Senior Cybersecurity Analyst

About The Position

Requirements

• Bachelor’s degree in Computer Science, Software Engineering, Computer Information Systems, Electrical Engineering or related field; or commensurate experience
• 5+ years of experience in cybersecurity and information security domains
• Experience providing administrator or SME-level support for endpoint security solutions such as CrowdStrike, HBSS, Tanium, Digital Guardian,
• Solid foundation of TCP/IP and other core protocols
• Experience in enterprise intrusion analysis, SIEM, and incident
• Solid understanding of Windows and Linux operating systems, and command-line tools
• Familiarity with network architecture and security infrastructure placement
• Creating, maintaining, upgrading/patching, and troubleshooting ESXi or Hyper-V hosted virtual machines
• Routing, switching, TCP/UDP/SSH/FTP/SCP/HTTPS protocols
• Industry knowledge of border testing, security policies, remediation strategies, and risk
• Experience with security information and event management solutions (SIEM), performing security incident response and/or investigation
• Experience evaluating networks, systems, and applications for vulnerabilities, including examining firewall rulesets, current patch levels, and inspecting logs for anomalous entries
• Experience with security services such as firewalls, IDS/IPS, and content filtering.
• Experience with data protection & archiving, disaster recovery, business continuity, and implementation
• Experience with tools including: Vulnerability scanners, Endpoint protection, IPS/IDS, SIEM, Malware
• Ability to create documentation that describes technical details to a non-technical audience
• Knowledge of industry best practices from organizations such as International Standards Organization (ISO), Center for Internet Security (CIS), and National Institute of Standards (NIST)
• Knowledge of IT controls, including security concepts and terminology related to applications, databases, operating systems, and IT operations
• Experience with information security, cyber security, and privacy issues, and awareness of regulated data environments (e.g., PCI, SOX, FERPA, HIPAA, and COPPA)

Nice To Haves

• Experience with cloud incident response is a plus (e.g., AWS, GCP, Azure)
• Experience working with N-Tier architecture
• Windows and Linux scripting
• Certifications from vendors such as Cisco, McAfee, Microsoft, Oracle, Red Hat, Symantec, or VMware

Responsibilities

• Identify security issues and risks associated with security events and manage the incident response process
• Participate in the incident response and investigation process for identified security events
• Support and implement new security initiatives within the cloud environment as the threat landscape changes
• Periodic security assessments and configuration review of the cloud environment
• Understanding of the tactics, techniques, and procedures of advanced attackers, to hunt for signs of APT activities
• Direct and influence multi-disciplinary teams in implementing and operating cloud security controls
• Sourcing and tracking of public vulnerability disclosure sources to assess the impact on our network/products and prioritize the patching efforts
• Maintain and update the security operational workflow
• Lead team initiatives and mentor more junior members of the cybersecurity team
• Other duties as assigned.

Benefits

• Flexible Time Off program
• Hybrid work model
• Variety of medical insurance options, including a $0 cost premium employee coverage
• Benefits effective day 1 of employment include a competitive 401K match with no vesting requirement, national health, dental, and vision plans
• Progressive family plan benefits
• An opportunity to work for a global and industry-leading technology company
• Impactful work in a collaborative environment