Security Engineer

Tel Aviv

MAINTAIN SECURITY SOLUTIONS TO PROTECT OUR EMPLOYEES AND CUSTOMERS

Sisense is the unified, collaborative data platform for professional data teams. We help thousands of data teams tackle increasingly complex data challenges, from ETL through to predictive analytics.

Our expectations for ourselves are ever increasing and we're looking for someone to help us along that journey. If you love creating delightful user experiences for technical and non-technical users and delivering company-changing outcomes, this role is for you!

You will support and manage security capabilities for the enterprise and shape the future of the technology environment in partnership with the IT team. While this role will primarily focus on IT Security (Phishing, Malware, EndPoint Protection), there will be plenty of opportunity to expand into other areas of Security Operations (Vulnerability Management, Bug Bounty and Incident Response) and Security Governance (Policies, Compliance and Training).

WHY YOU SHOULD JOIN OUR INFORMATION SECURITY TEAM:

Customers trust us with their most important data. They use Sisense to query everything from revenue metrics to the personally identifiable information of their users.

In Sisense we use the edge of technology for our product, for our internal services and to enhance the security posture. We are a global company and we believe that diversity and providing equal opportunities are great for expanding our ways of thinking.

You will partner with IT to truly empower the employees at Sisense.  You'll be expected to support solutions that are both highly secure and highly functional while moving at the speed of the business. Enabling everyone at Sisense to keep moving fast while continuously increasing the strength of our security may be your greatest challenge.  While some capabilities are already in place that will need to be learned and maintained, there will be a need to deploy new emerging security solutions to proactively and reactively protect our employees and customers. 

HOW YOU'LL RAMP

Within your first 30 days you'll…

  • Partner with the security team to understand the organizational mission, attack surface and helping define the appropriate risk-based security initiatives
  • Spend time with the IT and R&D customers to get up-to-speed on our technology stacks and current security controls 
  • Become educated on the endpoint management strategy for Windows and Mac
  • Assist with hardening practices for existing and emerging products
  • Analyze phishing emails and ensure secure business communications
  • Support remediation of findings from vulnerability scanning efforts

By Day 30, you'll...

  • Have a solid fundamental understanding of our products, people, processes and technologies
  • Work with key stakeholders to ensure compliance of Sisense's internal procedures and compliance goals (SOC2, HIPAA, ISO, GDPR, CCPA)
  • Manage endpoint protection alerts and investigations

By Day 60, you'll…

  • Taken lead for endpoint protection and developing enhancements
  • Evangelize better IT security practices throughout the company
  • Support and perform target risk assessments and audits to ensure process consistency
  • Support migration of previous acquired organizational IT tools and capabilities 

By Day 90, you'll...

  • Enhance enterprise collaboration tools to ensure appropriate security controls
  • Support External Penetration Testing efforts and assist with driving issues to closure 
  • Promote a security-first culture and ensure that all employees at Sisense are able to protect the organization from threats
  • Explore additional areas of security like Vendor Due Diligence, Governance, Compliance, etc. 

WHAT YOU HAVE AND ACCOMPLISHED SO FAR:

  • You have experience working as a Security Engineer
  • You have security mindset as a business enabler as part of the core security foundation of driving change with an effective communication style 
  • You have hands-on experience in configuring and hardening cloud-based infrastructure (AWS, Google Cloud, Azure, etc.)
  • You have the ability to dissect new systems, product requirements, features to identify and develop security requirements
  • You have basic understanding of security processes (Identify and Access Management, incident management, data security, etc.)
  • You have security certifications such as CISSP, CEH, CSM, etc.

I'm In!