Responsibilities:
* Lead advanced threat detection, threat hunting, and proactive vulnerability identification initiatives.
* Develop, maintain, and optimize threat detection rules and Indicators of Attack (IOAs).
* Collaborate closely with the SOC &IR teams, guiding rule creation, tuning, and incident triage.
* Conduct forensic investigations and support root-cause analysis.
* Design, maintain, and enhance cloud and SaaS security architectures, including Microsoft 365.
* Lead initial technical response actions during cybersecurity incidents.
* Oversee technical security operations, monitoring, and investigative activities.
* Act as a senior expert for system-level troubleshooting, integration, and security optimization.
* Monitor emerging threats and drive continuous improvements in detection and response capabilities.
* Report directly to the Director of Cyber & IT (CISO).
City:
Petah Tikva
* 5+ years of hands-on experience in cybersecurity, ideally in detection engineering, threat hunting, or incident response.
* Hands-on System/Network Administration experience, including installation, configuration, maintenance, and troubleshooting of systems, networks, and security products
* Strong expertise with EDR (CrowdStrike preferred), SIEM, SOAR, and related security platforms.
* Proven experience in creating and tuning detection rules, IOAs, and behavioral analytics.
* Practical knowledge of forensic investigation tools and methodologies.
* Solid understanding of cloud and SaaS security architectures (Microsoft 365 experience is an advantage).
* Expert troubleshooting and strong analytical skills, effective under pressure.
* Experience collaborating with SOC teams and external IR providers.
* Familiarity with attacker tactics, techniques, and procedures (TTPs) and frameworks such as MITRE ATT&CK.
* Deep understanding of production environments and user-impact considerations.
* Experience working in a global organization.
