Security Systems Engineer
Description Colmex Group specializes in providing comprehensive tech- based solutions for investing and trading across various markets, with a particular focus on the American stock exchange. We provide brokerage services, and Trading Services on Equities, CFDs, FX and Crypto. Our team is expanding, and we are looking for a Cybersecurity Specialist to join our team in Tel Aviv. We’re looking for a highly practical Cybersecurity Specialist who thrives in structured processes and hands-on security work. If you enjoy configuring systems, documenting controls, implementing security requirements, and supporting audits — this is for you. 1. Cybersecurity Strategy & Enterprise Governance Design, develop, and lead the implementation of comprehensive security policies, standards, and governance frameworks across the enterprise stack. Advise on emerging security trends and risk-based prioritization. 2. Advanced Security & Operations Architect and optimize access control and identity management (IAM) models across the enterprise. Lead system hardening initiatives for complex Windows and Linux environments, establishing baseline security standards for all new infrastructure. Serve as the Security Subject Matter Expert (SME) for IT projects, ensuring "Security by Design" is integrated into all system implementations. Evaluate and recommend new security tools and technologies to enhance the defensive posture. Vulnerability Lifecycle: Lead the Vulnerability Management program; prioritizing patching and remediation efforts based on risk scoring (CVSS) and exploitability. Lead Penetration Testing (PT) engagements with external firms and take actions for remediating findings with the IT team. Multi-Cloud Security: Design and oversee security controls across multi-cloud environments, ensuring consistent identity boundaries and data protection. 3. Compliance Management (ISA, CySEC, DORA) Assist with regulatory audits. Execute tasks related to risk assessments, gaps, remediation. Ensure policies are aligned with regulator requirements. Translate complex regulatory requirements into actionable technical controls. 4. Incident Orchestration & Risk Management Incident Response function, including high-level triage, forensic evidence collection oversight, and post-mortem analysis. Optimize SIEM/SOC workflows to improve detection capabilities and reduce "Mean Time to Respond" (MTTR). Perform quantitative and qualitative risk assessments, presenting findings and mitigation strategies. Requirements 6+ years experience in Cybersecurity Technical Mastery: Proven experience implementing and tuning Cloudflare and Microsoft Defender (ATP/M365) . Hardening Expertise: Hands-on experience securing both Windows and Linux. Automation: Ability to script for automated compliance monitoring. Audit Experience: Background in leading ICT audits and managing external pentest teams. Network/Cloud: Experience with Azure/AWS security groups and cloud native security tools. Language: English, Hebrew