Responsibilities
· Define security strategy, design secure architectures, enforce best practices and maintain security infrastructure for complex production environments.
· Design, deploy and operate technologies to assist in detection, prevention, and analysis of security threats.
· Be part of an R&D Enablement group responsible for a diverse production environment.
· Responsibility for the security of the various production environments.
· Design and implementation of networks and infrastructure security.
· Establish DevSecOps practices in our CI/CD pipelines and automation processes.
· Research, examination, and implementation of new security services and open-source tools.
· Collaborate with R&D engineering teams on designing and implementation of new features.
REQUIREMENTS
· Deep knowledge in the OSI network model, and specifically the HTTP protocol
· Hands-on experience as a Cyber security engineer with extensive knowledge in network security, Firewalls, WAF, application security, exploits and vulnerabilities, Load-Balancers, and more.
· Experience with a programming language (C#, Java, etc.) and/or Scripting and automation skills (Bash, Python, etc.)
· Strong background knowledge in Windows Administration and IIS.
· Strong background in securing REST Services and HTTP-based communication throughout all network layers.
· Monitoring/Logging experience (ELK, Grafana, Prometheus, etc.)
· Strong Security skills: server hardening, benchmarking, and pen-testing.
· Advantage: Experience with GCP and/or Rackspace cloud provider.
· Advantage: Experience with Edgecast solutions.
· Advantage: one or more certifications: CISSP, CCSA, CCNA, CISA, CI