Security & IT Operations Lead
Zafran Security
Security & IT Operations Lead
- R&D
- Tel Aviv
- Senior
- Full-time
Description
Zafran is looking for an experienced Security & IT Operations Lead who will be responsible for developing and implementing comprehensive security strategies and overseeing our IT infrastructure management to safeguard the company’s digital assets and sensitive customer information. This role involves working with Governance, Risk, and Compliance (GRC) frameworks, working alongside the company’s IT specialist and leading security operations. We’re looking for a person with a strong background in Application and Infrastructure Security and IT management, focusing on protecting customer data and enhancing system security.
About Zafran
The Zafran Threat Exposure Management Platform is the first and only consolidated platform that integrates with your security tools to reveal, remediate, and mitigate the risk of exposures across your entire infrastructure. Backed by Sequoia Capital, Zafran uses an agentless approach to reveal what is truly exploitable while reducing manual prioritization and remediation through automated response workflows.
What you will do
- Create, implement and enforce security policies, standards, and guidelines to protect company assets and customer information.
- Oversee the management, configuration, and maintenance of IT systems and networks, ensuring they are secure, efficient and up-to-date.
- Lead, manage and be responsible for acquisition processes of products and services from third-party vendors, in both our production environment and office IT environment
- Oversee and ensure the security of our office network, including firewalls and wired/wireless networking components
- Lead the implementation and management of GRC frameworks to ensure compliance with industry standards and regulations.
- Introduce, deploy and monitor and manage security tools and systems to detect and respond to security incidents promptly.
- Work closely with other departments, including R&D, legal, and compliance, to ensure security measures align with business objectives
Requirements
- Minimum of 3 years of experience in a similar role with a strong focus on Application Security, Infrastructure Security and IT Security
- Proven experience working with Governance, Risk, and Compliance frameworks to ensure regulatory and standards compliance.
- Strong understanding of information security principles, practices, and technologies, including how to protect sensitive dataHands-on experience with understanding and managing firewalls to protect corporate networks.
- Experience leading incident response activities and conducting risk assessments to identify and mitigate security threats.
- Familiarity with information security regulations and standards such as GDPR, ISO 27001, SOC 2, etc.
- High level of attention to detail and accuracy in managing security policies and procedures.