Cyber Security Architect

Summary  Data has never been more valuable and vulnerable. As cybercriminals become more sophisticated and regulations more strict, organizations struggle to answer one key question: “Is my data safe?  At Varonis, we see the world of cybersecurity differently. Instead of chasing threats, we believe the most practical approach is protecting data from the inside out. We’ve built the industry’s first fully autonomous Data Security Platform to help our customers dramatically reduce risk with minimal human effort.  At Varonis, we move fast. We’re an ultra-collaborative company with brilliant people who care deeply about the details. Together, we’re solving interesting and complex puzzles to keep the world’s data safe.We work in a flexible, hybrid model, so you can choose the home-office balance that works best for you. As a Cyber Security Architect, you will play a pivotal role in securing our organization's infrastructure, encompassing both on-premises and cloud-based environments. Your responsibilities include conducting thorough architecture reviews, identifying vulnerabilities, and devising effective mitigation plans. Additionally, you will contribute to enhancing our security posture by implementing best practices and ensuring organizational resilience.   Primary Duties and Responsibilities:

• Conduct architecture reviews for both designed and deployed environments, identifying security flaws and proposing mitigation plans.
• Evaluate and enhance security posture by fortifying infrastructure resilience and implementing best-practice organizational procedures.
• Develop and implement practical solutions for security issues, such as firewall policy reviews, segmentation recommendations, and Microsoft AD-tier Model implementation.
• Stay abreast of emerging security solutions and technologies through research and advocacy.
• Act as an incident responder for post-breach triage.

 Requirements: 

• 3+ of hands-on experience securing large organizational networks, including expertise in security controls, OS hardening, and network devices' security.
• Deep understanding of Microsoft IT, both on-premises and cloud infrastructure (e.g., Azure AD, Office365, AD, GPO, protocols).
• Practical experience in Firewall management from different vendors.
• Knowledge of network security systems, including VPN, WAF, IPS, AV, EDR/XDR, NAC, DLP, and device control.
• Knowledge of authentication and network security protocols, including SSL/TLS, OAuth, SAML, SSH, HTTPS, LDAP, Kerberos, and IPsec.
• Practical experience with vulnerability scanning tools.
• Experience in threat detection and management.
• Implementation experience with security monitoring procedures and systems (SOC, SIEM, SOAR).
• Previous management and project leadership experience.
• Advanced technical writing skills.

 Advantageous Skills: 

• Practical experience with cloud environments such as AWS, Azure, GCP.
• Hands-on experience with Kubernetes deployment and hardening.
• Practical experience in consulting services and risk assessment.
• Zero Trust Network Access (ZTNA) design and deployment experience.

 Desired Certifications:  

• Bachelor’s degree in a relevant field.
• CISSP (Certified Information Systems Security Professional).
• CISM (Certified Information Security Manager).
• CompTIA Security+, CEH (Certified Ethical Hacker).

 We invite you to check out our Instagram Page to gain further insight into the Varonis culture!@VaronisLife Varonis is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status, and other legally protected characteristics. #LI-Hybrid