Information Security Analyst / Engineer

Location The Information Security Analyst / Engineer will support our globally distributed Information Security operations, working remotely and collaborating with the Head of InfoSec and key stakeholders around the world. This role will be based remotely, in Israel (full-time employee) or in Eastern Europe (contractors).Who We Are DoiT is a global technology company that works with cloud-driven organizations to leverage the cloud to drive business growth and innovation. We combine data, technology, and human expertise to ensure our customers operate in a well-architected and scalable state - from planning to production. Delivering DoiT Cloud Intelligence, the only solution that integrates advanced technology with human intelligence, we help our customers solve complex multicloud problems and drive efficiency.With decades of multicloud experience, we have specializations in Kubernetes, GenAI, CloudOps, and more. An award-winning strategic partner of AWS, Google Cloud, and Microsoft Azure, we work alongside more than 4,000 customers worldwide. The Opportunity This is an exciting opportunity to join DoiT's Information Security team and play a crucial role in protecting our global operations, customer data, and cloud infrastructure. Reporting to the Head of InfoSec, you will be responsible for day-to-day security operations, threat monitoring, vulnerability management, and supporting security initiatives across our multi-cloud environment.The successful candidate should be highly detail-oriented with a strong security mindset, focused on building robust, scalable security processes. A high degree of collaboration is required, working cross-functionally with IT Operations, Engineering, Sales, and Client Services teams, as well as externally with security vendors and compliance partners.ResponsibilitiesSecurity Operations:Monitor security alerts, incidents, and threats across DoiT's global infrastructureConduct security assessments and vulnerability scans for cloud environments and applicationsInvestigate and respond to security incidents, coordinating with relevant teams for remediationMaintain and update security documentation, playbooks, and incident response proceduresSupport compliance efforts including SOC2, ISO 27001, and customer security assessmentsAssist with security awareness training and education initiatives across the organizationCloud Security Management:Implement and maintain security controls across AWS, Google Cloud, and Microsoft Azure environmentsConfigure and monitor cloud security tools including SIEM, CASB, and vulnerability scannersReview cloud architecture designs and provide security recommendationsSupport secure configuration management and infrastructure as code practicesMonitor cloud access patterns and investigate anomalous activitiesGovernance and Compliance:Assist with security policy development and implementationSupport vendor security assessments and due diligence processesMaintain security metrics and reporting for leadership and compliance requirementsParticipate in security audits and provide evidence for compliance frameworksHelp develop and test business continuity and disaster recovery plansCollaboration and Support:Work closely with IT Operations team on security-related projects and initiativesProvide security guidance to development and engineering teamsSupport procurement processes by reviewing security requirements for new tools and servicesCollaborate with external security consultants and penetration testing teamsParticipate in cross-functional incident response and crisis management activitiesQualification 2-4 years of experience in information security, cybersecurity, or related fieldExperience with cloud security in AWS, Google Cloud, and/or Microsoft Azure environmentsKnowledge of security frameworks and standards (NIST, ISO 27001, SOC2, etc.)Experience with security tools such as SIEM, vulnerability scanners, endpoint protection, and security monitoring platformsUnderstanding of network security, encryption, identity and access management, and security best practicesFamiliarity with compliance requirements and audit processesStrong analytical and problem-solving skills with attention to detailExcellent written and verbal communication skillsAbility to work effectively in a remote, globally distributed team environmentSecurity certifications preferred (Security+, GSEC, CCSP, or equivalent)Experience with scripting/automation (Python, PowerShell, etc.) is a plusBachelor's degree in Information Security, Computer Science, or related field preferredAre you a Do’er?Be your truest self. Work on your terms. Make a difference. We are home to a global team of incredible talent who work remotely and have the flexibility to have a schedule that balances your work and home life. We embrace and support leveling up your skills professionally and personally. What does being a Do’er mean? We’re all about being entrepreneurial, pursuing knowledge, and having fun! Click here