Security Operations Engineer

Description

MWDN company is looking for a self-motivated and goal-oriented Security Operations Engineer who would like to be a part of a team working on brand-new startup projects for foreign customers.

Requirements

• 3 years of experience as Information Security Engineer, SecOps or related fields from cloud-native or hybrid environment.
• Strong knowledge of security best practices, techniques & technologies.
• Hands on experience working with security systems, such as: EDR, CASB, Intrusion Detection/Prevention, IdP solutions, content filtering, DLP, Email Security, Endpoint security, content filters, PAM ,WAF, CSPM and Device Trust solutions
• Proven experience integrating SIEM, working with SOC & integrating IdP (Okta or similar)
• Experience in leading information security projects end-to-end.
• Familiarity with major cloud providers (AWS/GCP/ Azure).
• Familiarity with security frameworks, standards, and best practices (e.g., SOC2, ISO 27001, NIST).

Big Advantage:

• Familiarity with DevSecOps methodology and automation tools.
• Understanding of S-SDLC & AppSec.
• CISSP, CISM, or other relevant certifications.

About the project

Our client, an Israeli-based Fintech startup, is dedicated to building trust between renters and landlords. Their platform offers free certified electronic move-in payments, a flexible credit-backed deposit alternative, and automated electronic deposit refunds, all designed to simplify the rental experience. By leveraging Open Banking data and AI, the platform assesses a renter's eligibility to rent without a deposit. If required, renters can also make traditional security deposits and other move-in payments online, ensuring a seamless and efficient process.

Responsibilities

• Lead security projects end-to-end, enhance & maintain efficient SecOps processes and controls across different company domains.
• Refine IAM and develop SOC capabilities to ensure secure access controls and effective incident response.
• Monitor tickets, identify, and investigate events & alerts, Participate in Incident Management processes.
• Research, analyze, and identify potential vulnerabilities and ensure vulnerabilities are identified and addressed on time.
• Perform access reviews to ensure permissions and access controls are appropriate and up to date.
• Perform regular security assessments, including vulnerability scanning to proactively identify and mitigate risks.
• Actively assist in maintaining compliance with industry standards, best practices and regulatory requirements.
• Encourage a culture of security awareness, and evangelize security best practices and principles within tech / non-tech teams.
• Maintain security tools & systems such as EDR, SIEM, Patch Management, IdP, CASB, VPN, DLP, Email security; automate & enhance the utilization of existing security tools.
• Work closely with IT, R&D and other teams to assist in implementing DevSecOps, AppSec & IT Security best practices.

Our next steps

✅ Submit a CV in English — ✅ Intro call with a Recruiter — ✅ Call with client — ✅ HR client interview — ✅Reference check — ✅ Offer