Infosec & Secops Lead

Description

We are seeking a skilled and experienced InfoSec & SecOps Lead to join ActiveFence CISO team. The ideal candidate will be responsible among others for driving the security initiatives.

Responsibilities:

• Maintain holistically security corporate architecture, including network, systems, applications. Evaluate and implement security remediations to enhance the organization security posture.
• Corporate Security: Oversee security measures, including access control, surveillance, and emergency response planning. Manage relationships with external security vendors related to TPRM and IR.
• Experience among others on SSPM/SaaS security, IDP, SIEM/SOC, Including conducting threat modeling exercises to identify potential vulnerabilities and risks where required.
• Security Operations: Oversee the day-to-day security operations, including monitoring, incident response, Analyze security logs and alerts to identify & respond to security incidents. Conduct regular security assessments and manage the remediations program. Develop and maintain an effective incident response plan.Conduct post-incident reviews to identify lessons learned and improve future response efforts.
• Experience with Vulnerability Management: Identify, prioritize vulnerabilities. Monitor and track vulnerability remediation efforts.
• Collaborate with other teams within the organization to ensure the overall security posture is maintained. This may include working with IT, Devops, R&D to implement security policies and technical security procedures. Including all business units, educate employees on security best practices.

Requirements

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 4+ years of Infosec & Secops Hands-On experience, among others in the start-up and fully cloud based industries.
• Strong Experience among others with Okta, Adaptive Shield/Astrix, Coralogix/Splunk, Endpoint security, Network security, and similar security tools. 
• Expertise in security technologies, WAF, endpoint security solutions. Knowledge of cloud security and cloud-based security tools
• Experience with cloud platforms (AWS, GCP).
• Strong understanding of security frameworks and standards (e.g., NIST, CIS). Experience with security incident response and investigation.
• Strong understanding of security principles, risk assessments, vulnerability management.
• Knowledge of security orchestration, automation, response (SOAR) tools. 
• Ability to work effectively in a team environment. Excellent written and verbal communication skills. 
• Excellent analytical & problem-solving skills. Strong communication & interpersonal skills.
• Must be able to work independently and as part of a team. This position may require occasional on-call or after-hours work.

Advantage:

• Relevant certifications such as CISSP, CISM, CEH, CompTIA Security+,SSCP are preferred.
• Familiarity with scripting languages (Python, NodeJs) and automation tools.

About ActiveFence

ActiveFence is the leading tool stack for Trust & Safety teams, worldwide. By relying on ActiveFence’s end-to-end solution, Trust & Safety teams – of all sizes – can keep users safe from the widest spectrum of online harms, unwanted content, and malicious behavior, including child safety, disinformation, fraud, hate speech, terror, nudity, and more.

Using cutting-edge AI and a team of world-class subject-matter experts to continuously collect, analyze, and contextualize data, ActiveFence ensures that in an ever-changing world, customers are always two steps ahead of bad actors. As a result, Trust & Safety teams can be proactive and provide maximum protection to users across a multitude of abuse areas, in 70+ languages.

Backed by leading Silicon Valley investors such as CRV and Norwest, ActiveFence has raised $100M to date; employs 300 people worldwide, and has contributed to the online safety of billions of users across the globe.