Security Engineer

About Immunai:

Immunai is an engineering-first platform company aiming to improve therapeutic decision-making throughout the drug discovery and development process. We are mapping the immune system at unprecedented scale and granularity and applying machine learning to this massive clinico-immune database, in order to generate novel insights into disease pathology for our partners - pharma companies and research institutes. We provide a comprehensive, end-to-end solution - from data generation and curation to therapeutics development, that continuously supports and validates the capabilities of our platform.

As drug development is becoming increasingly inefficient, our ultimate goal is to help bring breakthrough medicines to patients as quickly and successfully as possible.

Immunai is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

About the role:

We are looking for a mid-level Security Engineer to join our team and take full ownership of Immunai’s security tooling and infrastructure. This is a hands-on role with broad responsibility across operational security, platform evaluation, and security-by-design practices.

You’ll be responsible for maintaining, improving, and supporting all security tools and platforms; leading evaluations of new technologies; managing internal security review processes; and contributing to infrastructure and product design decisions.

This role demands strong technical expertise and the ability to balance strategic thinking with tactical execution in a fast-moving environment.

Location: Ramat Gan, Israel (hybrid model)

What will you do?

• Own and maintain the company’s security tooling stack, including endpoint protection, DLP, identity systems, email security, and cloud posture tools.
• Monitor cloud and SaaS environments, handle security alerts and misconfigurations, and support day-to-day security operations.
• Participate in incident response, including triage, documentation, and post-incident reviews.
• Lead security evaluations of new platforms and tools, from technical assessment through internal review and approval.
• Drive end-to-end implementation of security solutions, from PoC to production rollout.
• Collaborate with IT, Engineering, and DevOps to embed security into system design, identify monitoring gaps, and improve detection capabilities.
  
  

• 3-4 years of experience in security engineering, security operations, or cloud security roles.
• Strong experience managing security tools across data, cloud, and identity domains.
• Solid knowledge of cloud platforms (GCP/AWS) with experience securing cloud-native workloads.
• Ability to lead technical evaluations and risk assessments of tools or platforms.
• Understanding of access management, data loss prevention, and identity security models.
• Strong written and verbal communication skills in English.
  
  

• Familiarity with Infrastructure-as-Code security practices (Terraform, etc.).
• Knowledge of network security concepts and common protocols (e.g., segmentation, VPNs).
• Experience with security compliance frameworks (e.g., ISO 27001, SOC 2, NIST).
• Exposure to secure development lifecycle (SSDLC), CI/CD security, and Kubernetes environments.
  
  

• Industry certifications (e.g., Security+, GSEC, CISSP, or cloud-specific certifications)
• Bachelor’s degree in Information Security, Computer Science (or a related field), or equivalent professional training or experience
  
  

• You want to make an impact on humankind
• You prioritize “We” over “I”
• You enjoy getting things done and striving for excellence
• You collaborate effectively with people of diverse backgrounds and cultures
• You have a growth mindset
• You are candid, authentic, and transparent