Manager, Security Operations Engineering

Claroty
Claroty

Operations

Israel

Posted on Jul 13, 2026

Description

We’re growing and looking to hire an Information Manager, Security Operations Engineering who embodies our core values: People First, Customer Obsession, Strive for Excellence, and Integrity.

Claroty is a global leader in cyber-physical systems (CPS) protection, dedicated to securing the critical infrastructure that keeps the world running. We’re a fast-growing, award-winning team where innovation meets purpose—and we want you to help us define the future of cybersecurity.

About the Role:

As the Information Security Operations Manager, you will lead our front-line defense, monitoring, and incident response capabilities. You will manage a high-performing technical team responsible for protecting enterprise infrastructure, cloud environments, and emerging AI workloads.

This role requires a rare combination of deeply technical hands-on capability and sophisticated leadership. Beyond managing technical systems and engineering staff, you will serve as the core liaison between Security Operations (SecOps) and key business stakeholders—including software engineering, corporate legal, human resources, and executive leadership—to navigate complex incidents, manage risk, and foster a collaborative security culture.

Responsibilities

As a Manager, Security Operations Engineering, Your impact will be:

Technical & Architecture Ownership

  • Cloud Security Operations: Architect and operationalize security monitoring within multi-cloud environments (e.g., AWS, Azure, GCP), utilizing cloud-native security tools and cloud security posture management (CSPM) systems.
  • EDR & Endpoint Protection: Experienced in managing and optimizing next-generation Endpoint Detection & Response (EDR/XDR) tooling across enterprise servers and workstation fleets.
  • Network Security: Knowledge of perimeter defenses, micro-segmentation, web-application firewalls (WAF), secure access service edge (SASE), and overall corporate network security architectures.
  • AI Security Operations: Lead the operational monitoring and governance of enterprise AI/LLM integration, defending against emerging vectors such as prompt injection, data exfiltration through AI pipelines, and insecure API utilization.
  • ZTNA: Experience with deploying, maintaining, and troubleshooting zero trust network access (ZTNA) solutions.
  • Vulnerability Management: Oversees the continuous identification, prioritization, and remediation of security weaknesses across an organization’s infrastructure.

Incident Response & Security Analysis

  • Manage day-to-day security analysis, monitoring, and full incident response lifecycles.
  • Lead technical root-cause analysis investigations for complex security incidents and author polished post-mortem documentation for executive review.
  • Mature the SecOps playbook, expanding capability around proactive threat hunting, threat intelligence integration, and digital forensics.
  • Experience with SIEM (ex. Splunk) and Security Operations Center (SOC) monitoring and alerting using the latest technologies.

Team Leadership & Stakeholder Collaboration

  • Team Management: Recruit, mentor, and build a technically proficient team of security analysts and engineers, ensuring continuous professional development and optimized on-call rotations.
  • Developer & Engineering Relations: Partner closely with DevOps and software engineering teams to embed secure patterns into CI/CD pipelines, translating operational telemetry into clear, actionable code-fix requests without disrupting delivery velocity.
  • Legal & Compliance Alignment: Coordinate directly with Corporate Legal and information security compliance teams to manage data privacy compliance, handle sensitive intellectual property matters, and provide forensic evidence for compliance or litigation.
  • HR Collaboration: Partner with Human Resources to manage insider threat assessments, support sensitive personnel investigations, and automate employee lifecycle security workflows (onboarding/offboarding).

Requirements

What do you need to succeed in this role?

Technical Experience:

  • Experience: 7+ years of experience in dedicated Security Operations or Incident Response environments, with 3+ years explicitly leading technical engineering or analyst teams.
  • EDR Expertise: Advanced production experience deploying and maintaining enterprise EDR solutions (e.g., CrowdStrike, SentinelOne, Microsoft Defender for Endpoint).
  • Cloud Infrastructure: Strong cloud security acumen with a track record of analyzing logs, VPC architectures, and complex IAM configurations.
  • Networking: Deep understanding of modern networking protocols, traffic analysis, zero-trust architectures, and network segmentation.
  • AI Awareness: Familiarity with the OWASP Top 10 for LLMs and methods for securing generative AI applications.
  • CISSP, CISM, GCIH, GCFA, CCSP, or equivalent technical certifications will be a big plus.

Leadership & Soft Skills:

  • Cross-Functional Diplomat: Proven ability to build strong cross-departmental relationships, translating highly technical risks into plain business terms for Legal, HR, and executives.
  • Crisis Management: Calm under pressure with a track record of managing high-severity incident responses while keeping non-technical business partners aligned.

About Claroty

Claroty empowers organizations to protect the mission-critical infrastructure that underpins modern life. The AI-powered Claroty Platform serves as the single source of operational truth, providing the deepest visibility and broadest protection across cyber-physical systems (CPS), leveraging five core solutions: asset inventory, exposure management, network protection, secure access, and threat detection. Claroty helps organizations operationalize CPS protection through a programmatic approach designed to reduce risk, maintain operational integrity, and meet compliance–whether in the cloud with Claroty xDome or on-premise with Claroty Continuous Threat Detection (CTD). Claroty is deployed by hundreds of organizations at thousands of sites globally. The company is headquartered in New York City and has a presence in Europe, Asia-Pacific, and Latin America. To learn more, visit claroty.com.

Claroty is an equal-opportunity employer committed to fostering a diverse and inclusive work environment for all. We encourage applications from candidates of ALL diverse backgrounds, and special accommodations are available upon request in all selection phases.

Follow us on social media:

#LI-HYBRID