About the Role: We are looking for a hands-on Security Specialist to join our core infrastructure team. In this role, you will be responsible for securing a high-scale, multi-tenant cloud environment. You will manage advanced security layers (NGFW, WAF, EDR) and ensure the resilience of our local cloud services against emerging threats. Key Responsibilities: Infrastructure Ownership: Design, configure, and maintain security solutions across multiple vendors (Check Point, Fortinet) in a multi-tenant Data Center environment. WAF & Edge Protection: Manage and tune WAF policies, CDN, and Bot Management (Imperva/Cloudflare) to protect diverse customer applications. Endpoint Defense: Responsible for the deployment and ongoing management of SentinelOne across our managed infrastructures. Security Analysis: Analyze security logs (SIEM/EDR) and traffic patterns to identify anomalies, perform threat hunting, and investigate vulnerabilities. Incident Response: Act as the primary technical point for security incidents; perform root cause analysis and remediation. Hardening & Standards: Implement industry best practices for infrastructure hardening, focusing on VMware environments and network segmentation.
Requirements:
Technical Requirements: Firewall Expertise (3-5 years): Deep hands-on experience with Check Point (Gaia, SmartConsole). Experience with Fortigate – a significant advantage. Application Security: Proven experience with Imperva WAF or Cloudflare (WAF tuning, DDoS mitigation, SSL management). Endpoint Security: Experience managing SentinelOne (or similar EDR solutions) – policy creation and incident investigation. Networking: Strong understanding of TCP/IP, Routing, VLANs, and VPNs (Site-to-Site, Client-to-Site). Knowledge of BGP – an advantage. Virtualization: Familiarity with VMware environments from a security perspective (NSX, vSwitch security). Identity Management: Practical experience with Okta (SAML, MFA, Group management). Soft Skills & Qualifications: Analytical Mindset: Ability to troubleshoot complex connectivity and security issues independently. "Can-do" Attitude: A self-motivated professional who thrives in a fast-paced environment. Education/Certifications: Relevant certifications (CCSA/CCSE, Fortinet NSE, or Security+) – Advantage . (Note: We value hands-on skills over certificates). Languages: Excellent English and Hebrew (verbal and written).
Technical Requirements: Firewall Expertise (3-5 years): Deep hands-on experience with Check Point (Gaia, SmartConsole). Experience with Fortigate – a significant advantage. Application Security: Proven experience with Imperva WAF or Cloudflare (WAF tuning, DDoS mitigation, SSL management). Endpoint Security: Experience managing SentinelOne (or similar EDR solutions) – policy creation and incident investigation. Networking: Strong understanding of TCP/IP, Routing, VLANs, and VPNs (Site-to-Site, Client-to-Site). Knowledge of BGP – an advantage. Virtualization: Familiarity with VMware environments from a security perspective (NSX, vSwitch security). Identity Management: Practical experience with Okta (SAML, MFA, Group management). Soft Skills & Qualifications: Analytical Mindset: Ability to troubleshoot complex connectivity and security issues independently. "Can-do" Attitude: A self-motivated professional who thrives in a fast-paced environment. Education/Certifications: Relevant certifications (CCSA/CCSE, Fortinet NSE, or Security+) – Advantage . (Note: We value hands-on skills over certificates). Languages: Excellent English and Hebrew (verbal and written).
This position is open to all candidates.
