Share on facebook
Share on twitter
Share on linkedin
Share on whatsapp
Share on email

DevSecOps Engineer

Israel - Ramat-Gan · Full-time · Middle

About The Position

We are looking for an experienced DevSecOps Engineer to join our team and verify that our cloud environments are secure and structured according to best practices.

As a DevSecOps Engineer, you will lead Elementor’s security efforts around its dynamic and fast-paced production environments, as well as define and create operation tools and processes that directly impact work across all R&D flows.

This is a hands-on position in which you'll be part of a team that directly impacts work across all R&D flows and our entire production environment.

Work Environment

Elementor is the leading website building platform for professionals using WordPress. Our users are web creators - developers, designers, and marketers, who create a new website every 10 seconds. 

Since launching in Israel in 2016, our reach now extends to more than 180 countries, with users building over 8M websites powered by Elementor. Elementor based websites now comprise 5% of all websites (yes, 5%!!!).

Responsibilities

  • Secure and monitor live production environments, end-to-end
  • Perform security drill-downs and investigations
  • Act as a subject matter expert and manage security incidents across all organizational environments 
  • Implement monitoring and alerting procedures and mechanisms
  • Design, implement and develop various security solutions according to R&D/production needs
  • Work together with Elementor’s R&D teams and Architects to design, enhance, and implement best-of-breed security topologies  
  • Identify new security threats and trends by conducting continual monitoring, vulnerability assessments, and log analysis
  • Manage internal and external security assessments
  • Manage Elementor’s Bug Bounty Program (soon to go public)

Requirements

Minimum Requirements:

  • 2+ years of DevOps experience in a cloud environment (hands-on)
  • 3+ years of relevant industry experience in security, solid knowledge of information security principles and practices
  • In-depth understanding and proven experience in security monitoring and analytics
  • Strong understanding of cybersecurity and network principles
  • Experience with incident response (IR), attacks and mitigation methods
  • Experience building tools and processes using Python or Go, and answering various security-related needs
  • Experience with designing and implementing automation processes for security monitoring and incident response-related flows
  • Intrusion detection, incident response, and forensics; development of security tools, automation, or frameworks

 

Advantages

  • Solid understanding of GCP security-related services
  • Solid understanding of security/operations infrastructure
  • Knowledge of SDLC best practices around application security
  • Experience with Kubernetes, containers, and serverless security
  • Experience with large scale cloud infrastructures and services
  • Leading integration processes for SIEM systems
  • Penetration Testing or security research experience
  • AWS/GCP certifications

Apply for this position