Cyber Security Analyst

Governance, Risk, Compliance & Cybersecurity Analyst

(Junior–Mid Level | Combined GRC and Hands-on Cybersecurity Role)

About the Role:

We are looking for a junior to mid-level cybersecurity professional to join our Cybersecurity team in a combined GRC and hands-on security role. This position combines Governance, Risk & Compliance activities (approximately 50%) with practical, day-to-day cybersecurity operations (approximately 50%).

This role is an excellent opportunity for someone who wants to develop professionally across both compliance and technical security domains, gain exposure to industry standards, and work closely with experienced cybersecurity and IT professionals.

You will be supported by the cybersecurity team and will gradually take on more responsibility as your skills and experience grow.

Key Responsibilities:

Governance, Risk & Compliance (50%)

• Assist in the development and maintenance of security policies, procedures, and GRC documentation.
• Participate in risk assessments and help document risks and mitigation actions.
• Support compliance activities related to standards and regulations such as ISO 27001, GDPR, NIST, and SOC 2.
• Help collect, organize, and maintain audit evidence for internal and external audits.
• Collaborate with IT and business teams to track remediation actions and improve risk controls.
• Support security awareness activities and compliance-related initiatives.

Hands-on Cybersecurity Operations (50%)

• Support daily cybersecurity operations and security monitoring activities.
• Assist in the investigation and documentation of security incidents.
• Help track vulnerabilities and remediation efforts in coordination with IT teams.
• Work with security tools and platforms (e.g., SIEM, endpoint protection, vulnerability scanners).
• Assist in maintaining security procedures, playbooks, and operational documentation.
• Collaborate with IT and infrastructure teams to improve security practices.

Requirements:

• 1–3 years of experience in Cybersecurity, Information Security, IT Security, or a related field
• (motivated candidates with relevant experience or military background are welcome).
• Basic understanding of cybersecurity concepts, threats, and security controls.
• Familiarity with security frameworks or standards such as ISO 27001, NIST, or SOC 2.
• Awareness of data protection regulations (e.g., GDPR, Israeli Privacy Law).
• Strong willingness to learn, high attention to detail, strong organizational abilities, and solid documentation skills.
• Good communication skills and ability to work with both technical and non-technical teams.
• Relevant certifications – an advantage.
• Fluency in Hebrew and English (spoken and written).

What We Offer:

• Hands-on experience across both GRC and technical cybersecurity domains.
• Mentoring and professional growth within a cybersecurity team.
• Exposure to real-world audits, risk management, and security operations.
• A role with long-term growth potential in cybersecurity and information security.

This is an on-site position located at our headquarters in Migdal Tefen, north Israel.