IT Security Operation Manager

We're looking for a hands-on - IT Security Operation Manager to enhance the security posture of our B2C IT infrastructure and Applications.

In this role, you'll work closely with the company’s CISO and development teams, supporting key accounts and ensuring our services are secure and compliant with industry standards.

What will you do?

• Supporting the CISO to implement security controls.
• Implement prevention solutions along with detection and response.
• Manage and operate the security aspects across all our platforms.
• Review and deploy system hardening configuration, security policies setting,
• Identify and address security loopholes proactively.
• Maintain security of the IT systems.
• Operate common practice security third-party SaaS tools.
• Work with the CISO and our R&D to improve security strategies.
• Ensure security is integrated during systems development lifecycle, from idea to production.
• Implement security procedure in the company.
• Supporting the CISO to establish the incident response plan.
• Analyze and respond to security threats in real-time.
• Respond to security incidents quickly, analyze them, and prepare incident reports.
• Assist in compliance audits.
• Explore and implement advanced security tools and frameworks.
• Communicate security and technology needs to the CISO.
• Promote security awareness within the company

Requirements:

• At least 3 years of experience in IT systems, Information and Cloud security.
• Hands-on experience with public cloud environments, Azure and GCP, is a must.
• Deep knowledge in the threat landscape and security best practices.
• Experience with defining and operating common practice security tools.
• Knowledge in ZTANA, Linux and Win OS, Server’s configuration, Networking, Load Balancers, EDR/XDR, Cloude security, Data Bases, WFA/FW, etc.
• Experience with Identity and Access management (IAM).
• Knowledge with common practice security assessments.
• Oversee any compliance needs.
• Experience in implementation of IT security policies that meet the compliance requirements: OWASP, NIST, CIS benchmark, CVE’s vulnerabilities and exposures.
• Familiarity with monitoring tools.
• Having relevant certificates such CISSP, CISM, or other security certificates.
• Diploma in Computer Science or similar field/experience - a plus.