Senior Cyber Security Analyst

What a day is like: • Monitor and support alerts from PagerDuty, Splunk, Imperva, PhishER, hCaptcha, JupiterOne and infrastructure running on AWS • Identify, contain and resolve cyber security incidents • Identify security flaws and vulnerabilities • Develop response procedures for security incidents • Produce detailed incident reports • Participate in daily stand-up meetings • Lead research processes and functional IT teams or projects to solve complex issues • Support information security audits with technical evidence • Drive tickets in Jira through different phases until reaching closure • Solve complex problems, taking a broad perspective to identify innovative solutions • Contribute to departmental business planning and solution design • Communicate difficult concepts and negotiates with others to conclude on goal-centric points of view • Interpret challenges and recommend best practices to improve processes • Provide resolution support to wide array of issues that are complex in scope • Use expert-level cyber security knowledge base to complete tasks You're perfect for this role if you have: • 8+ years' experience working with systems deployed on AWS • 6+ years' technical experience in Incident Management for AWS Cloud solutions • 2+ years' experience with network security, intrusion detection and response, security incident management (SIEM) • 2+ years' experience using Splunk for Incident Management and processes supported by Identity Management, Phishing handling, On-Call systems, End point Detection and response, AWS cloud security tools • Proven experience in: • Incident Management (2+ years) • Risk Management techniques (2+ years) • Vulnerability Management • Web Application Firewalls • SOAR playbooks and workflows • Experience as a subject matter expert or stakeholder • Previously supported information security audits in any of the following frameworks or regulations: PCI DSS, NIST, ISO 27001 • Experience analyzing threats of cloud and application components (such as, findings from Security Assessments) • Intrinsic understanding of software development life cycles • Excellent oral and written communication skills • Knowledge of current and emerging security technologies, threats, and techniques for exploiting security vulnerabilities in the code or application • The ability to work independently, and on a team, requesting guidance in complex situations, when needed • Capacity to lead functional teams or projects to solve complex problems and deliver solutions Preferred Qualifications: • Familiarity with Java (including npm and Maven), Docker & Kubernetes • Familiarity with some of the following: • SAST (Static Application Security Testing) • DAST (Dynamic Application Security Testing) • SCA (Software Composition Analysis) • SBOM (Software Bill of Materials) • Image Scanning • IaC (Infrastructure as Code) • Threat Modeling • PenTesting (Web App, Mobile, External) • CSA (Cloud Security Assessment) Academic Background: • Not required, but typically holds BsC or MsC college/university degree in Information Security, Cybersecurity, Computer Science or Software Engineering • Holds at least one of the following Information Security certifications: CCSP, C|EH, OSCP, GCIH, CISSP, CISA, CISM • Ideally, holds AWS Certified Security certification or an akin certification Apply Job!