Security Analyst
About The Position
This newly created role will be an integral part to our Unicorn Security Vanguard Team (cybersecurity team), and will play a critical role in ensuring the integrity and security of our Enterprise applications. This role is focused on security analysis of real-time activity in Enterprise applications, as well as performing activities related to maintaining our existing CMMC Level 2 certification (critical for supporting Department of Defense contracts) and expanding capabilities toward CMMC Level 3 to defend against advanced persistent threats. You'll gain valuable experience in security operations, with the potential to become the primary point of contact (POC) for our contracted 24/7 Security Operations Center (SOC) service provider. The listed responsibilities are not exhaustive and additional responsibilities may be assigned based on the evolving needs of the organization. We are seeking a dynamic individual who is able to adapt and take on new responsibilities as they arise.
Requirements
- Currently possess and maintain a DoD 8570 IAT II Certification.
Nice To Haves
- 5+ years of experience in cybersecurity engineering or compliance, with strong preference towards candidates who have worked with NIST 800-171, CMMC, NIST 800-172, or NIST 800-53.
- Excellent analytical and problem-solving skills, with the ability to troubleshoot complex security incidents and recommend effective countermeasures.
- Demonstrated experience documenting security procedures and playbooks, such as for incident response.
- Strong proficiency in platforms including Google Workspace, Google Security Operations (aka Google Chronicle), MacOS, Github, Notion, and Slack.
- Excellent communication and interpersonal skills, with the ability to collaborate effectively with team members and stakeholders in a remote work environment.
- Relevant certifications such as CISSP, CCSP, EC-CSA, or GIAC Certified Detection Analyst are highly desirable.
- Hold a security clearance / Eligible to apply for a security clearance
Responsibilities
- Advise tuning of SIEM correlation rules and use cases to identify security incidents and anomalies.
- Currently possess and maintain a DoD 8570 IAT II Certification.
- Monitor SIEM alerts, triage, and respond to security incidents in a timely manner, escalating as necessary to the appropriate team(s) for further investigation and remediation.
- Perform Third Party/Supply Chain Risk Management reviews, to include security research and audit report analysis.
- Document procedures and playbooks for incident response and security processes to aid in maintaining compliance certifications and smooth security operations.
- Perform internal security control audits and recurring reviews to validate adherence to established procedures. Recommend updates to procedures as business needs evolve.
- Collaborate with cross-functional teams, including Product engineering, People Operations, and IT Operations, to ensure effective integration and operation of security controls.
- Stay current of emerging threats, vulnerabilities, and industry trends in cybersecurity, and recommend proactive measures to enhance our security posture.
Benefits
- Medical/Dental/Vision
- Premiums are 100% Company Paid
- Health Reimbursement Account
- Life Insurance
- Disability Insurance
- 401k Retirement Plan
- Company Stock Options
- Home Office Budget
- Unlimited paid time off, with a mandatory 10 days off on top of 11 federal government holidays, week of Thanksgiving, last two weeks of December (including New Year’s Day)
- Paid Parental Leave
- Reimbursement for approved trainings/subscriptions
- Conferences (travel, lodging, and fees)
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
101-250 employees
