DescriptionSilverfort is on a mission to bring identity security everywhere – to every human, machine, and AI agent, both on-premises and in the cloud. Our unique technology secures identities and access at runtime, in ways that weren’t possible before. With the broadest identity security platform in the market, trusted by more than 1,000 customers, including many Fortune 100 companies, Silverfort is uniquely positioned to lead the fast-growing identity security category. Joining Silverfort means becoming part of a fast-moving team with a culture of innovation and collaboration that goes above and beyond to help our customers and each other on a journey to reshape the future of identity security. We’re looking for a hands-on Infrastructure & Security Engineer with strong experience across multiple cloud environments, who can build and support cloud and on-premises infrastructure, troubleshoot complex issues, and work closely with security and networking teams. You’ll manage identity and access management, virtual machines, networks, firewalls, and core IT services, including Active Directory and DNS. Responsibilities - Managing and support multi-cloud environments, including compute, networking, storage, and security, to ensure stable and secure production systems - Build and operate infrastructure components, including VMs, VPCs/virtual networks, subnets, routing, security groups, NACLs, and VPN connectivity - Troubleshoot end-to-end performance, connectivity, authentication, and availability issues across cloud and on-premises environments - Own enterprise networking and security operations, including L2/L3 troubleshooting, VLANs, routing, NAT, VPN, DNS, IPsec, and firewall configurations - Maintain core Microsoft and virtualization infrastructure, including Active Directory, DNS, DHCP, Group Policy, and VMware ESXi/vCenter environments - Manage IAM across cloud providers, including users, roles, policies, least privilege, and access reviews to maintain secure access controls - Lead the implementation of key security platforms and initiatives - Assist the security team with in-depth security investigations and vulnerability management, including patching, remediation tracking, configuration hardening, and incident follow-up - Lead infrastructure projects by translating requirements into tasks, milestones, and deliverables, while maintaining documentation, runbooks, and operational procedures Requirements - 4–6 years of experience as an infrastructure and security engineer within production environments - Strong virtualization experience, including VMware ESXi and vCenter administration - Experience managing Active Directory, DNS, and DHCP in enterprise environments - Strong hands-on experience with at least one major public cloud platform (Azure preferred) - Strong understanding of IAM concepts and implementation across cloud platforms - Solid networking fundamentals, including TCP/IP, subnetting, routing, VPN, DNS, DHCP, IPsec, firewalls, and packet-level troubleshooting - Hands-on experience with enterprise firewalls and network platforms such as Fortinet (FortiGate), Palo Alto, Juniper (Mist), Cisco, Prisma Access, and Prisma Cloud - Proven operational experience with monitoring, alerting, backups, and documentation - Team player, excellent communication skills - Experience with one or more of: Nutanix, OpenShift, OpenStack, Hyper-V, storage- Advantage - MDM experience- Advantage

• Design and support end-to-end lifecycle of workforce identity systems including identity automation, access management, and least-privilege enforcement across internal systems • Support design of secure identity design patterns for product teams building on ValonOS • Manage and evolve Valon's IdP in conjunction with IT including SSO integrations, MFA policies, conditional access rules, and directory synchronization • Define and enforce RBAC and group-based access policies for internal applications, cloud environments, and development tooling • Support privileged access management (PAM) for internal infrastructure in conjunction with Engineering teams • Design and build AI-assisted workflows that automate and accelerate core IAM operations • Evaluate AI risks across IAM pipelines, ensuring appropriate security controls around data exposure, prompt injection and other threats • Collaborate with Product, Engineering, Data, Compliance, Legal, and other teams to identify and drive mitigation for data security risks • Support other operational and on-call duties such as vulnerability management, regulatory compliance (SOC 2, CCPA, NYDFS, FTC), policy development, incident response and security reviews.

• Manage and expand Valon's security and privacy compliance program across key frameworks and regulations (e.g., SOC 2, NYDFS Cybersecurity Regulation, FTC Safeguards Rule, CCPA and evolving regulations) • Build and scale modern Security GRC capabilities that leverage AI-enabled tools and processes, reducing manual overhead while optimizing risk and compliance operations • Support AI security standards development and risk processes • Design, develop and monitor technical security controls • Lead audit preparation and management • Maintain and evolve Valon's risk management practices; facilitate risk assessments across teams and track remediation of identified issues to closure • Develop, publish, and maintain security policies, standards, and procedures in partnership with IT, Engineering and Legal • Build and mature Valon's Data Governance program including secure data handling practices • Enhance BC/DR risk management practices and processes • Partner with Engineering and Product to assess security compliance implications of new features, infrastructure changes, and data flows • Manage security compliance, regulatory requirements, and customer-facing due diligence, while supporting operational security activities including advisory reviews, incident management, and issue remediation

• Design and implement secure AI and generative AI architectures across data, model development, deployment, and inference • Embed security controls into LLM, RAG, and agentic AI systems • Guide architectural decisions on data pipelines, model orchestration, APIs, and observability • Design AI auditability and observability solutions to support governance, monitoring, and incident response • Identify and mitigate AI-specific risks (e.g., prompt injection, data leakage, model poisoning, adversarial attacks) • Conduct threat modeling, architecture risk assessments, and AI security testing (e.g., red teaming) for AI systems • Act as a trusted advisor to client leaders on secure and responsible AI adoption