עדיין מחפשים עבודה במנועי חיפוש? הגיע הזמן להשתדרג!
במקום לעבור לבד על אלפי מודעות, Jobify מנתחת את קורות החיים שלך ומציגה לך רק משרות שבאמת מתאימות לך.
מעל 80,000 משרות • 4,000 חדשות ביום
חינם. בלי פרסומות. בלי אותיות קטנות.
About the role
The Information Security Analyst plays a key role in delivering the organization's information security roadmap by combining technical expertise with cross-functional collaboration. This role is responsible for supporting day-to-day security operations, including security monitoring, threat detection, incident response, and the continuous improvement of security processes and capabilities.
Working in a dynamic and fast-paced environment, you will serve as a security subject matter expert, providing technical guidance, consultancy, and security advice to projects and business stakeholders. Leveraging your experience in Information Security, you will proactively identify threats, enhance detection capabilities, and help strengthen the organization's overall security posture while ensuring the consistent delivery of security services.
The role blends hands-on technical responsibilities with business engagement, including supporting security initiatives, developing and optimizing monitoring and detection capabilities, participating in incident response activities, and collaborating closely with teams across Security Architecture, Governance, Risk & Compliance (GRC), Security Engineering, and IT to implement and maintain effective security controls.
What you will be doing:
Technical Delivery
As an Information Security Analyst, you will play a hands-on role in strengthening the organisation's security posture by designing, improving, and operating key security capabilities.
You will:
- Partner with technical and project teams to gather operational security requirements and ensure security is embedded throughout delivery.
- Support the implementation, operation, and continuous improvement of security monitoring, logging, and alerting capabilities.
- Develop, tune, and maintain detection rules and use cases to improve threat visibility while reducing false positives.
- Collaborate with Delivery, Product, and Planning teams to help shape security priorities and contribute to the security roadmap.
- Support the vulnerability management lifecycle by validating findings, assisting with remediation prioritisation, and verifying remediation activities.
- Perform proactive threat hunting across endpoint, identity, cloud, and network telemetry to identify emerging threats before they trigger alerts.
- Deploy, maintain, and optimise Web Application Firewall (WAF) policies, investigating web-based attacks and enhancing application protection.
- Investigate security events across endpoints, identities, networks, cloud platforms, and applications using EDR/XDR, SIEM, and cloud-native security tools.
- Monitor and investigate security events across AWS environments, supporting the organisation's cloud security operations.
- Identify opportunities to automate repetitive security processes and contribute to the development of SOAR playbooks and security automation initiatives.
- Participate in all phases of the incident response lifecycle, including detection, analysis, containment, eradication, recovery, and post-incident reviews.
- Produce high-quality technical documentation, incident reports, and lessons learned to drive continuous improvement.
Security Operations & Collaboration
Working closely with teams across Security and IT, you will help evolve operational security capabilities while providing practical security guidance across the business.
You will:
- Collaborate with Product Owners, Delivery teams, and business stakeholders to define operational security requirements.
- Contribute to the development and continuous improvement of operational processes, playbooks, and standard operating procedures.
- Assess the effectiveness and coverage of logging, monitoring, alerting, and detection capabilities, identifying opportunities for enhancement.
- Work closely with Security Architecture, Security Engineering, and Governance, Risk & Compliance (GRC) teams to strengthen enterprise-wide security capabilities.
- Consume and analyse threat intelligence, translating relevant intelligence into actionable detections, hunting activities, and preventive controls.
- Participate in security reviews for new technologies, projects, and services, providing operational security recommendations.
- Support the development of operational metrics, reporting, and dashboards to measure the effectiveness of monitoring, detection, and incident response capabilities.
Who we are looking for:
We're looking for a security professional who enjoys solving complex technical challenges, thrives in a collaborative environment, and has a passion for continuous improvement.
You should have:
- Hands-on experience working within Information Security Operations.
- Practical experience supporting Security Operations Centre (SOC) and Incident Response functions.
- Experience administering, tuning, and maintaining Web Application Firewall (WAF) technologies.
- Experience investigating and responding to security incidents using established incident response methodologies.
- Proven experience performing proactive threat hunting using SIEM, EDR/XDR, cloud, and identity telemetry.
- Experience working with enterprise SIEM platforms such as Splunk.
- Experience with Microsoft Defender for Endpoint or equivalent Endpoint Detection and Response (EDR/XDR) technologies.
- Experience monitoring and investigating security events within AWS environments.
- Strong understanding of security monitoring, detection engineering, and alert optimisation.
- Experience writing and troubleshooting SIEM queries using SPL, KQL, or equivalent query languages.
- Experience analysing logs from endpoint, identity, network, cloud, and application sources.
- Good understanding of identity and access security, including Microsoft Entra ID and Active Directory.
- Strong knowledge of common attack techniques, adversary behaviours, and the MITRE ATT&CK framework.
- Solid understanding of networking fundamentals, including DNS, HTTP/S, TLS, and authentication protocols.
- Familiarity with email security technologies including SPF, DKIM, and DMARC.
- Understanding of security methodologies, industry best practices, and recognised frameworks.
- Knowledge of security and risk frameworks such as NIST 800 and ISO 27001.
- Strong communication skills with the ability to engage effectively with both technical and non-technical stakeholders.
- An understanding of how business priorities, regulatory requirements, and technical constraints influence cybersecurity decisions.
Desirable Experience
The following experience would be an advantage:
- Experience with SOAR platforms and security orchestration or automation.
- Scripting or automation experience using PowerShell, Python, or similar languages.
- Experience modelling threats and risks and recommending appropriate security controls.
- Experience working in regulated, critical, or highly available operational environments.
- Exposure to Infrastructure as Code (Terraform), DevSecOps practices, or cloud-native security tooling.
- Experience working with Threat Intelligence Platforms (TIPs) and malware analysis tools.
Preferred Qualifications
- Industry certifications such as CompTIA Security+, Microsoft SC-200, GCIH, GCIA, or equivalent.
What we offer:
Our roles offer more than just a job, you’ll become part of the evoke family! We have created an environment where our people can thrive. Check out some of the fantastic benefits on offer:
- Hybrid work model
- Free parking in the building + free electric car charging
- Broad collective health insurance (with options for family members and extensions)
- Birthday gift + day off during your birthday month
- Refer a friend - bonus or gift card
- HitechZone membership
- Gifts on holidays and life events
- Ten Bis
More about evoke
We’re a business that embraces change and progress. The power behind big name brands William Hill, 888 and Mr Green, evoke is the new name for 888 Holdings. Marking a new sense of purpose, direction and ambition for the business, there couldn’t be a more exciting time to join us as we accelerate our journey to bring even greater delight to our customers with world-class experiences. That’s the future. That’s evoke.
At evoke, you’ll benefit from flexibility and a culture built on trust. We’ll give you the space to be yourself and the tools you need to protect our customers while they play. We’ll invest in your future to help you develop your unique strengths and build a career that’s right for you.
Apply
At evoke, we prioritize diversity, equity, and inclusion for the benefit of our company, employees, and communities. We foster a welcoming and safe workplace that values all forms of diversity and provides opportunities for growth.
Sounds good? Then you belong at our place! The first step in the recruitment process is kickstarting your application, followed by an initial screening call and an interview stage.
Apply today to kickstart your application with evoke!
במקום לעבור לבד על אלפי מודעות, Jobify מנתחת את קורות החיים שלך ומציגה לך רק משרות שבאמת מתאימות לך.
מעל 80,000 משרות • 4,000 חדשות ביום
חינם. בלי פרסומות. בלי אותיות קטנות.
שאלות ותשובות עבור משרת Information Security Analyst
ה-Information Security Analyst בחברת evoke אחראי על תמיכה בפעילות אבטחת מידע יומיומית, כולל ניטור אבטחה, זיהוי איומים, תגובה לאירועים ושיפור מתמיד של תהליכי אבטחה. התפקיד כולל גם מתן ייעוץ טכני ומומחיות אבטחה לפרויקטים ובעלי עניין עסקיים, תוך זיהוי פרואקטיבי של איומים וחיזוק עמדת האבטחה הכוללת של הארגון.
משרות נוספות מומלצות עבורך
-
אנליסט.ית SOC
-
הרצליה
Mertens – Malam Team
-
-
Information Security Analyst
-
הרצליה
888 Group
-
-
Network Analyst Cyber Security Protection
-
תל אביב - יפו
Check Point Software
-
-
אנליסט/ית SOC Junior – תל אביב
-
תל אביב - יפו
Unilink - יונילינק
-
-
Cyber Threat Intelligence
-
תל אביב - יפו
comblack
-
-
SOC Analyst
-
תל אביב - יפו
SQLink Group
-
אונליין
אונליין