Cloud Security Engineer

MedOne is seeking a System Information Security Engineer to join our Professional Services Team.

MedOne is seeking for a hands-on Security Specialist to join our core infrastructure team. In this role, you will be responsible for securing a high-scale, multi-tenant cloud environment. You will manage advanced security layers (NGFW, WAF, EDR) and ensure the resilience of our local cloud services against emerging threats.

Key Responsibilities:

• Infrastructure Ownership: Design, configure, and maintain security solutions across multiple vendors (Check Point, Fortinet) in a multi-tenant Data Center environment.
• WAF & Edge Protection: Manage and tune WAF policies, CDN, and Bot Management (Imperva/Cloudflare) to protect diverse customer applications.
• Endpoint Defense: Responsible for the deployment and ongoing management of SentinelOne across our managed infrastructures.
• Security Analysis: Analyze security logs (SIEM/EDR) and traffic patterns to identify anomalies, perform threat hunting, and investigate vulnerabilities.
• Incident Response: Act as the primary technical point for security incidents; perform root cause analysis and remediation.
• Hardening & Standards: Implement industry best practices for infrastructure hardening, focusing on VMware environments and network segmentation.

Technical Requirements:

• Firewall Expertise (3-5 years): Deep hands-on experience with Check Point (Gaia, SmartConsole). Experience with Fortigate – a significant advantage.
• Application Security: Proven experience with Imperva WAF or Cloudflare (WAF tuning, DDoS mitigation, SSL management).
• Endpoint Security: Experience managing SentinelOne (or similar EDR solutions) – policy creation and incident investigation.
• Networking: Strong understanding of TCP/IP, Routing, VLANs, and VPNs (Site-to-Site, Client-to-Site). Knowledge of BGP – an advantage.
• Virtualization: Familiarity with VMware environments from a security perspective (NSX, vSwitch security).
• Identity Management: Practical experience with Okta (SAML, MFA, Group management).

Soft Skills & Qualifications:

• Analytical Mindset: Ability to troubleshoot complex connectivity and security issues independently.
• "Can-do" Attitude: A self-motivated professional who thrives in a fast-paced environment.
• Education/Certifications: Relevant certifications (CCSA/CCSE, Fortinet NSE, or Security+) – Advantage. (Note: We value hands-on skills over certificates).
• Languages: Excellent English and Hebrew (verbal and written).