Security Analyst

About The Position

Requirements

• 1+ year of dedicated Information Security experience required.
• 2-3 years working in enterprise IT roles such as System Administrator or HelpDesk.
• Familiarity with Incident Response Processes and Remediation Strategies.
• Experience managing and maintaining Security or Enterprise IT tools
• In-depth technical knowledge of network, PC, and platform operating systems, including Linux, macOS and Windows
• Strong TCP/IP networking, DNS, and HTTP knowledge
• Authorization to Work in the U.S.: Candidates must be legally authorized to work in the United States without sponsorship now or in the future. DISCO is not currently sponsoring visas, including, but not limited to, H-1B, TN, or EAD, and we are not accepting visa transfers.

Nice To Haves

• Experience with Enterprise EDR solutions
• Experience with compliance frameworks such as HITRUST, ISO27001, SOC2 or FedRAMP
• Experience securing the public cloud environments (AWS, GCP, Azure)

Responsibilities

• Security Operations: The analyst conducts day-to-day security monitoring, prioritizing, and classifying incoming alerts from SIEM, EDR, and other security tools. They perform initial triage to distinguish true incidents from false alarms, and conduct basic checks on agent and log status to ensure data continuity.
• Incident Response (Initial): The analyst is the first responder responsible for initiating the formal IR process, including incident ticket kickoff and stakeholder notification. They execute response actions according to approved playbooks and meticulously document all initial actions, observations, and evidence for seamless escalation to senior team members.
• Data Protection & Phishing: Conduct initial review and triage of Data Loss Prevention (DLP) alerts and assist with DLP investigations. They also manage the phishing email queue, verifying reported threats, blocking malicious content, and ensuring prompt, accurate escalation of novel or complex phishing campaigns.
• Systems Support: The analyst focuses on operational stability working directly with the system owner. They execute routine maintenance tasks (updates, deployments, clean-up) and assist senior team members with system enhancements.
• Project Contribution: Assist Security Architects and Engineers with system updates, selection and deployment of new security tooling. Implementation of security standards, compliance activities and other projects as required.

Benefits

• Open, inclusive, and fun environment
• Benefits, including medical, dental and vision insurance, as well as 401(k)
• Competitive salary plus RSUs
• Flexible PTO
• Opportunity to be a part of a company that is revolutionizing the legal industry
• Growth opportunities throughout the company