Associate Security Analyst
Role details
Job location
Tech stack
Job description
- Monitor security event management systems (SIEM) to identify potential threats and vulnerabilities in real-time.
- Conduct security analysis and vulnerability assessments across diverse IT infrastructure components, including network, system, and application layers.
- Investigate security incidents, perform risk assessments, and coordinate incident response activities to mitigate impact.
- Assist in implementing and maintaining security controls such as firewalls (Cisco ASA), endpoint detection and response (EDR), and intrusion detection systems (IDS).
- Support network security operations by configuring and managing network protocols (TCP/IP, IPsec), routing protocols (OSPF, BGP), and network architecture components like LAN/WAN.
- Contribute to the development and review of system security plans, ensuring compliance with ISO 27001, NIST standards, FISMA, FedRAMP, and other relevant frameworks.
- Participate in vulnerability research, threat intelligence analysis, and vulnerability management initiatives to strengthen our cybersecurity defenses.
Requirements
We are seeking a dynamic and detail-oriented Associate Security Analyst to join our cybersecurity team. In this role, you will be instrumental in monitoring, analyzing, and responding to security events across our IT infrastructure. Your proactive approach will help safeguard our digital assets, ensure compliance with industry standards, and support the overall security posture of our organization. This paid position offers an exciting opportunity to develop your expertise in cybersecurity operations within a fast-paced environment committed to innovation and excellence., * Bachelor's degree in computer science, information technology, or a related field; relevant certifications are a plus.
- Knowledge of computer networking concepts including LAN/WAN, TCP/IP, DNS, DHCP, VPNs, and network support tools.
- Experience with security information and event management (SIEM) platforms such as Splunk or SolarWinds.
- Familiarity with firewall technologies (Cisco ASA), IDS/IPS systems, and network security protocols like IPsec and SSL/TLS.
- Understanding of operating systems such as Windows, Linux (Debian, CentOS), macOS, and virtualization platforms like VMware or vSphere.
- Ability to analyze logs using tools like Fiddler or New Relic for threat detection & response purposes.
- Strong problem-solving skills with an emphasis on incident recovery, system hardening, and vulnerability assessment.
- Excellent communication skills for documenting findings clearly and collaborating effectively within a team environment., * Bachelor's degree in Computer Science, a related technical field (e.g. Cyber Security, Information Technology) or equivalent practical experience.
- Experience utilizing generative AI security assistants, security copilots, or AI-infused query builders to search Security Information and Event Management (SIEM) telemetry, summarize incidents, or accelerate analysis workflows.
- Experience with Endpoint Detection and Response (EDR) tools (such as Crowdstrike Falcon or SentinelOne Singularity, specifically utilizing AI or heuristic modules), Network Detection and Response (NDR) and Next-Generation Firewall (NGFW) tools (such as Corelight, Palo Alto, Vectra, or Trellix NX), or SIEM platforms (such as Google Security Operations, Splunk, or QRadar).
Preferred qualifications:
- 4 years of experience in a SOC environment, a specialized Information Security role.
- Experience leading investigations/participating in response operations for high-severity events.
- Proficiency with AI prompting techniques (prompt engineering) tailored for cyber security use cases, such as extracting indicators of compromise (IOCs) from unstructured threat reports or automating the generation of YARA-L/Sigma rules.
- Proficiency in scripting with experience connecting to AI model APIs to parse data, automate repetitive tasks, or build tools.
- Understanding of the risks associated with using Generative AI in security contexts, including data privacy/leakage concerns, model hallucination management, and prompt injection concepts.
Benefits & conditions
- 401(k)
- 401(k) matching
- Dental insurance
- Employee assistance program
- Employee discount
- Flexible schedule
- Flexible spending account
- Health insurance
- Health savings account
- Life insurance
- Paid time off
- Parental leave
- Professional development assistance
- Referral program
- Retirement plan
- Tuition reimbursement
- Vision insurance