Senior Security Engineer at Nexxen

Tel Aviv-Yafo, Tel Aviv District, Israel

Not SpecifiedCompensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Advertising, Technology, Digital MediaIndustries

5–8+ years in application security delivering secure SDLC and K8s security at scale with strong developer enablement
Deep experience with WAF (AWS and Cloudflare WAF) and edge protections
Hands-on with SAST/DAST/SCA at scale, CI/CD integration, and metrics-driven remediation
Familiarity with OWASP Top 10 and common web/API attack patterns; ability to translate into actionable controls and tests
Familiar with AWS security services: Shield, Guard Duty, Inspector, KMS, Secrets Manager, IAM
Automation-first mindset with clear communication

Lead the application security roadmap and embed security in SDLC/CI-CD and the software supply chain
Run and tune SAST/DAST/SCA with policy-as-code; drive secure coding patterns and SLA-based vuln remediation
Strengthen web/API security: design and operate AWS WAF/CloudFront; enforce controls on API Gateway
Feed AppSec signals to SIEM/SOAR; define app-layer detections and partner with IR for web/API threats
Support compliance (SOC 2, ISO 27001, PCI) with control mapping and evidence
Lead incident response, threat hunting, and vulnerability management
Oversee the deployment and maintenance of advanced security technologies
Collaborate with Development and DevOps teams to ensure secure coding practices