Network & System Engineer
Armis, the cyber exposure management & security company, protects the entire attack surface and manages an organization’s cyber risk exposure in real time. In a rapidly evolving, perimeter-less world, Armis ensures that organizations continuously see, protect and manage all critical assets - from the ground to the cloud. Armis secures Fortune 100, 200 and 500 companies as well as national governments, state and local entities to help keep critical infrastructure, economies and society stay safe and secure 24/7.
Armis is a privately held company headquartered in California.
As Armis grows rapidly, we are looking for candidates to design, build and maintain an ever-changing internal network and security infrastructure.
You will implement robust security systems and tools leveraging automation to optimize infrastructure scalability, usability, and security.
You will join the Armis global IT & Security team and work closely with all the company’s departments and end-users, especially the Office of CISO team.
Responsibilities
- Manage, maintain and monitor the company's IT & Security infrastructure systems and integrations (on-prem & SaaS)
- Design, manage, maintain, optimize, and monitor TLV office network infrastructure (on-prem & SaaS managed infrastructure such as Infoblox, Aruba, and Portnox)
- Manage, maintain, optimize, and integrate systems into the company’s SSO platform to support SAML & user lifecycle management (Okta)
- Manage, maintain, develop, and implement automation across the company’s infrastructure, network, and systems to support internal processes, company growth and continuously improve the employees' experience by maximizing security
- Manage, maintain, and optimize the company’s on-prem virtualization infrastructure (VMware & Nutanix)
- Manage, maintain and improve the company’s MDMs (Jamf & Intune).
- Implement security best-practice permissions models (RBAC, JiT)
- Actively monitor network and server infrastructure to ensure uptime and performance.
- Joint SOC tools and alerts management (SIEM, EDR / EPP, others…)
- Managing & monitoring system performance and ensuring reliability and availability
- Investigate and respond to security incidents
- Identify, automate and document solutions to common issues
- Collaborate with the global team in implementing security policies, procedures and best practices
- Collaborate with the company’s teams or departments to understand, research, and resolve problems
- Deliver professional tier 2 and 3 global technical support to the company’s employees and systems
- Work as per IT & Security processes and KPIs
- Work with vendors and suppliers of physical and virtual assets
- Assess vendor’s solutions, coordinate security review and oversee product implementation
- Create and improve technical documentation, training materials
- Conduct security awareness training for employees
Minimum Requirements
- At least 3 years of experience with LAN/WAN/WiFi networks design, implementation and management.
- 3+ years of experience in implementation, administration, and management of security systems (firewalls, end-point protection softwares, intrusion systems, encryption, PK)
- Deep expertise in network segmentation and security best-practices
- Deep expertise with network tools (analyzer, monitoring, SIEM)
- Experience with advanced network security frameworks (ZTNA, DDI)
- Experience with infrastructure monitoring tools (e.g., PRTG, Grafana).
- Experience with network policies and processes (change management, configuration management…)
- 2+ years experience with systems administration (Okta, Google Workspace, Jamf, Office 365, Intune)
- 1+ years of experience with cloud infrastructure administration (AWS, GCP, Azure)
- 2+ years of experience with on-prem virtualization infrastructure administration (VMware & Nutanix)
- 2+ years of experience with infrastructure scripting and automation (Python, Bash, Powershell)
- 4+ years of experience with OS administration and troubleshooting (Windows, macOS, Linux / Unix)
- Excellent troubleshooting, problem-solving and analytical skills
- Strong understanding of security principles and best practices
- Excellent documentation capabilities
- Strong communication and teamwork skills
Preferred Skills
- Experience with LAN/WAN/WiFi networks architecture design, implementation and management
- Deep expertise in firewalls implementation, administration and management
- Experience with ZTNA solutions
- Experience with CASB tools.
- Experience with enterprise browser solutions
- Experience with security incident response
- Experience with PAM implementation and administration
- Experience with infrastructure monitoring implementation and administration
- Experience with security policy development and implementation
- Excellent and proven serviceability skills
- Ability to be patient with non-technical users and simplify processes and procedures
- High level of independence with excellent time management skills
- Good project management skills
- Very high motivation and willingness to continuously learn
The choices you make in your career journey matter. You want to do interesting work in an important field while also having time to live your life, which is why we place so much value in your life-work balance. Armis sets you up for success with comprehensive health benefits, discretionary time off, paid holidays including monthly me days, and a highly inclusive and diverse workplace. Put your unique experiences and perspective to work in an environment where they will enable you to thrive, grow, and live your life with integrity.
Armis is proud to be an equal opportunity employer. We never discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, age, disability, veteran status, genetic information, marital status or any other legally protected (or not) status. In compliance with federal law, all persons hired will be required to submit satisfactory proof of identity and legal authorization.
Apply for this job
*
indicates a required field