Senior Information Security Analyst

What we’re looking for

As a Sr Information Security Analyst – Cyber Defense, you will research and develop cybersecurity strategies that are in line with industry best practices. You will play a crucial role in researching, assessing, and planning information security strategies with Trust & Security leadership.

You will be responsible for collecting requirements to address security challenges, surveilling the marketplace to determine strategies and tools to address the challenges, conducting proof of concept/ proof of value in pursuit of solution selection, deploying and configuring solutions, and developing long-term support models to ensure ongoing success of solution implementation.

You will work closely with other members of the Cloud Security and Infrastructure engineering, Security Operations team to ensure the right level of visibility and alerting are in place. You are also expected to work closely with teams across Security Operations, IT Operations, Cloud Solutions and Engineering to discuss the root causes of issues/incidents/alerts as they come up.

What you’ll be working on

• Designing and implementing security measures for the protection of computer systems, networks and information/data
• Identifying and defining system security requirements and streamlining processes to keep systems up to date
• Preparing and documenting standard operating procedures
• Configuring and troubleshooting security solutions
• Managing various security tools and deployments such as DLP, EDR, zero trust , Vulnerability management systems, networking solutions, network devices, authentication systems, etc.
• Researching current tool configurations to determine if there are opportunities to enhance our security posture and deployment processes.
• Developing technical solutions and deploying new security tools and automations to help mitigate security gaps
• Writing comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement
• Planning, implementing, managing, monitoring and upgrading security measures
• Maintain up-to-date knowledge of the security industry, including awareness of new or revised security solutions and improved security processes
• Propose, develop and implement metrics and KPIs to measure and track effectiveness of various security tools & technologies.
• Fine tune existing tools to address gaps identified by Cyber Detect and Cyber Respond teams
• Support cloud security posture management, threat detection automations and incident response on call rotation schedule

We’d love to hear from people with

• 7+ years of cyber/information security work experience
• Preferred qualifications include certifications in Azure/AWS and one or more security certifications (CISSP, CCSP, etc.)
• Experience building and maintaining security systems, with familiarity of security tools like CrowdStrike, Zscaler, Cyberhaven, AWS Inspector, Security Hub, GuardDuty
• Experience with public cloud environments such as AWS and Azure
• Thorough understanding of the latest security principles, techniques, and protocols
• Able to take on new opportunities and tough challenges with a sense of urgency, high energy and enthusiasm
• Build partnerships and work collaboratively with others to meet shared objectives across teams
• Knowledge of security best practices for containerized workloads deployed on AWS ECS/EKS
• Familiarity with a programming language such as Go/Python and AWS/Azure SDK, CLI and APIs. Experience with either Splunk or LogScale will be highly useful

#LI-remote