#LI-VA1 #LI-Office

BeyondTrust is a place where you can bring your purpose to life through the work that you do, creating a safer world through our cybersecurity SaaS portfolio.

Our culture of flexibility, trust, and continual learning means you will be recognized for your growth, and for the impact you make on our success. You will be surrounded by people who challenge, support, and inspire you to be the best version of yourself.

The Role

BeyondTrust is a global leader in privileged access management. Our products provide remote access and privileged control capabilities that are deployed across thousands of enterprise environments worldwide. That makes us a high-value target. Nation-state actors, ransomware operators, and sophisticated threat groups actively target companies like ours—not just to compromise our corporate environment, but to reach the customers who trust our software to protect their most sensitive systems. A compromise of BeyondTrust is a compromise of the privileged access layer inside our customers’ networks. We take that responsibility seriously.

As a SOC Analyst on our Cyber Defense Operations team, you will serve as a front-line defender responsible for protecting both BeyondTrust’s enterprise infrastructure and the integrity of the products our customers depend on. You will monitor, investigate, and respond to security events in an environment where the stakes are real and the adversaries are capable. You will work alongside experienced threat hunters, incident responders, and detection engineers in a collaborative team that values sharp analytical thinking over checkbox compliance.

This team is building toward an AI-augmented operating model. You will be expected to use AI-driven tools in your daily work and to contribute to how we integrate these capabilities into our detection, triage, and response workflows. We are not looking for people who are waiting to be told what to do—we are looking for people who want to build something.

What You’ll Do

Alert Triage & Monitoring 

• Monitor and triage security alerts across SIEM, EDR, and CSPM platforms covering both corporate and product environments.
• Investigate alerts to determine scope, severity, and whether escalation is warranted.
• Leverage AI-assisted triage and enrichment tools to accelerate analysis and reduce mean time to detect.
• Classify, document, and track alerts through the full lifecycle using ticketing and case management systems.

Incident Response & Investigation 

• Participate in or lead incident response engagements from detection through remediation, including evidence collection, forensic analysis, root cause determination, and stakeholder communication.
• Conduct investigations across SIEM, EDR, CSPM, and cloud-native log sources including identity provider logs, cloud audit trails, and network flow data—spanning both corporate and product infrastructure.
• Execute established IR runbooks across identity, endpoint, cloud, and email investigation workflows.
• Manage or assist with evidence handling, forensic artifact collection, and chain-of-custody procedures.
• Produce clear, decision-ready incident summaries and post-incident reports for both technical and leadership audiences.

Detection Engineering & Threat Intelligence 

• Contribute to the design, implementation, and tuning of detection rules across SIEM and EDR platforms, with a focus on reducing false positives and closing coverage gaps.
• Translate threat intelligence (CVE advisories, CISA alerts, vendor bulletins, open-source feeds) into actionable detection content, with particular attention to threats targeting privileged access tooling and supply chain attack vectors.
• Help maintain and evolve detection coverage mapped to MITRE ATT&CK.
• Partner with threat hunting peers to validate detection logic through hypothesis-driven hunts.

AI Integration & Automation 

• Use AI-driven tools for alert triage, enrichment, and investigation as a standard part of daily operations.
• Contribute to the evaluation, integration, and optimization of AI and automation capabilities across the team’s workflows.
• Assist in designing prompts, agent workflows, or LLM-based pipelines that augment analyst capabilities and reduce manual effort.
• Partner with engineering teams to improve log ingestion, data quality, and tool integrations.

Operational Excellence 

• Maintain daily operational notes and shift handoff documentation.
• Contribute to and refine IR runbooks, playbooks, and standard operating procedures.
• Participate in on-call rotation for after-hours incident escalation.
• Track and report on operational metrics (MTTD, MTTR, MTTC, false positive rate) and identify improvement opportunities.
• Participate in tabletop exercises, purple team activities, and post-incident reviews. 

What You’ll Bring

• 2+ years of experience in a SOC, security operations, or incident response role.
• Understanding of common attack frameworks (MITRE ATT&CK), network protocols, and endpoint behavior.
• Experience with at least one SIEM platform and familiarity with writing search or detection queries.
• Familiarity with EDR platforms and cloud environments (IaaS preferred).
• Comfort using AI systems (e.g., LLM-based assistants, copilots, or AI-driven analysis tools) as part of security workflows.
• Strong written communication skills; able to document findings clearly and concisely for both technical and non-technical audiences.

Nice To Have

• Experience leading or co-leading complex incident response engagements from triage through remediation.
• Experience with identity and access management platforms and cloud security posture management tools.
• Scripting and automation skills (Python, PowerShell, or equivalent) applied to security workflows.
• Familiarity with SOAR platforms or orchestration tools for automated response and enrichment.
• Experience designing or implementing AI agent architectures, LLM-based automation pipelines, or prompt engineering for security use cases.
• Experience building or contributing to threat intelligence programs or detection-as-code pipelines.
• Understanding of the privileged access management landscape and the threat actors that target it.
• Track record of evaluating and adopting emerging technologies in a production security environment.

Better Together

Diversity. Inclusion. They’re more than just words for us. They are the guiding values of how we build our teams, cultivate leaders, and create a culture where people feel connected.

We take care of our employees so they can take care of our customers. Customers who come from all walks of life just like us. We hire incredible people from diverse backgrounds because when we are different together, we are stronger together.

About Us

BeyondTrust is the global identity security leader protecting Paths to Privilege™. Our identity-centric approach goes beyond securing privileges and access, empowering organizations with the most effective solution to manage the entire identity attack surface and neutralize threats, whether from external attacks or insiders.

BeyondTrust is leading the charge in transforming identity security to prevent breaches and limit the blast radius of attacks, while creating a superior customer experience and operational efficiencies. We are trusted by 20,000 customers, including 75 of the Fortune 100, and our global ecosystem of partners.

Learn more at www.beyondtrust.com. 

#LI-DF1

BeyondTrust is a place where you can bring your purpose to life through the work that you do, creating a safer world through our cybersecurity SaaS portfolio.

Our culture of flexibility, trust, and continual learning means you will be recognized for your growth, and for the impact you make on our success. You will be surrounded by people who challenge, support, and inspire you to be the best version of yourself.

The Role

BeyondTrust is a global leader in privileged access management. Our products provide remote access and privileged control capabilities that are deployed across thousands of enterprise environments worldwide. That makes us a high-value target. Nation-state actors, ransomware operators, and sophisticated threat groups actively target companies like ours—not just to compromise our corporate environment, but to reach the customers who trust our software to protect their most sensitive systems. A compromise of BeyondTrust is a compromise of the privileged access layer inside our customers’ networks. We take that responsibility seriously.

As a SOC Analyst on our Cyber Defense Operations team, you will serve as a front-line defender responsible for protecting both BeyondTrust’s enterprise infrastructure and the integrity of the products our customers depend on. You will monitor, investigate, and respond to security events in an environment where the stakes are real and the adversaries are capable. You will work alongside experienced threat hunters, incident responders, and detection engineers in a collaborative team that values sharp analytical thinking over checkbox compliance.

This team is building toward an AI-augmented operating model. You will be expected to use AI-driven tools in your daily work and to contribute to how we integrate these capabilities into our detection, triage, and response workflows. We are not looking for people who are waiting to be told what to do—we are looking for people who want to build something.

What You’ll Do

Alert Triage & Monitoring 

• Monitor and triage security alerts across SIEM, EDR, and CSPM platforms covering both corporate and product environments.
• Investigate alerts to determine scope, severity, and whether escalation is warranted.
• Leverage AI-assisted triage and enrichment tools to accelerate analysis and reduce mean time to detect.
• Classify, document, and track alerts through the full lifecycle using ticketing and case management systems.

Incident Response & Investigation 

• Participate in or lead incident response engagements from detection through remediation, including evidence collection, forensic analysis, root cause determination, and stakeholder communication.
• Conduct investigations across SIEM, EDR, CSPM, and cloud-native log sources including identity provider logs, cloud audit trails, and network flow data—spanning both corporate and product infrastructure.
• Execute established IR runbooks across identity, endpoint, cloud, and email investigation workflows.
• Manage or assist with evidence handling, forensic artifact collection, and chain-of-custody procedures.
• Produce clear, decision-ready incident summaries and post-incident reports for both technical and leadership audiences.

Detection Engineering & Threat Intelligence 

• Contribute to the design, implementation, and tuning of detection rules across SIEM and EDR platforms, with a focus on reducing false positives and closing coverage gaps.
• Translate threat intelligence (CVE advisories, CISA alerts, vendor bulletins, open-source feeds) into actionable detection content, with particular attention to threats targeting privileged access tooling and supply chain attack vectors.
• Help maintain and evolve detection coverage mapped to MITRE ATT&CK.
• Partner with threat hunting peers to validate detection logic through hypothesis-driven hunts.

AI Integration & Automation 

• Use AI-driven tools for alert triage, enrichment, and investigation as a standard part of daily operations.
• Contribute to the evaluation, integration, and optimization of AI and automation capabilities across the team’s workflows.
• Assist in designing prompts, agent workflows, or LLM-based pipelines that augment analyst capabilities and reduce manual effort.
• Partner with engineering teams to improve log ingestion, data quality, and tool integrations.

Operational Excellence 

• Maintain daily operational notes and shift handoff documentation.
• Contribute to and refine IR runbooks, playbooks, and standard operating procedures.
• Participate in on-call rotation for after-hours incident escalation.
• Track and report on operational metrics (MTTD, MTTR, MTTC, false positive rate) and identify improvement opportunities.
• Participate in tabletop exercises, purple team activities, and post-incident reviews. 

What You’ll Bring

• 2+ years of experience in a SOC, security operations, or incident response role.
• Understanding of common attack frameworks (MITRE ATT&CK), network protocols, and endpoint behavior.
• Experience with at least one SIEM platform and familiarity with writing search or detection queries.
• Familiarity with EDR platforms and cloud environments (IaaS preferred).
• Comfort using AI systems (e.g., LLM-based assistants, copilots, or AI-driven analysis tools) as part of security workflows.
• Strong written communication skills; able to document findings clearly and concisely for both technical and non-technical audiences.

Nice To Have

• Experience leading or co-leading complex incident response engagements from triage through remediation.
• Experience with identity and access management platforms and cloud security posture management tools.
• Scripting and automation skills (Python, PowerShell, or equivalent) applied to security workflows.
• Familiarity with SOAR platforms or orchestration tools for automated response and enrichment.
• Experience designing or implementing AI agent architectures, LLM-based automation pipelines, or prompt engineering for security use cases.
• Experience building or contributing to threat intelligence programs or detection-as-code pipelines.
• Understanding of the privileged access management landscape and the threat actors that target it.
• Track record of evaluating and adopting emerging technologies in a production security environment.

Better Together

Diversity. Inclusion. They’re more than just words for us. They are the guiding values of how we build our teams, cultivate leaders, and create a culture where people feel connected.

We take care of our employees so they can take care of our customers. Customers who come from all walks of life just like us. We hire incredible people from diverse backgrounds because when we are different together, we are stronger together.

About Us

BeyondTrust is the global identity security leader protecting Paths to Privilege™. Our identity-centric approach goes beyond securing privileges and access, empowering organizations with the most effective solution to manage the entire identity attack surface and neutralize threats, whether from external attacks or insiders.

BeyondTrust is leading the charge in transforming identity security to prevent breaches and limit the blast radius of attacks, while creating a superior customer experience and operational efficiencies. We are trusted by 20,000 customers, including 75 of the Fortune 100, and our global ecosystem of partners.

Learn more at www.beyondtrust.com. 

#LI-DF1

Glilot, Israel 
Hybrid 
Full-time

What you’ll do:

• Lead the design, evolution and day-to-day ownership of Payoneer’s CI/CD delivery platform used across R&D 

• Architect and maintain high-performance, fault tolerant, scalable ALM systems – from version control, builds and deployments to monitoring, configuration management and release gates 

• Drive GitOps-based delivery and Kubernetes deployment patterns across public and private cloud environments 

• Build shared pipeline templates, reusable extensions and self-service tooling that let product teams ship safely without reinventing the wheel 

• Own delivery-platform SLOs and reliability – drive root-cause analysis, permanent fixes, and continuous improvements to build/deploy speed and stability 

• Partner with Security, SRE and Compliance to embed SAST/DAST/SCA and secret scanning 

• Work closely with product, QA, developers and IT/Operations to streamline their working methods and remove friction from the software delivery lifecycle 

• As a member of the team, participate in ‘On-Call’ duties on Payoneer production systems, working in non-conventional hours including weekends and holidays (from time to time), and lead major incidents when needed 

Who you are: 

• At least 5 years’ experience as a DevOps / Platform / Build & Release Engineer, with clear senior-level scope (cross-team initiatives, technical leadership, mentoring) 
• A minimum of 3 years of exposure running production workloads in public cloud (AWS, Azure or GCP) and hybrid environments 
• Strong experience designing and operating CI/CD platforms and ALM tooling (Azure DevOps strongly preferred; GitHub Actions / GitLab CI / Jenkins also relevant), including shared templates, custom tasks/extensions and source control management (Git, SonarQube, Artifactory/Harbor, etc.) 

• Proven experience with GitOps at scale (ArgoCD or Flux) and Helm-based delivery 

• Experience leveraging AI/LLM tooling (Cursor, Copilot, Claude Code, MCP) to accelerate delivery, and building AI-assisted automations into CI/CD pipelines and internal developer platforms 

• Strong experience with configuration management tools like Ansible, Chef or Puppet, and Infrastructure as Code (Terraform) 

• Proven scripting capabilities in PowerShell / Bash / Python, with a track record of building internal tools that remove toil for many teams 

• High level Linux OS expertise; comfortable also operating Windows server workloads 

• Programming experience (C#, NodeJS or similar) – you can contribute to real services, not just scripts 

• Experience managing application servers and web servers in regulated / mission-critical environments 

• Experience with monitoring and logging solutions (e.g. Prometheus, Grafana, ELK, Dynatrace)
• BS degree in computer science, computer engineering, relevant technical discipline or equivalent practical experience

#LI-AG2

Role Overview

Nebius is seeking a Detection & Response Manager to lead and mature our security operations and adversary defense capabilities.

This role owns SOC operations, incident response, red teaming, and security automation (SIEM & SOAR) across cloud, data center, and enterprise environments.

The ideal candidate combines operational excellence, threat-adversary thinking, and automation-first execution.

Key Responsibilities

Security Operations Center (SOC) Leadership

• Own day-to-day SOC operations across cloud, data center, and corporate environments

• Define detection strategy aligned to Nebius threat models and crown jewels

• Ensure high-quality alerting, triage, escalation, and reporting

• Continuously reduce false positives and alert fatigue

Incident Response & Crisis Management

• Lead end-to-end incident response for high-severity security incidents

• Own incident command during crises (technical, executive, and regulatory coordination)

• Ensure post-incident reviews lead to real control improvements

• Maintain and regularly test incident response playbooks

Red Team & Adversarial Testing

• Manage red team and purple team activities (internal and external)

• Translate real-world adversary TTPs into detection and response improvements

• Ensure findings from red team exercises are remediated and verified

• Partner with product, cloud, and physical security teams on attack simulations

SOC Automation (SIEM & SOAR)

• Own SIEM and SOAR strategy, architecture, and roadmap

• Drive automation of detection, enrichment, response, and reporting

• Integrate identity, cloud, CI/CD, and physical security telemetry

• Measure SOC effectiveness using MTTD, MTTR, and coverage metrics

Threat Intelligence & Continuous Improvement

• Operationalize threat intelligence into detections and playbooks

• Track emerging threats relevant to cloud, AI, and infrastructure providers

• Continuously improve detection coverage against prioritized attack paths

What Success Looks Like (12 Months)

• Measurable reduction in MTTD and MTTR for high-severity incidents

• Majority of high-risk incidents detected internally, not externally

• Red team findings consistently detected and contained

• SOC automation meaningfully reduces manual effort

• Clear, trusted security reporting to CISO and leadership

Required Qualifications

• 7+ years in security operations, incident response, or threat detection

• Proven experience leading a SOC or incident response function

• Strong experience with SIEM and SOAR platforms

• Deep understanding of:

• Cloud security 

• Identity-based attacks and detection

• Endpoint, network, and application telemetry

• Experience running or managing red team / purple team activities

• Calm, decisive leadership under pressure

Preferred Qualifications

• Experience in cloud service providers, hyperscale, or infrastructure companies

• Familiarity with GPU / HPC environments or large-scale data centers

• Experience with DORA, SOC 2, ISO 27001 incident requirements

• Background in threat hunting or offensive security

Key Skills & Attributes

• Adversary-minded: thinks like an attacker, not a tool operator

• Automation-first mindset

• Strong communicator during crises

• Data-driven decision making

• High ownership, low ego

Why Nebius

• Defend one of the most advanced AI and GPU cloud platforms

• Influence security architecture at scale

• Operate at the intersection of cloud, physical infrastructure, and regulation

• Build a modern, high-impact detection & response function

We are looking for a Senior AI Prompt Engineer who will own the design, development, and optimization of AI Agent experiences built on the Zowie AI platform. You will engineer the prompts, system instructions, guardrails, and multi-turn conversational flows that power our customer-facing AI Agents across chat and email-automation channels.
This is not a surface-level content role — you will operate at the intersection of language, logic, and AI behavior, shaping how our agents reason, respond, escalate, and self-correct. As part of the Digital & AI team, you will collaborate closely with Product, Engineering, AI/ML, Analysts, CX, Operations, and Localization teams to deliver intelligent, scalable, and trustworthy conversational solutions.

What you'll do:

• Design, write, and optimize AI-driven conversational experiences, including system prompts, guardrails, tool-use instructions, and multi-turn flows across chatbot and email-automation channels.
• Engineer and maintain reusable prompt frameworks, templates, and conversation patterns that ensure consistency in tone, safety, domain accuracy, and localization across markets on multiple channels such as AI Chat, Ai email bot, AI Voice bot.
• Define and refine AI Agent behavior across user scenarios, edge cases, error states, escalation paths, and regulatory/compliance requirements.
• Own end-to-end conversational journeys — from problem discovery and use-case research through design, prompt engineering, testing, deployment, and iterative optimization.
• Build and maintain prompt evaluation pipelines — designing test cases, scoring rubrics, and regression tests to systematically measure prompt quality, hallucination rates, and task-completion accuracy.
• Monitor, analyze, and improve AI Agent performance using analytics dashboards, QA outputs, hallucination findings, user feedback, and operational metrics; translate insights into concrete prompt improvements.
• Collaborate cross-functional with Product, Engineering, AI/ML, CX, and Operations teams to identify high-impact use cases, define agent capabilities, and deliver scalable solutions.
• Contribute to internal prompt engineering guidelines, conversational design systems, and AI best practices — helping establish Payoneer’s standards for responsible, effective AI Agent deployment.
• Stay current with advancements in LLMs, agentic AI patterns, prompt optimization strategies, and conversational AI tooling; bring relevant innovations into the team’s workflow.

Who you are:

• 3–4+ years of hands-on experience working with Large Language Models (LLMs) — including prompt engineering, system prompt design, and LLM-based application development (e.g., OpenAI, Azure OpenAI, Anthropic Claude, Google Gemini).
• English proficiency — Mandatory (native or near-native written English; this role is language-critical).
• Proven experience designing, deploying, and optimizing AI-powered conversational experiences (chatbots, AI agents, email automation, Voice bot or virtual assistants).
• Coding/scripting experience (Python, JavaScript) for prototyping, automation, or prompt testing.
• Experience with AI Agent architectures and concepts — tool use, function calling, RAG, multi-step reasoning, guardrails, and escalation logic.
• Strong analytical skills — comfortable working with conversation analytics, A/B testing prompt variants, and using data to drive design decisions.
• Experience designing for multilingual and multicultural audiences.
• Ability to collaborate with developers and data teams to implement, test, and iterate on AI flows.
• Familiarity with version control practices for prompt management and documentation.
• Excellent stakeholder management — able to align multiple teams around conversational strategy and priorities.

Advantages:

• Experience with conversational AI platforms (e.g., Zowie ai, Kore.ai, Yellow.ai, Ada, Cognity).
• Knowledge of SQL or analytics/BI tools for performance analysis.
• Background in customer service, contact center, or fintech environments.
• Experience with UX writing, content design, or conversation design as a discipline.
• Familiarity with AI safety, responsible AI frameworks, and compliance considerations in regulated industries.
• Understanding customer journey mapping and service design methodologies.
• Experience with Figma or similar design tools for flow visualization.

#LI-AG2

Israel
Hybrid
Full-time

We are looking for a versatile, autodidact Senior DevOps Engineer - someone who learns fast, thinks laterally, and isn't afraid to pivot mid-stream when the mission changes.
You are independent and accountable, but you thrive in a collaborative ecosystem. If you’re a service-oriented problem solver who views "infrastructure as code" as a craft, we want to talk.

What You'll do:

As a core member of our infrastructure team, you will bridge the gap between development and operations, ensuring our hybrid-cloud environment is seamless, scalable, and resilient.

• Architect & Implement: Lead the design of hybrid-cloud solutions with a heavy focus on cloud best practices.

• Own the Production: Take full accountability for production environments, ensuring 24/7 stability, availability, and performance.

• Automate Everything: Replace manual toil with elegant automation using Terraform, Crossplane, and Ansible.

• Bridge the Hybrid Gap: Maintain and optimize application layers across both cloud and private cloud environments.

• Cross-Functional Partnership: Collaborate with Product, QA, and Dev teams to streamline CI/CD pipelines and remove delivery bottlenecks.

• Resilience: Participate in a rotating On-Call schedule to keep our high-volume systems humming.

Who you are:

• The Experience: 7+ years in DevOps, SRE, or Platform Engineering, with at least 5 years specifically managing high-scale cloud production workloads (AWS / GCP).

• Orchestration: Deep expertise in Kubernetes and OCI container ecosystems.

• IaaC Mastery: Advanced scripting and deployment skills in Terraform (Crossplane is a major plus).

• CI/CD: Proven track record of designing and maintaining robust CI/CD pipelines to ensure seamless code-to-production workflows.

• Networking & Connectivity: Strong grasp of advanced networking concepts, including VPCs, Load Balancing, DNS, Service Mesh, and hybrid-cloud connectivity.

• Security & Compliance: Commitment to Security Best Practices - implementing "Security as Code," IAM least-privilege principles, container security, and secret management.

• Version Control: Expert-level proficiency with Git, including advanced branching strategies and repository management.

• Linux & Scripting: Strong Linux administration background with proficiency in Python, Bash, or PowerShell.

• Observability: Hands-on experience with Prometheus, Grafana, and ELK to diagnose and resolve complex production issues.

• Trouble Shooting: Fluent and comfortable working in the Linux terminal.

• Education: BS in Computer Science, Engineering, or equivalent practical "in-the-trenches" experience.

Advantage:

• Cloud Certified: AWS Professional level certifications (Solutions Architect or DevOps Engineer).

• Modern Delivery: Experience with GitOps workflows (ArgoCD or Flux).

• Messaging: Familiarity with Kafka or RabbitMQ.

• Legacy/Hybrid: Experience with VMware, SQL/NoSQL databases, or older SCM tools like TFVC.

• Dev Background: You’ve spent time on the "other side" writing software or working with dev frameworks.

#LI-AG2

We’re looking for a team player with excellent interpersonal skills & service oriented. Creative & out of the box thinker. An autodidact, quick, effective and versatile who’s able to change directions in midstream. Independent & Accountable.

As a Senior DevSecOps Engineer at Payoneer, you’ll play a critical role in embedding security throughout the software development lifecycle (SDLC). You’ll help design, implement, and maintain security controls and automations across our CI/CD pipelines, infrastructure, and application stack.

What you'll do:

• Integrate and maintain security tools across the CI/CD pipeline:
  • SAST (e.g., SonarQube)
  • SCA (Software Composition Analysis) / Dependency Scanning (e.g., Snyk, Trivy, GitHub Dependabot)
  • Secret Detection (e.g., Gitleaks, HashiCorp Vault)
  • Container/Image Scanning (e.g., Aqua, Prisma Cloud, Trivy)
• Drive security automation and enforcement for:
  • Infrastructure as Code (e.g., Terraform)
  • Configuration Management (e.g., Ansible, Chef)
  • GitOps workflows (e.g., ArgoCD)
  • Embed security guardrails and best practices across the SDLC
  • Automate compliance checks (e.g., OWASP Top 10, CIS Benchmarks) into development workflows
  • Integrate with observability and monitoring systems (e.g., Prometheus, Grafana, ELK, Coralogix)
• Collaborate cross-functionally with Product, QA, Development, and IT/Ops teams to continuously improve the security posture
• Participate in on-call rotations for production systems as needed

Who you are:

• At least 3 years’ experience as DevOps/DevSecOps/Security Engineer
• A minimum of 3 years of exposure running production workloads (AWS, Azure or GCP)
• Experience with CI/CD tools and source control management tools (e.g., Git, Azure DevOps, SonarQube, Artifactory etc...)
• Proven experience securing CI/CD pipelines
• Expertise in SCA, SAST, secret scanning, and container security
• Hands-on experience with Kubernetes, Docker, and GitOps tooling (ArgoCD or Flux)
• Proven Scripting capabilities: (e.g. PowerShell/Bash/Python)
• Experience with logging, SIEM, and monitoring platforms
• Experience with IAM, secrets management, and compliance frameworks (SOC2, ISO, etc.)
• High level Linux OS expertise
• Strong troubleshooting skills
• Proactive by nature; internal drive for excellence and improvement
• BS degree in computer science, computer engineering, relevant technical discipline or equivalent practical experienc

Advantage:

• Experience with relational and non-relational databases (Oracle, PostgreSQL, SQL, MongoDB) Experience with software development and development frameworks
• Experience with event streaming and messaging platforms such as Kafka, RabbitMQ
• Knowledge and understanding Storage and Networking

#LI-AG2

Role Overview

We are seeking an experienced Incident Response leader to own and lead the company’s response to large-scale, high-impact cyber incidents. This role is responsible not only for technical response, but for cross-company crisis coordination, executive decision support, and ensuring fast, controlled mitigation across engineering, product, legal, communications, and leadership teams.

This is a leadership role for someone who has personally led complex incidents under pressure — including situations involving material business risk, customer impact, regulatory exposure, and executive visibility.

Key Responsibilities

Incident Leadership & Crisis Management

• Serve as the Incident Commander for high-severity cyber incidents, including breaches, supply-chain attacks, insider threats, and platform-wide security events.
• Lead company-wide incident response efforts, coordinating technical, operational, legal, communications, and executive stakeholders.
• Stand up and orchestrate crisis management teams during major incidents, ensuring clear ownership, decision-making, and execution under pressure.
• Drive rapid containment, eradication, and recovery while balancing business continuity, customer impact, and regulatory obligations.
• Act as the primary point of contact to executive leadership during incidents, providing clear, concise, timely, and actionable updates.

Cross-Department Coordination

• Orchestrate response activities across Security, Infrastructure / Cloud Operations, Product & Application Security
• Ensure alignment between technical response actions and business, legal, and regulatory considerations.
• Manage external parties when needed  

Preparedness & Operational Excellence

• Own and continuously improve the incident response framework, including severity definitions, escalation paths, and decision authority.
• Design and run executive-level incident simulations and tabletop exercises, including cross-functional and leadership participation.
• Ensure high-quality post-incident reviews that result in measurable improvements to controls, detection, and response readiness.
• Define and track incident response metrics (MTTD, MTTR, blast radius, decision latency).
• Track and follow-up on lessons learned and enhancements to ensure implementation and continuous improvement.

Required Experience & Qualifications

• 10+ years in cybersecurity, with significant incident response management experience.
• Proven experience leading large-scale, cross-company cyber incidents, including incidents involving:
• Multiple engineering and operational teams
• Executive leadership and board-level visibility
• Demonstrated experience acting as Incident Commander or equivalent role during major security events for at least 15 incidents in the past 5 years.
• Strong understanding of:
• Cloud and SaaS architectures
• Identity, access control, and infrastructure security
• Detection and response technologies (SIEM, EDR, cloud-native tools)
• Offensive background
• Ability to translate technical facts into business impact and risk-based decisions.

Critical Skills & Attributes

• Crisis leadership: Calm, decisive, and structured under extreme pressure.
• Authority without ego: Able to lead across departments without formal reporting lines.
• Executive communication: Clear, concise, and credible with senior leadership.
• Systems thinker: Understands how technical, human, and process failures compound during incidents.
• Bias for action: Moves quickly while maintaining discipline and documentation.
• Analytical thinking: Attention to details and ability to connect multiple dots into a concise and accurate picture.
• Previous experience at Mandiant, Sygnia, CrowdStrike, Unit 42, or similar elite IR teams
• Experience in crypto, fintech, custody, payments, or highly regulated environments
• Hands-on background in forensics, threat hunting, or security engineering

Nice to Have

• Experience in crypto, fintech, cloud infrastructure, or highly regulated environments
• Experience supporting regulatory notifications and post-incident audits
• Background in forensics, threat intelligence, or security engineering
• Familiarity with NIST, ISO 27035, or similar incident response frameworks (practical application, not checkbox compliance)

We are looking for a highly strategic and hands-on Director of Financial Planning & Analysis to lead our global financial planning function and play a key role in shaping the company’s financial strategy and operational execution. 

In this role, you will partner closely with executive leadership and cross-functional teams to translate business strategy into financial plans, drive data-driven decision making, and ensure strong financial visibility across the organization. You will lead the company’s planning cycles, oversee performance analysis, and provide insights that help guide growth, investment decisions, and operational efficiency. 

This position is ideal for a finance leader who combines strong analytical rigor with strategic thinking, thrives in a fast-paced, high-growth environment, and is motivated by building scalable financial processes that support the next stage of company growth. 

You will also lead and develop a high-performing FP&A team and play a central role in supporting leadership and board discussions with clear financial insights and forward-looking analysis. 

Responsibilities: 

• Own and orchestrate the company’s annual planning cycle, rolling forecasts, and multi-year financial plans, working closely with senior leadership to align financial targets with strategic priorities. 

• Provide consistent, high-quality visibility into business performance through accurate financial reporting, budget control, KPI analysis, and forward-looking insights that highlight trends, risks, and opportunities. 

• Act as a trusted finance partner to functional and business leaders, converting operational plans into financial outcomes and reinforcing ownership against commitments. 

• Partner closely with Sales and Marketing leadership to evaluate go-to-market investments and optimize GTM resource allocation. 

• Deliver data-driven recommendations to support growth initiatives, efficiency improvements, and capital allocation decisions. 

• Design and maintain scalable financial models to assess strategic options, quantify risks, and support informed decision-making under multiple scenarios. 

• Continuously enhance planning processes, reporting infrastructure, and analytical tools to improve accuracy, speed, and scalability. 

• Drive improvements across budgeting, forecasting, and reporting cycles, ensuring strong financial discipline and operational alignment. 

• Develop clear, compelling materials for executives, the board, and external stakeholders that articulate financial results, outlook, and key business drivers. 

• Evaluate strategic investments and initiatives through ROI analysis, scenario modeling, and business case development. 

• Recruit, develop, and lead a high-performing global FP&A organization, setting high analytical standards and promoting continuous improvement and professional growth. 

Requirements:

• 10+ years of experience in Finance, FP&A, or Strategic Finance roles, including 5+ years in leadership positions. 

• Experience in high-growth SaaS or technology companies. 

• Deep understanding of SaaS business models and metrics. 

• Proven experience leading annual planning, forecasting, and long-range financial modeling. 

• Strong financial modeling and analytical capabilities with the ability to translate complex data into clear business insights. 

• Experience partnering with executive leadership and cross-functional teams. 

• Track record of building and managing high-performing global finance teams. 

• Strong communication and presentation skills, including experience presenting to senior leadership and/or board members. 

• Experience working with financial planning systems, ERP platforms, and business intelligence tools. 

• Bachelor’s degree in Finance, Accounting, Economics, or related field. 

Your Mission at Yotpo As a Senior Full Stack Engineer, you are a core partner in the product team, shaping not just how we build, but what we build. Your mission is to architect high-scale systems within a dynamic environment where engineering excellence meets rapid innovation.

You will join a culture of radical end-to-end ownership, where teams deploy to production dozens of times a day. Leveraging a diverse, modern tech stack and cutting-edge tools, you will turn complex architectural challenges into seamless user experiences, knowing that the code you ship in the morning can impact thousands of brands by the afternoon.

Key Responsibilities

• System Architecture: Architect robust, scalable full-stack solutions. You aren't just writing code; you are making critical decisions on data modeling, API design, and system resilience.
• End-to-End Ownership: Own your features from the whiteboard to production. You build it, you ship it, you run it—giving you complete control over your craft.
• Strategic Influence: Partner directly with Product Managers and Designers during Discovery. Your technical insights will validate feasibility and shape the product roadmap before a single line of code is written.
• Mentorship & Quality: Be a force multiplier. By conducting code reviews and mentoring junior engineers, you will raise the collective technical bar of the entire team.

What You Bring

• Your Mindset:
• Architectural Thinking: You think in systems and trade-offs, not just tickets and tasks.
• Product Partner: You care as much about the "Why" (Business Value) as the "How" (Implementation).
• Efficiency Focused: You view modern development tools as essential levers to work efficiently and focus on high-value problems.
• Your Experience & Qualifications:
• Must Haves:
• 6+ years of software development experience with strong full-stack capabilities.
• Core Stack: Deep expertise in Backend (Node.js, Python, Java) and Frontend frameworks (React, Next.js, Angular).
• Cloud & DevOps: Solid understanding of Cloud Native infrastructure (AWS, Kubernetes) and CI/CD pipelines.
• Modern Tooling Proficiency: Demonstrated ability to use coding assistants (e.g., Cursor, Copilot) to generate, refactor, and test code effectively for production environments.
• Proven track record of owning large features or services in production environments.