Security Analyst

Arista Networks•Santa Clara, CA

1d•Hybrid

About The Position

Arista Networks is seeking a Security Analyst to join our Operational Security team. This role serves as the initial line of defense for the organization, working collaboratively with senior analysts to monitor security alerts, investigate potential threats, and support critical incident response efforts. The team thrives on shared expertise and hands-on experience with diverse technologies to protect our infrastructure. The ideal candidate will monitor security alerts from various telemetry sources, conduct initial triage and analysis of security incidents, document findings, and assist in comprehensive incident response. Responsibilities also include gathering threat intelligence, maintaining internal documentation, implementing cloud security guardrails, supporting vulnerability management, and conducting investigations during cloud-based security incidents. The role requires staying informed on emerging threats and collaborating with cross-functional teams. Participation in project work, including proof-of-concepts for new tools, is also expected.

Requirements

Bachelor’s degree in Cybersecurity, Computer Science, or a related technical field (or equivalent practical experience).
A minimum of 5 years of progressive experience within Information Security, specifically including 2 or more years dedicated to Cloud security initiatives.
Strong foundational understanding of both macOS and Windows environments.
Familiarity with SIEM tools, logging platforms, firewalls, antivirus, and EDR solutions.
Core understanding of network protocols (TCP/IP, DNS) and security architecture.
Strong analytical problem-solving abilities.
Excellent communication skills.
Ability to thrive in a fast-paced environment.

Nice To Haves

Basic scripting knowledge (Python, PowerShell, or Bash) is a plus.
Experience with SIEM & SOAR administration is desirable but not essential.
Demonstrated proficiency with a minimum of two major public cloud platforms (GCP and Azure preferred; AWS and OCI are advantageous).
Preferred Certifications: CompTIA Security+, CySA+, BTL1, or Cloud Security certifications.

Responsibilities

Monitor security alerts from various telemetry sources (SIEM, IDS/IPS, EDR) and escalate anomalies as necessary.
Conduct initial triage, analysis, and classification of security incidents.
Document investigative findings and assist in comprehensive incident response.
Follow established incident response procedures and escalate to senior analysts when required.
Gather threat intelligence to proactively enhance security monitoring capabilities.
Create, maintain, and review internal documentation for processes and procedures.
Implement cloud security reference architectures and guardrails rooted in Zero Trust and Least Privilege principles.
Support vulnerability management by identifying potential security weaknesses across the enterprise.
Conduct investigations and provide necessary triage, containment, and forensic support during cloud-based security incidents.
Stay informed on emerging threats, vulnerabilities, and cybersecurity trends.
Collaborate with cross-functional teams to ensure timely resolution of security incidents, providing guidance and recommendations.
Participate in project work, including proof-of-concepts (PoCs) for new tools and optimizations of existing technologies.