Remote Senior Security Analyst

Description:

• The Senior Security Analyst will investigate and remediate escalated incidents, identify affected systems and the scope of attacks, mitigate active threats, and use threat intelligence to improve detection and response capabilities.
• Responsibilities include collaborative issue remediation on a broad set of IT-related issues such as cybersecurity risks, regulatory compliance, data protection, and user access controls.
• The analyst will perform reviews of IT compliance documentation, procedures, and controls, creating work papers and making recommendations for remediation.
• The role involves responding to security events, validating and investigating escalated incidents, and performing mitigation and recovery operations.
• The analyst will fine-tune, optimize, and support existing security tools used for monitoring, detection of events, and incident response efforts, including SIEM, EDR, CASB, and DLP.
• Responsibilities also include creating and maintaining incident response documentation, incident investigation records, root cause analysis documentation, internal knowledgebase, and runbooks.
• Conducting quantifiable threat and risk analysis and providing viable solutions is also part of the role.
• The analyst will participate in blue/purple team exercises, design and conduct disaster recovery/business continuity/incident response tabletop exercises, and update process documentation based on lessons learned.

Requirements:

• A computer science-related baccalaureate degree from an accredited college or equivalent experience is required.
• Candidates must have a minimum of 5 to 8 years of experience in security within an enterprise environment.
• Experience with vulnerability scanning applications, log management and alerting platforms, and packet analyzers is necessary.
• Knowledge of network segmentation and/or security zones for data protection according to data classification is required.
• Candidates should be willing to share knowledge with co-workers and assist them in understanding technical and business topics.
• A working knowledge of information systems security standards and practices, including access control, system hardening, system auditing, log file monitoring, security policies, and incident handling is essential.
• Experience with detection and response tools such as Network Behavior Anomaly Detection, Data Loss Prevention, Email Gateway services, Sandboxing, DDoS Mitigation, WAF, Forward/Reverse Proxies, and DNS Security is required.
• Demonstrated hands-on security knowledge of platforms such as Windows, Apple IOS, and Linux is necessary.
• A working knowledge of networking protocols, web technologies, and cloud computing is required.
• The ability to interpret information security data and processes to identify potential Indicators of Compromise (IoC) is essential.
• Candidates must be able to quickly understand complicated data flows to identify and validate security requirements.
• A team player with the willingness to establish strong positive working relationships across the business is required.
• Candidates must be self-starters with the ability to work effectively, independent of assistance or supervision.
• The ability to work well in a fast-paced, rapidly evolving environment within a growing company is necessary.
• Proficiency in all Microsoft Office products is required.
• Candidates must be able to clearly communicate Information Security matters to executives, auditors, end-users, and engineers using appropriate language, examples, and tone.
• One or more advanced professional security certifications such as CompTIA Security+, Network+, CRISC, or CCSP is required, or a willingness to attain one within 12 months.

Benefits:

• Cologix offers a competitive benefits package for full-time employees, which includes medical, dental, and vision insurance.
• Flexible spending account options are available to employees.
• Employees receive non-accrued paid time off (PTO) and company-paid holidays.
• A 401k Retirement Plan is provided for employees.
• Short- and long-term disability benefits are included in the package.
• Individual compensation will be commensurate with the candidate's experience, and the position is also eligible for an annual bonus.
• The salary range for this position is $120,000 to $140,000 USD.