Security Analyst
4 days ago
Description
• Monitor and analyze security alerts from advanced SIEM systems, intrusion detection/prevention systems, and endpoint detection and response tools • Lead comprehensive investigations of complex security incidents, performing root cause analysis and recommending effective remediation steps • Develop and maintain sophisticated correlation rules and use cases in SIEM platforms to enhance threat detection capabilities • Execute proactive threat hunting activities using both automated tools and manual techniques to identify potential security threats • Integrate and analyze threat intelligence feeds, incorporating relevant information into daily security operations and incident response processes • Conduct detailed forensic analysis on network traffic and endpoint systems to investigate and respond to security incidents • Contribute to the development and continuous improvement of incident response plans and procedures • Participate in and lead regular tabletop exercises and simulations to test and improve incident response capabilities • Develop and deliver comprehensive security awareness training materials for employees across all levels of the organization • Participate in and perform thorough vulnerability assessments and penetration testing to identify and address security weaknesses • Collaborate with cross-functional teams to ensure advanced security best practices are integrated into IT and development processes • Implement and manage cutting-edge security tools and technologies • Contribute to the development of robust security policies, standards, and procedures aligned with industry best practices • Prepare and present detailed reports on complex security incidents, trends, and recommendations to both technical and non-technical stakeholders • Stay at the forefront of cybersecurity trends, emerging threats, and advanced mitigation strategies through continuous learning and professional development • Assist with the evaluation and selection of new security tools and technologies, focusing on next-generation solutions • Manage and maintain relationships with external security vendors and service providers, ensuring alignment with organizational security goals • Assist with the organization's compliance efforts related to various security standards and regulations (e.g., NIST, SOC2, SOX frameworks) • Assist in special security projects assigned by management, driving innovation in security practices • Develop and maintain comprehensive documentation for advanced security processes, procedures, and technical configurations • Collaborate with the SOC manager to continuously improve the efficiency and effectiveness of security operations, implementing automation where possible • Design and implement advanced security architecture, including zero-trust models and secure cloud environments • Conduct threat modeling for new products and features, identifying potential security risks and recommending mitigation strategies • Develop and maintain an insider threat program, including monitoring, detection, and response procedures • Lead and participate in purple team exercises, combining red team and blue team activities to improve overall security posture • Implement and manage a bug bounty program to leverage external security researchers in identifying vulnerabilities • Develop and maintain a cyber threat intelligence program, including the creation of custom indicators of compromise (IoCs) and threat actor profiles • Implement and manage a security orchestration, automation, and response (SOAR) platform to improve incident response efficiency • Conduct regular security assessments of third-party vendors and partners, ensuring they meet the organization's security standards • Mentor and provide guidance to junior security analysts, helping them to develop their skills and expertise
Requirements
• Typically requires a Bachelor’s degree and a minimum of 2 years of related experience; or an advanced degree without experience; or equivalent work experience • 3-5 years of experience in information security or related IT roles • Deep understanding of network protocols, operating systems, and advanced attack vectors • Expertise in using SIEM platforms, intrusion detection/prevention systems, and endpoint security tools • Advanced Linux and Windows System Administration experience • Proficiency in automation and scripting using PowerShell, Python, Perl, or Bash • Strong experience with threat hunting techniques and tools • Familiarity with machine learning and AI applications in cybersecurity • Excellent analytical and problem-solving skills with a focus on innovative solutions • Strong communication skills, both written and verbal, with the ability to convey complex technical concepts to non-technical audiences • Ability to work effectively in a fast-paced environment, handle multiple priorities, and adapt to rapidly evolving threat landscapes • Preferred: Relevant certifications such as CISSP, OSCP, GCIA, GCIH, Sec+ or equivalent other security certifications that demonstrate competency in computer security • Implemented Security solutions in public clouds (AWS, Azure, and/or Google) • Experience with configuration management tools (Ansible, Terraform, AWS Config, Chef, and/or Puppet) • Knowledge of financial regulatory standards, including SOX-404, SOC, FFIEC, PCI, etc.
Benefits
• Health & Wellness • Hybrid Work Opportunities • Flexible Time Off • Career Development & Mentoring Programs • Health & Wellness Benefits, including competitive health insurance offerings and generous paid parental leave for eligible new parents • Community Volunteering & Company Philanthropy Programs • Employee Peer Recognition Programs – “You Earned it”
Apply Now