Network & System Engineer

As Armis grows rapidly, we are looking for candidates to design, build and maintain an ever-changing internal network and security infrastructure.

You will implement robust security systems and tools leveraging automation to optimize infrastructure scalability, usability, and security.

You will join the Armis global IT & Security team and work closely with all the company’s departments and end-users, especially the Office of CISO team.

Responsibilities

• Manage, maintain and monitor the company's IT & Security infrastructure systems and integrations (on-prem & SaaS)
• Design, manage, maintain, optimize, and monitor TLV office network infrastructure (on-prem & SaaS managed infrastructure such as Infoblox, Aruba, and Portnox)
• Manage, maintain, optimize, and integrate systems into the company’s SSO platform to support SAML & user lifecycle management (Okta)
• Manage, maintain, develop, and implement automation across the company’s infrastructure, network, and systems to support internal processes, company growth and continuously improve the employees' experience by maximizing security
• Manage, maintain, and optimize the company’s on-prem virtualization infrastructure (VMware & Nutanix)
• Manage, maintain and improve the company’s MDMs (Jamf & Intune).
• Implement security best-practice permissions models (RBAC, JiT)
• Actively monitor network and server infrastructure to ensure uptime and performance.
• Joint SOC tools and alerts management (SIEM, EDR / EPP, others…)
• Managing & monitoring system performance and ensuring reliability and availability
• Investigate and respond to security incidents
• Identify, automate and document solutions to common issues
• Collaborate with the global team in implementing security policies, procedures and best practices
• Collaborate with the company’s teams or departments to understand, research, and resolve problems
• Deliver professional tier 2 and 3 global technical support to the company’s employees and systems
• Work as per IT & Security processes and KPIs
• Work with vendors and suppliers of physical and virtual assets
• Assess vendor’s solutions, coordinate security review and oversee product implementation
• Create and improve technical documentation, training materials
• Conduct security awareness training for employees

Minimum Requirements

• At least 7 years of experience with LAN/WAN/WiFi networks design, implementation and management.
• 4+ years of experience in implementation, administration, and management of security systems (firewalls, end-point protection softwares, intrusion systems, encryption, PK) 
• Deep expertise in network segmentation and security best-practices
• Deep expertise with network tools (analyzer, monitoring, SIEM)
• Experience with advanced network security frameworks (ZTNA, DDI)
• Experience with infrastructure monitoring tools (e.g., PRTG, Grafana).
• Experience with network policies and processes (change management, configuration management…)
• 4+ years experience with systems administration (Okta, Google Workspace, Jamf, Office 365, Intune)
• 4+ years of experience with cloud infrastructure administration (AWS, GCP, Azure)
• 3+ years of experience with on-prem virtualization infrastructure administration (VMware & Nutanix)
• 3+ years of experience with infrastructure scripting and automation (Python, Bash, Powershell)
• 4+ years of experience with OS administration and troubleshooting (Windows, macOS, Linux / Unix)
• CCNP or equivalent level
• Excellent troubleshooting, problem-solving and analytical skills
• Strong understanding of security principles and best practices
• Excellent documentation capabilities
• Strong communication and teamwork skills

Preferred Skills

• Experience with LAN/WAN/WiFi networks architecture design, implementation and management
• Deep expertise in firewalls implementation, administration and management
• Experience with ZTNA solutions
• Experience with CASB tools.
• Experience with enterprise browser solutions
• Experience with security incident response
• Experience with PAM implementation and administration
• Experience with infrastructure monitoring implementation and administration
• Experience with security policy development and implementation
• Excellent and proven serviceability skills
• Ability to be patient with non-technical users and simplify processes and procedures

• High level of independence with excellent time management skills
• Good project management skills
• Very high motivation and willingness to continuously learn