Imperva is a multi-billion-dollar cybersecurity company protecting the world’s largest organizations from cyber-attacks.

We work in a Hybrid Model from home and from the office (Rehovot), and We have been recognized as one of the Best 50 high-tech companies to work for in Israel 2022 by Dun & Bradstreet ! https://www.duns100.co.il/Imperva_%D7%90%D7%99%D7%9E%D7%A4%D7%A8%D7%91%D7%94

We're looking for a SOC Engineer - Application Security Expert

SOC Engineer - Application Security Expert

The security operations center is a team dedicated to providing the first response to security incidents and is focused on the operational aspect of web application security: analyzing the threat, suggesting immediate methods of remediation and mitigation, and actively working to block attacks in real time.

The scope of activity ranges throughout layers 3,4, and 7.

Encompassing DoS & DDoS attacks, Brute-Force attacks, Scraping and filtering unwanted traffic, and extending into initial analysis and mitigation of application attack vectors, such as XSS, SQLi, and Remote code execution.

A complementary aspect of this activity is to handle cases of false positives. The SOC will own the task of investigating the root cause of the misfire, suggesting the optimal way to avoid further cases, and applying changes accordingly when required.

The SOC will work closely with the first-tier support team, acting as a focal point for security-related events and incidents.

It will also have a bi-directional line of communication with the Imperva Threat Research team to share findings and information, consultation, and maintain updated knowledge of current policies.

As a SOC team member, the specialist is expected to possess a good working knowledge of web application security and the current threat landscape, together with an in-depth familiarity with Imperva's security policies and processes.

The specialist will also maintain proficiency in field-related tools and methodologies and is encouraged to expand his knowledge of all security-related matters.

Job Requirements

• Minimum one year of hands-on experience in the app security or networking fields (Work, IDF)
• Must have working knowledge of TCP/IP, HTTP/S, DNS, SSL, OWASP Top 10 Attacks(SQLi, XSS, RCE, RFI, LFI)
• Understanding of DDoS attacks on Layers 3,4, and 7
• Excellent communication skills and the ability to work in a team
• Advantage for experience in scripting languages: Python, Bash
• Proficiency with popular tools in the industry of AppSec and their usage : Burp Suite, Postman, Wireshark