SecOps Engineer
Israel - Compliance & Security - Full-time
Glassbox is seeking a SecOps Engineer to join our Compliance & Security team.
We are Glassbox, and our mission is to reveal the insights that empower organizations to deliver exceptional digital customer experiences.
We are growing and have been recognized by G2 as one of 2024's Top 50 Software Companies worldwide.
Our customers are the best of the best, including six of the ten largest global banks, the world’s largest hotel chain, the largest healthcare provider, and the largest telecommunications company in the U.S.
Now is the perfect time to come to Glassbox and help us accelerate our global leadership position!
If you are a dynamic, successful, experienced metrics-driven leader, Glassbox might be a great fit.
Will you join us on this journey?
What Will You Do?
- Implement security tools and take actions as needed to close cyber security gap analysis and risk assessment findings (Partial Hands-on)
- Designing and planning a secure environment according to company requirements and controls
- Create and tune security alerts and incident response processes to ensure 24x7 monitoring by our SOC team
- Create and tune procedures runbooks and cyber simulation exercises for the SOC team to handle alerts
- Perform internal & external, technical, and procedural security audits
- Engage with IT, cloud, and compliance teams to ensure requirements, policies, and adoption is executed with excellence
- Create and Maintain reports and evidence for our compliance, such as SOC2 and ISO
- Performing Internal Penetration tests on application and cloud Infrastructure
What Will You Need?
- 3+ years of hands-on experience with AWS security best practices and AWS services (A must)
- Solid understanding and experience with AWS Cloud infrastructure Services S3, VPC, EC2, RDS, IAM, ELBs, Route53, Lambda, ECR, ECS, and AWS security tools.
- Solid understanding and experience with security standards and practices (CIS, OWASP, SANS, etc.)
- Experience with containerized environments and microservices (i.e., Docker, AWS ECS or Kubernetes)
- Hands-on experience in Linux (Red Hat / CentOS), network architecture and security implementation
- Identity management and authentication systems and protocols (AD, SAML, OAuth, etc.)
- Basic scripting using Python Bash PowerShell
- Deep understanding of network structure and network protocols
- Experience with SEIM implementation
Advantage
- Either of the following certifications: CISM, AWS Solution Architect, Sysops Administrator, CKS
- Knowledge of VPN and Zero-trust Connections
- Background and experience with Software and Application Security
- Knowledge in PT using Burp Suite, Nessus, Nmap SSL Scan, and more