Senior SecOps Engineer

We are searching for Senior Cyber Security Engineer (SecOps Engineer) to step onto a fintech unicorn rocketship! Еhis role presents an exciting opportunity to work in a fast-growing company with great opportunities to make a difference.

Why join Tipalti?

Tipalti is the AI-powered platform for finance automation, elevating how finance teams operate in the global economy. We empower our customers to scale faster and smarter by removing the complexities of doing global business and accelerating their financeoperations efficiency. Our platform provides a comprehensive suite of finance automation solutions designed for mid-market businesses across accounts payable, global payouts, procurement, employee expenses, corporate cards, supplier management, tax compliance, and treasury. Tipalti partners with leading financial institutions such as Citi, Wells Fargo, J.P. Morgan, and Visa, enabling over 5,000 global companies to efficiently and securely pay millions of suppliers and payees across 200+ countries and territories, in 120 currencies.

At Tipalti, we pride ourselves on our collaborative culture, the quality of our product and the capabilities of our people. Tipaltians are passionate about the work they do, and keen to get the job done. Tipalti offers competitive benefits, a flexible workplace, career coaching, and an environment where diverse individuals can thrive and make an impact. Our culture ensures everyone checks their egos at the door and stands ready to reach for success together.

Founded in Israel in 2010, Tipalti is a global business headquartered in the San Francisco Bay Area (Foster City) with offices in Tel Aviv, Plano, Toronto, Vancouver, London, Amsterdam, Tbilisi and Medellin.

In this role, you will be responsible for:

• Design, implement, and maintain security architectures and controls across the organization’s cloud, SaaS, and corporate environments
• Protect sensitive data across endpoints, SaaS applications, and cloud platforms by implementing and managing Data Loss Prevention (DLP) and data protection controls
• Secure cloud infrastructure (AWS / Azure / GCP) by identifying misconfigurations, enforcing security baselines, and implementing cloud hardening and least-privilege access models
• Maintain and manage security technologies such as Firewalls, WAF, EDR/XDR, IDS/IPS, SASE, DLP, IAM, and SIEM platforms
• Identify, prioritize, and remediate vulnerabilities and security findings across infrastructure, SaaS applications, and cloud environments
• Design and enforce identity and access controls, including SSO, MFA, RBAC, and privileged access management
• Monitor and improve security posture by analyzing security telemetry, alerts, and logs across enterprise systems
• Lead and execute cross-organizational security projects aimed at strengthening the company’s overall security posture
• Collaborate with Engineering, DevOps, IT, and Security Operations teams to implement security controls and reduce organizational risk
• Ensure security controls and processes align with internal policies and compliance frameworks such as ISO 27001 and SOC 2

About you

• Extensive experience in Information Security, securing Linux and Windows environments – Must
• Proven experience in IT infrastructure or system engineering, including Active Directory – Must
• Proven experience managing enterprise security controls such as VPN, firewalls, EDR/XDR, IDS/IPS, patch management, and secure access platforms – Must
• Strong background in network security, system security, and cloud infrastructure security
• Experience implementing or operating Data Loss Prevention (DLP) or data protection solutions
• Hands-on experience securing cloud environments (AWS, Azure, or GCP) and modern SaaS ecosystems
• Familiarity with identity and access management technologies, including SSO, MFA, RBAC, and identity lifecycle processes
• Experience with encryption, key management, and certificate management
• Strong understanding of application security concepts and Layer 7 security mechanisms
• Familiarity with security frameworks and compliance standards such as ISO 27001, SOC 2, or NIST
• Excellent written and verbal communication skills in English, with the ability to collaborate across teams

Advantages:

• Scripting and Automation: Proficiency in Python, PowerShell, or Bash scripting for automation
• Security certifications (CISSP, CEH, Security+, etc.)

Tipalti is posting this job opening for and on behalf of SDS (Cyprus) Limited and/or SDS Tbilisi Limited, LLC (both are hereinafter referred to as “SDS”). Any potential employment and/or consulting arrangements entered into, as it relates to this job opening, will be between you and SDS. Tipalti shall not be held responsible for the information and contents contained in this job posting, or for any issues arising out of or related to this job posting.