Infosec & Secops Lead

We are seeking a skilled and experienced InfoSec & SecOps Lead to join ActiveFence CISO team. The ideal candidate will be responsible among others for driving the security initiatives.

Responsibilities:

• Maintain holistically security corporate architecture, including network, systems, applications. Evaluate and implement security remediations to enhance the organization security posture.
• Corporate Security: Oversee security measures, including access control, surveillance, and emergency response planning. Manage relationships with external security vendors related to TPRM and IR.
• Experience among others on SSPM/SaaS security, IDP, SIEM/SOC, Including conducting threat modeling exercises to identify potential vulnerabilities and risks where required.
• Security Operations: Oversee the day-to-day security operations, including monitoring, incident response, Analyze security logs and alerts to identify & respond to security incidents. Conduct regular security assessments and manage the remediations program. Develop and maintain an effective incident response plan. Conduct post-incident reviews to identify lessons learned and improve future response efforts.
• Experience with Vulnerability Management: Identify, prioritize vulnerabilities. Monitor and track vulnerability remediation efforts.
• Collaborate with other teams within the organization to ensure the overall security posture is maintained. This may include working with IT, Devops, R&D to implement security policies and technical security procedures. Including all business units, educate employees on security best practices.

Requirements:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 4+ years of Infosec & Secops Hands-On experience, among others in the start-up and fully cloud based industries.
• Strong Experience among others with Okta, Adaptive Shield/Astrix, Coralogix/Splunk, Endpoint security, Network security, and similar security tools.
• Expertise in security technologies, WAF, endpoint security solutions. Knowledge of cloud security and cloud-based security tools
• Experience with cloud platforms (AWS, GCP).
• Strong understanding of security frameworks and standards (e.g., NIST, CIS). Experience with security incident response and investigation.
• Strong understanding of security principles, risk assessments, vulnerability management.
• Knowledge of security orchestration, automation, response (SOAR) tools.
• Ability to work effectively in a team environment. Excellent written and verbal communication skills.
• Excellent analytical & problem-solving skills. Strong communication & interpersonal skills.
• Must be able to work independently and as part of a team. This position may require occasional on-call or after-hours work.

Advantage:

• Relevant certifications such as CISSP, CISM, CEH, CompTIA Security+,SSCP are preferred.
• Familiarity with scripting languages (Python, NodeJs) and automation tools.