Sr Information Security Analyst

About The Position

Requirements

• 3+ years of focused information security experience in cloud security for IaaS environments with an emphasis on AWS
• Passion for customer service, problem solving, investigation, and information security.
• Experience with Windows, Linux, MacOS (workstations and servers) including security best practices.
• Experience with Network and Firewall concepts.
• Experience with Palo Alto firewalls.
• Experience with Security tools such as SIEM, EDR, DLP, Email Security, and Threat Intel Platforms.
• Working knowledge of cloud security configurations and controls, identity, and access management (IAM), cryptography / key Management, and vulnerability management.
• Strong knowledge of CIS & NIST frameworks.
• Strong communication skills.
• Minimum of 5 years of experience in information security.
• Previous SOC experience with incident response & threat hunting.

Nice To Haves

• Relevant industry certifications (CISSP, Security +, CySA +, CASP +, Azure or AWS security certifications) preferred.
• Offensive security or Red Team experience.

Responsibilities

• Acts as the escalation point for reviewing security events and incidents from a wide variety of cybersecurity technologies such as endpoint security tools, network security tools, etc.
• Performs event correlation using information gathered from a variety of sources within the enterprise to continuously improve detection.
• Provides support in obtaining and maintaining compliance with NIST standards.
• Creates and/or maintains incident response documentation including the Incident Response Plan, Incident Response Playbooks, etc.
• Partners with various stakeholders across the business to improve overall security posture.
• Coordinates end-to-end incident response activities related to a wide variety of security risks and threats, including but not limited to, ransomware, system compromise, account takeover, phishing, etc.
• Implements security controls and processes to protect digital assets and conduct routine security audits to ensure compliance.
• Maintains active Threat Intelligence program, integrate Threat Intel with detection and monitoring to proactively block malicious actors.
• Proactively searches for advanced threats that may evade existing security solutions.
• Uses threat intelligence to analyze network, endpoint, and application data.
• Creates and adjusts threat-hunting scripts and queries to improve detection.
• Contributes to knowledge base and procedural documentation.
• Mentors less experienced analysts and provide guidance during critical incidents and investigations.
• Performs other job-related duties as assigned or apparent.
• Implementing and maintaining security controls in IaaS environments
• Driving optimization of Cloud specific security coverage
• Developing and maintaining Cloud specific security standards and procedures

Benefits

• Comprehensive medical benefits coverage, dental plans and vision coverage.
• Health care and dependent care spending accounts.
• Short- and long-term disability.
• Life insurance and accidental death & dismemberment insurance.
• Employee and Family Assistance Program (EAP).
• Employee discount programs.
• Retirement plan with a generous company match.
• Employee Stock Purchase Plan (ESPP).
• Paid Time Off (PTO)
• Benefits: https://jobs.republicservices.com/us/en/about-us/benefits