QMasters SOC analyst training session

CAREERS

Build security. With us.

QMasters is a SOC. We hire operators who want to do the work, see the impact, and learn from people who've been doing this for years. Five open roles below.

WHY QMASTERS

What working here actually looks like.

Real operations, real impact

You're not configuring demo environments — you're protecting 240+ enterprises that depend on your work, every day.

Best-of-breed technology stack

Work with the tools the industry runs on — CrowdStrike Falcon, IBM QRadar, Splunk, and dozens of best-of-breed security technologies.

Continuous learning

Vendor certifications, conference attendance, internal knowledge sharing, and cross-training between SOC and integration teams.

Operator culture & growth path

No bureaucracy, no politics — operators set the standard. Real growth from Tier 1 to Tier 3, and across QRadar, Splunk, NG-SIEM, and CTI.

LIFE AT QMASTERS

What the team actually looks like.

WHAT WE OFFER

More than a job. A place to grow.

The fundamentals you'd expect — and the support that makes operators stay.

Competitive salary

Compensation that reflects your skill and the impact you make — reviewed as you grow.

Training

Vendor certifications, conferences, and hands-on learning across the full security stack.

New-edge technology

Work daily with CrowdStrike, QRadar, Splunk, and the tools that define modern SecOps.

Hybrid work

Flexibility to do your best work — on-site collaboration balanced with remote focus time.

Growth paths

Clear progression from Tier 1 to Tier 3 and across specializations — we promote operators.

OPEN ROLES

Current Opportunities

We're always looking for exceptional talent. Don't see your role? Send us your CV anyway.

  • INTEGRATIONS · TEL AVIV, ISRAEL

    SIEM Integration Engineer

    Operate and integrate SIEM and SOC monitoring systems across multiple customer environments — including ongoing handling, rule authoring, incident management, and investigation of unusual activity. The role works closely with the SOC team and includes building interfaces and automations.

    View full role details

    What you'll do

    • Operate and integrate security monitoring and control systems across customers
    • Author and maintain detection rules; investigate and triage incidents
    • Produce incident analysis reports and security alert reports
    • Work day-to-day alongside the SOC and other internal teams
    • Develop interfaces and automations to support the operation

    Requirements

    • 2+ years hands-on experience as a SIEM expert
    • At least 1 year of systems experience
    • Hands-on experience deploying SIEM
    • Experience with monitoring and control systems (SIEM/SOC preferred)
    • Working knowledge of operating systems, networking, and architecture
    • Self-learner with broad technical perspective

    Nice to have

    • Working knowledge of regex
    • Civilian-sector experience
  • SECURITY ENGINEERING · TEL AVIV, ISRAEL

    SecOps Engineer

    Implement and operate cybersecurity products across multiple customer environments. Run routine security processes, handle initial response to incidents, and design infrastructure and application security architecture. Long-term role.

    View full role details

    What you'll do

    • Implement and operate cyber and information security products
    • Run routine security processes including permissions, password management, and user access
    • Identify and triage security incidents; investigate suspected breaches in existing environments
    • Design and build infrastructure and application security architecture
    • Develop interfaces and automations

    Requirements

    • Relevant education and certifications
    • 3+ years hands-on cybersecurity implementation experience
    • Experience with security products such as SSE, FW, Proxy, NAC
    • Hands-on experience with EDR products

    Nice to have

    • Experience with WAF
    • Experience with Mail Relay platforms
  • CUSTOMER ENGINEERING · TEL AVIV, ISRAEL

    IT / Network Cyber Expert

    Own deployment, configuration, and support of advanced security systems in customer environments — across endpoint, web, email, network, identity, and cloud. The role includes characterizing customer needs, building demo and POC environments, producing project documentation, and presenting solutions to decision makers.

    View full role details

    What you'll do

    • Manage and operate users in a Microsoft environment
    • Operate Windows and Linux internal lab environments
    • Deploy and support advanced security platforms across EDR, DLP, web protection, mail relay, network security, AI, runtime, and more
    • Configure rules and policies on those systems and assist customers with implementation
    • Provide quality, responsive service to internal and external customers
    • Build technical capabilities to demonstrate solutions — labs, demos, POCs through to production deployment
    • Author project documentation: HLD, LLD, SOW
    • Present solutions to customer decision makers

    Requirements

    • Deep understanding of the cybersecurity market and hands-on customer-facing experience
    • Hands-on experience with EDR, Secure Web Gateway, Email Security, Identity, and Cloud Security platforms
    • Ability to analyze customer needs and design a fitting technical solution
    • Strong knowledge of cloud, network, and Windows / Linux / macOS environments
    • High service orientation toward both internal and external stakeholders

    Nice to have

    • Background in cyber threat handling, incident response, and MSSP/SOC operations
    • Scripting in Python, PowerShell, or Bash
  • MANAGED CYBER SECURITY SERVICES · TEL AVIV, ISRAEL

    SOC Analyst — Tier 2

    Join the QMasters Managed Cyber Security Services SOC. The role covers monitoring, control, and threat hunting on security incidents, operating a range of security platforms, and escalating to the right teams. Shift work — including nights, weekends, and holidays — as is standard for SOC operations.

    View full role details

    What you'll do

    • Investigate and analyze alerts received in the SOC; work day-to-day on security platforms
    • Operate detection and control platforms such as SOAR/SIEM and other defensive products (anti-virus, DLP, IPS, firewall, access control)
    • Run routine security processes — user account and permissions management, password management, access management
    • Set severity levels and prioritize handling of cyber incidents, exposures, and vulnerabilities based on risk
    • Drive projects and initiatives to improve the team's monitoring and investigation capabilities

    Requirements

    • Cyber course graduate (300+ hours)
    • In-depth knowledge of cyber threats, investigation, and response approaches
    • Willingness to work in shifts (including nights, weekends, holidays)
    • Strong interpersonal skills, accountability, fast learning, and team orientation

    Nice to have

    • 1+ year prior experience as an information security / cyber analyst
    • Background in computer science or information systems
    • Experience with security platforms such as SIEM and EDR
  • MANAGED CYBER SECURITY SERVICES · TEL AVIV, ISRAEL

    Technical Account Manager (TAM)

    The TAM is the central technical-business contact between SOC customers and internal QMasters teams. The role owns ongoing customer relationships, leads technical processes, maintains a high level of service, and ensures security solutions are delivered in line with customer needs and SLA.

    View full role details

    What you'll do

    • Manage the day-to-day relationship with SOC customers — status meetings, syncs, and leading technical processes
    • Translate business needs into technical requirements and accompany implementation with the SOC team
    • Track issues, exceptions, and SLA performance — including escalation when needed
    • Work closely with analysts, SOC managers, and internal/external technology teams
    • Proactively identify gaps, improve processes, and surface risks to the customer
    • Build long-term trust and customer retention; lead onboarding and ongoing activity

    Requirements

    • 2+ years prior experience working in a SOC / security operations center
    • Strong English (high level)
    • Experience working with customers — managing expectations and professional communication
    • Process leadership, organization, and a systems-level perspective

    Nice to have

    • Deep technical understanding of SIEM, EDR, FW, and Cloud Security
    • Project management experience

Explore more on our homepage page, see how our our team works, or browse IBM QRadar partnership.

READY WHEN YOU ARE

Don't see your role? Talk anyway.

If you're a senior security operator and we're not advertising your role today — write to us. We hire ahead of demand for the right people.

F-003 · CONSULTATION

Book 30 minutes. No slides.

A real working session with a SOC engineer — bring your alerts.