library of information security documentation with application standards, work instructions, and training materials.
Develop communication plans for the enterprise security application function by partnering with business and enterprise architects.
Conducting pilot or POC with selected vendors for threat modeling, architecture reviews, code scanning, and penetration testing.
Collaborating with cross-functional teams and getting their cooperation.

we are looking for an experienced Security Solutions Engineer to help us create new Blink automations and scalable solutions for our customers. Your role will be both strategic and tactical, as youll be working directly with customers to understand their requirements, design solutions, and implement security controls. Join us on our mission to help every security team achieve operational excellence.

What You'll Do

Design and implement security solutions to automate the real-world customer pains.
Provide expert advice and recommendations for our security solutions that can achieve customer objectives.
Collaborate with the Sales team to establish a reputation for technical excellence and trustworthiness with potential customers.
Work jointly with other Solutions Engineers & Architects to support the Sales team with technical content and call support.
Establish and maintain a knowledge hub or repository of security best practices, resources, and insights.
Collaborate with the marketing team to generate demos, case studies, blogs, and videos.

Required Network Security Engineer
The network security engineer is responsible for design, planning, installation, modification, testing, servicing, security and day to day management of the organizations enterprise-wide network, switches, connected devices, and all data communications.
As a member of our Security Operations Team, you will collaborate with a global team of engineers to proactively identify and mitigate risks, monitor and respond to security events, respond to and assist in security incidents as a security incident responder, and protect our corporate infrastructure and operations. You will also be responsible for creating and maintaining runbooks, assisting in creating automated workflows, and assisting in process refinement and implementation.
In this role, you will:
Manage and own the installation, maintenance, administration, and upgrades of the enterprise network infrastructure and network security platforms.
Manage next generation end-point management and protection platforms including Microsoft Intune, Kandji macOS device management, provisioning and patching management, and CrowdStrike EDR solutions.
Respond to cyber security incidents by executing the incident response strategy through incident closure, while providing incident updates to the incident commander throughout the incident
Protect us while partnering across the organization to drive remediation and ensure our infrastructure is sufficiently protected
Manage post-incident activity such as POMO and Corrective Action assignments
Assist with developing and maintaining security policies, processes and incident response procedures
Coordinate the building of services, capabilities, integrations, and implementations of technologies to support security operations and incident response.

As a Detection Engineer II for Cloud Security Management (CSM), you will deliver novel detection content to our security products in order to notify customers when risky cloud configuration changes, cloud identity risks and potential attack paths are detected in their cloud environments using a plethora of observability and security data.
You will creatively identify ways to provide coverage of security frameworks and benchmarks to our customers and identify areas of improvement for technology, process and detection for us.
Together with your team, you will research cloud infrastructure vulnerabilities and misconfigurations, as well as attacker techniques against cloud-native technologies and evangelize your findings with the community. Youll apply data-driven insights to generate the highest quality security findings for our customers. Additionally, youll serve as the voice of the customer to continuously provide product feedback through our partner product teams.
What Youll Do:
Continuously learn everything about detecting attack paths, identity risks, misconfigurations, and vulnerabilities in cloud-native environments and pour it back into building a great cloud security product for our customers
Leverage Open Policy Agent (OPA) to build and maintain highly contextualized detections for our Cloud Security Posture Management (CSPM) product using OPAs Rego policy language to protect our customer cloud environments and test those detections end-to-end with Terraform
Model cloud native technical controls across a variety of both governmental and commercial compliance frameworks and security benchmarks to help our customers achieve both compliant and secure cloud configuration state
Partner with product management, engineering, security research and customers to develop roadmaps of content for cloud security and compliance concerns
Identify and drive inefficiencies out of content development processes through the creation of innovative tooling, automation; shepherd platform issues impacting content development and user experience through engineering to completion
Evangelize yourself and the security brand through blog posts, documentation, webinars, and workshops. Present at conferences to highlight the challenges and successes in the field

The Senior Security Engineer will run complex security analysis against real Layer3 - Layer7 attack vectors using various tools, technologies and techniques. Assessing and responding to Application Security threats and Low-level networking threats. Providing security support and guidance to customers during strategic projects and security events. Supporting and guiding lower security Tiers and collaborating with peers and stakeholders world-wide.

What is the job:

Hands-on analysis and research of Layer3 - Layer7 attack vectors in the area of network threats.

Investigating complex security events, gathering and assessing data from multiple sources, and providing clear picture of conclusion.

Analyzing PCAPs, logs, forensics and artifacts and using various mitigation devices.

Using investigation tools & data sources such as Wireshark, Kibana, Grafana, BigQuery, and much more.

Using SQL and different dialects to query large datasets containing HTTP transactions, security logs, network captures, etc.

Developing and maintaining scripts & automations to accelerate reoccurring tasks and projects.

Reviewing & assessing security policies of customers and providing insights and reports.

Red teaming activities.

Supporting and guiding customers during strategic cloud-onboarding projects and security architecture meetings.

Leading & supporting the teams as part of the IR during security incidents and escalations.

As a Senior member, taking part as a trainer in security & cloud training to junior members.

Collaborating with global peers & stakeholders.