Senior Cyber Security Analyst

What a day is like:
• Monitor and support alerts from PagerDuty, Splunk, Imperva, PhishER, hCaptcha, JupiterOne and infrastructure running on AWS
• Identify, contain and resolve cyber security incidents
• Identify security flaws and vulnerabilities
• Develop response procedures for security incidents
• Produce detailed incident reports
• Participate in daily stand-up meetings
• Lead research processes and functional IT teams or projects to solve complex issues
• Support information security audits with technical evidence
• Drive tickets in Jira through different phases until reaching closure
• Solve complex problems, taking a broad perspective to identify innovative solutions
• Contribute to departmental business planning and solution design
• Communicate difficult concepts and negotiates with others to conclude on goal-centric points of view
• Interpret challenges and recommend best practices to improve processes
• Provide resolution support to wide array of issues that are complex in scope
• Use expert-level cyber security knowledge base to complete tasks

You're perfect for this role if you have:
• 8+ years' experience working with systems deployed on AWS
• 6+ years' technical experience in Incident Management for AWS Cloud solutions
• 2+ years' experience with network security, intrusion detection and response, security incident management (SIEM)
• 2+ years' experience using Splunk for Incident Management and processes supported by Identity Management, Phishing handling, On-Call systems, End point Detection and response, AWS cloud security tools
• Proven experience in:
• Incident Management (2+ years)
• Risk Management techniques (2+ years)
• Vulnerability Management
• Web Application Firewalls
• SOAR playbooks and workflows
• Experience as a subject matter expert or stakeholder
• Previously supported information security audits in any of the following frameworks or regulations: PCI DSS, NIST, ISO 27001
• Experience analyzing threats of cloud and application components (such as, findings from Security Assessments)
• Intrinsic understanding of software development life cycles
• Excellent oral and written communication skills
• Knowledge of current and emerging security technologies, threats, and techniques for exploiting security vulnerabilities in the code or application
• The ability to work independently, and on a team, requesting guidance in complex situations, when needed
• Capacity to lead functional teams or projects to solve complex problems and deliver solutions

Preferred Qualifications: • Familiarity with Java (including npm and Maven), Docker & Kubernetes • Familiarity with some of the following: • SAST (Static Application Security Testing) • DAST (Dynamic Application Security Testing) • SCA (Software Composition Analysis) • SBOM (Software Bill of Materials) • Image Scanning • IaC (Infrastructure as Code) • Threat Modeling • PenTesting (Web App, Mobile, External) • CSA (Cloud Security Assessment)

Academic Background:
• Not required, but typically holds BsC or MsC college/university degree in Information Security, Cybersecurity, Computer Science or Software Engineering
• Holds at least one of the following Information Security certifications: CCSP, C|EH, OSCP, GCIH, CISSP, CISA, CISM
• Ideally, holds AWS Certified Security certification or an akin certification

Apply Job!