Mid-Level, Security Engineer

We are

At Cross River were building the financial infrastructure that powers global innovation. With our cutting-edge suite of embedded payments cards and lending solutions we enable millions of businesses and consumers to transact seamlessly and securely.

With 900 employees worldwide and an R&D center of over 160 employees in Jerusalem - were reshaping how financial technology is developed and delivered. .

This role focuses on ensuring the security and compliance of cloud infrastructure by implementing and maintaining robust security controls across AWS environments. The position involves automation for security monitoring adhering to best practices and collaborating cross-functionally with other teams.

A strong individual contributor who takes pride in delivering high-quality security outcomes while collaborating closely with peers and stakeholders. You are able to build trust provide thoughtful input and continuously grow your technical and operational expertise.

You are passionate about exploring new technology and using it to make an actionable impact to the future of fintech. You can balance the needs of the business and the teams goals with strong value for code quality and adherence to implementing best practices.

A highly skilled AWS Security Engineer with additional FinOps expertise to ensure the security and compliance of our cloud infrastructure. You are able to implement and maintain robust security controls across AWS environment. You are passionate about best practices automation for security monitoring and collaborating with other teams.

• Cloud Security Implementation: Contribute to the design and implementation of security measures across AWS environments to ensure systems are secure compliant and aligned with industry best practices. Including implementation automation and development of security policies
• Conduct regular security assessments control testing and audits to proactively identify risks and vulnerabilities (and support remediation efforts with partner teams)
• Collaboration with Internal Teams: Work closely with internal teams to integrate security best practices into development and operational workflows
• Security Automation & Infrastructure Management: Design and implement automation strategies for security monitoring auditing and incident response
• Cost Efficiency through Security: Contribute to cloud cost management by optimizing cloud resources without compromising on security.
• Incident Response & Threat Management: Participate in incident response efforts to support timely identification analysis containment and remediation of security threats. Contribute to post-incident reviews help maintain incident response playbooks and support internal teams by sharing learnings and updated procedures.

• Flexible hybrid work model: three days a week at our Jerusalem office
• Monthly wellness reimbursement from therapy to gel manicure its up to you
• Full Keren Hishtalmut private health and dental insurance
• Volunteer days donation matching Yoga and Pilates
• A supportive collaborative culture that puts our people first

Hit Apply!

Requirements:

What You Bring to the Table

• Proficiency in Hebrew and English language with excellent written and verbal communication skills
• AWS Certified Security Specialty - Must
• AWS Certified Solutions Architect - Professional - Must
• Experience with Azure cloud security including relevant certification (Azure AZ-104 Administrator)
• In-depth knowledge of AWS security services (e.g. IAM GuardDuty CloudTrail VPC security)
• Expertise in cloud security architecture including identity and access management encryption network security and application security.
• Strong skills in Linux Bash Terraform Jenkins Containers/Docker and programming languages such as Python and JavaScript
• Experience in security automation and incident response in cloud environments

A plus if you have

• AWS Certified Solutions Architect Associate
• Experience with endpoint security including endpoint management and investigation tools supporting endpoint-based investigations and response working with XDR and DLP technologies and workflows (alert triage investigation containment and remediation) and familiarity with the Microsoft security ecosystem (e.g. Microsoft Defender Intune Sentinel Purview).
• Experience working in a collaborative environment with cross-functional teams embedding security into development operations and infrastructure workflows
• Familiarity with FinOps practices with the ability to balance security measures with cost-efficient strategies