Security Engineer

We are looking for a Security Engineer to join us. In this role, you will take part in securing Cato’s production environments across network, data, and AI domains. You will work closely with SRE, DevOps, platform, and internal security teams to design, operate, and continuously improve security controls, reduce risk, and strengthen our detection and response capabilities in a fast-growing, cloud-native environment.

Responsibilities

• Support, maintain, and operate network, data, and AI security controls across Cato’s production environments, and continuously improve protection, detection, and response capabilities.
• Design, implement, and troubleshoot network security mechanisms, including segmentation, access controls, and traffic inspection, to reduce attack surface and lateral movement.
• Secure sensitive data and databases by enforcing encryption, permissions, and access governance, auditing, and monitoring to prevent data leakage and misuse.
• Identify security risks related to AI systems, data pipelines, and inference services, and help define controls to protect models, training data, and AI-driven workflows.
• Collaborate with engineering, SOC, and platform teams to identify high-risk assets, abuse scenarios, and attack paths, and translate them into actionable security controls and detections.
• Support incident response activities by serving as an escalation point for complex network, data, and AI-related security incidents.
• Contribute to improving security visibility, detection logic, and response processes, including documentation and knowledge sharing across the Cyber Defense Group.

Requirements

• Hands-on experience in security engineering or infrastructure security roles.
• Strong understanding of network protocols, architectures, and common network-based attack techniques.
• Experience securing databases and sensitive data, including encryption, access governance, and auditing.
• Practical knowledge of AI/ML systems and modern AI usage patterns, including risks related to training data, inference APIs, and model access.
• Understanding of emerging AI security threats, including prompt injection, data leakage, model abuse, and supply-chain risks.
• Experience working in cloud environments (AWS, Azure, or GCP) and cloud-native security controls.
• Experience participating in or leading security incident response and investigations.
• Proven ability to take ownership, lead security processes end-to-end, and drive initiatives across multiple teams.
• Strong analytical skills, proactive mindset, and ability to work effectively with cross-functional teams.

Advantage:

• Experience with automation platforms and security-related workflows.
• Familiarity with modern security architectures such as Zero Trust.