שפלה

We are looking for atop-tier Cyber Security Analyst & IR Expert (Tier 3) to leadthe professional response within our defense team. In this role, you willspearhead complex investigations, perform deep-dive forensics, and continuouslyevolve the detection and response capabilities of a leading financialinstitution.

Thisposition requires high technical proficiency, "out-of-the-box"thinking, and a profound understanding of both offensive and defensive securitylandscapes.

Note: The position is open toboth men and women alike.

KeyResponsibilities

·       IncidentResponse (IR): Lead end-to-end (E2E)investigations of complex cyber incidents, performing deep-dive technicalanalysis.

·       ThreatHunting: Conduct proactive threathunting based on Cyber Intelligence and hypothetical attack scenarios acrosson-prem and cloud environments.

·       DetectionEngineering: Design and build advancedSIEM rules, write YARA/Sigma rules, and optimize alert logic to reduce noiseand increase precision.

·       PurpleTeaming: Collaborate closely with RedTeam/PT units to analyze penetration tests and validate security vulnerabilities.

·       Mentoring: Act as a technical focal point, providing guidance andmentorship to Tier 1 and Tier 2 analysts.

Requirements

·       Experience: At least 3+ years of hands-on experience as a CyberInvestigator / SOC Analyst (Tier 2/3) – Mandatory.

·       OSMastery: Deep understanding of Windows& Linux operating systems at the Kernel/Internals level – Mandatory.

·       TechStack: Proven experience with SIEM, XDR,and SOAR systems, including writing complex queries, building dashboards, anddeveloping detection rules – Mandatory.

·       DigitalForensics: Hands-on experience inforensic investigations using tools such as Volatility, EnCase, FTK, orequivalent open-source tools – Mandatory.

·       Scripting: Proficiency in Python, PowerShell, or Bash forautomation and investigation purposes – Mandatory.

·       Networking: Deep understanding of network protocols andinfrastructure.

·       Languages: High-level English (both technical writing and reading).

‍

We are looking for a developer to join a team responsible for managing, operating, and monitoring the platform.

This is a hands-on role that includes direct work with customers, designing new services, installing and managing various third-party software (Kafka, MQ, Dockers), and ensuring continuous and stable system operation.

The administrator will also take part in developing the next generation of AI-driven system observability.

Role Responsibilities:

● Customer Support:

• Designing and implementing new services together with customers – defining, connecting, and deploying services across various technologies using system interfaces
• Handling customer issues
• Providing training and guidance on system usage

● System Operations:

• Troubleshooting infrastructure issues
• Ongoing and proactive monitoring with various tools, including Grafana Observability tools: Prometheus and Loki
• Developing infrastructure components required for system operation and monitoring

● Integration Infrastructure Management, Operation, and Maintenance:

• Cores, API gateways, system agents
• Third-party products such as Kafka, message queue systems, databases, FTP servers, web servers, and other supporting components
• Implementing and integrating intelligent AI-based monitoring: anomaly detection, alerts, and forecasting

● Extensive scripting development in bash, PowerShell, PHP, and Python

Requirements:

• Strong operational capabilities and willingness to provide direct customer support during non-standard hours – must
• Ability to switch between customer support and infrastructure development – must
• Experience with scripting languages and infrastructure products: databases, Docker, Kubernetes, etc. – must
• Fast self-learning ability for new technologies, including installation and administration – must
• Deep knowledge of XML, JSON, SOAP, and other protocols – must
• System-level proficiency in Linux/Windows – advantage
• Familiarity with Grafana Observability tools – advantage
• Previous experience in a DevOps role – advantage

‍

‍

ניסיוןשל לפחות שנתיים כמיישמ.ת SAP CRM ו/אומערכות מימון ו/או מודולים פיננסים של SAP - חובה

ניסיון באפיון (פונקציונלי וטכני) ויישום מערכות בעולמות המימון - יתרון

תואר אקדמאי בכלכלה/מימון/ראיית חשבון/מערכות מידע – יתרון

עבודה בגוף פיננסי הכפוף לרגולציה – יתרון