The Role
Operate and improve security infrastructure across endpoints, identities, applications, and cloud. Monitor, investigate, and remediate threats via DFIR and incident response. Perform vendor and internal security reviews, conduct threat hunting, build automations and SOAR playbooks, and support GenAI security initiatives while partnering cross-functionally.
Summary Generated by Built In
Description
Moon Active is one of the world's fastest-growing mobile game companies, providing entertainment to millions of players across the globe. Headquartered in Tel Aviv.
We are looking for a SecOps Engineer to join our Security Operations team. In this role, you will help defend the organization end-to-end, from IT security to endpoint and cloud security - while performing third-party and internal security reviews, handling incident response, conducting threat hunting, and supporting GenAI security work.
Responsibilities- Design, operate, and improve security infrastructure by maintaining core controls, hardening systems, and leading cloud security efforts to address misconfigurations, vulnerabilities, and identity risks
- Monitor, investigate, and remediate security alerts and threats by performing DFIR, analyzing attack vectors, proactively hunting adversary activity, and leading incident response
- Perform security reviews of third-party vendors, SaaS platforms, and internal applications, assessing architectures, data flows, integrations, and risk exposure
- Defend the organization end-to-end across endpoints, identities, applications, and cloud by operating and advancing SecOps controls (SIEM/EDR/CSPM), building automations, enforcing best practices, and partnering cross-functionally to drive security outcomes
- 3+ years of hands-on experience in security operations, incident response, or a similar cybersecurity role
- Strong hands-on experience in IT security, endpoint protection, identity security, and general security operations
- Solid understanding of cloud platforms (GCP/AWS/Azure) and practical experience improving cloud security
- Experience with AI artifacts (Skills, MCP, Hooks etc.)
- Strong knowledge of SIEM technologies (Splunk, etc.) and experience with incident response and DFIR workflows
- Proficiency with Python, Bash, or PowerShell for automation and scripting
- Familiarity with SOAR platforms and building automated playbooks
- Strong communication skills with the ability to collaborate across DevOps, IT, R&D, and business teams
#LI-Hybrid
Skills Required
- 3+ years of hands-on experience in security operations, incident response, or a similar cybersecurity role
- Strong hands-on experience in IT security, endpoint protection, identity security, and general security operations
- Solid understanding of cloud platforms (GCP/AWS/Azure) and practical experience improving cloud security
- Experience with AI artifacts (Skills, MCP, Hooks etc.)
- Strong knowledge of SIEM technologies (Splunk, etc.) and experience with incident response and DFIR workflows
- Proficiency with Python, Bash, or PowerShell for automation and scripting
- Familiarity with SOAR platforms and building automated playbooks
- Strong communication skills with the ability to collaborate across DevOps, IT, R&D, and business teams
Am I A Good Fit?
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
As one of the world’s fastest-growing mobile game companies, we produce engaging entertainment that is enjoyed by players across the universe!









