Cyber Security Analyst (mid to senior level) - 100% remote
Optomi, in partnership with an enterprise-level client is looking to add a Security Analyst to their growing team. The ideal Security Analyst for this role needs to have experience in incident response, Vulnerability management (extracting vulnerabilities, alerts & exceptions from security tools(, and strong skills with EDR and SIEM (preferably Splunk ES). Enterprise experience also required.
What You Will Do:
- Pull/extract data from various dashboards & reports from various internal business units. These are all configured differently. Right now, there is an internal team that handles high level incidents. This role is triaging alerts, remediating or mitigating threats, etc. Candidate may take on Tier 3 level IR responsibilities depending on type of alert.
- The role will primarily be focused on extracting vulnerabilities, alerts, and exceptions from various security tooling (i.e. Qualys, wiz.io, Crowdstrike, etc.) and creating dashboards and heat maps.
- The role will perform threat hunting and aid in identifying systemic issues/findings to raise to security specialists to work with engineers for remediation.
- Aid in development of internal documentation, runbooks, and risk reports.
What's Required:
- A solid understanding of cybersecurity principles, concepts, and best practices, in both on-prem and cloud environments.
- Familiarity with on-prem and cloud-based VM assessment tools like Qualys and Wiz.io.
- Experience with writing documentation, including formal reports and briefings, for internal and external stakeholders.
- Ability to assess and prioritize vulnerabilities based on their risk to the organization.
- Familiarity with EDR solutions such as Crowdstrike
- Proficient in collaborating in JIRA, WIKI, slack, gSuite
Although this is a fully remote role, candidates must sit close to a hub for occasional onsite visits/meetings. Locations: Seattle, WA; Los Angeles, CA; New York City, San Francisco, CA; Orlando, FL; Bristol, CT