Senior Security Analyst

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!

Join our advanced cybersecurity team as a Senior Security Analyst, where your expertise will be instrumental in strengthening our organizational security framework. In this pivotal role, you will lead the strategic implementation and management of vulnerability management programs, with a specialized focus onQualys solutions, while also driving improvements inCloud Security Posture Management (CSPM)andEndpoint Detection and Response/Endpoint Protection Platforms (EDR/EPP).

As a senior member of our security team, you willprovide technical leadership, mentor junior analysts, and collaborate closely with cross-functional teams to proactively identify and mitigate cybersecurity risks. Your role extends beyond daily security operations toinfluencing security strategy, policy development, and automation initiatives. If you have a deep understanding of evolving threats and a commitment to enhancing enterprise security, we invite you to bring your expertise to our team.

Leadership & Strategy:

• Serve as a subject matter expert onvulnerability management, cloud security, and endpoint protection.
• Mentor and provide guidance to junior security analysts.
• Develop and refine security policies, best practices, and frameworks.
• Lead cross-functional security initiatives, collaborating with IT, DevOps, and engineering teams.

Qualys Vulnerability Management:

• Oversee and optimizeQualys deploymentacross enterprise infrastructure.
• Design and implementadvanced scanning configurationsto ensure complete asset coverage.
• Analyze vulnerability data to identify critical risks, trends, and areas for proactive improvement.
• Coordinate remediation efforts, providing strategic guidance to IT and system administration teams.

Cloud Security Posture Management (CSPM):

• Leadcloud security audits and compliance enforcementfor multi-cloud environments.
• Implement and fine-tuneCSPM toolsto enforce industry regulations and internal security policies.
• Develop best practices forsecure cloud configurationsand integrate security into DevOps pipelines.

Endpoint Security (EDR/EPP):

• Deploy and manageEDR/EPP solutionsfor advanced threat detection and response.
• Assist Qualys SOC inthreat hunting and forensic investigationsto identify and mitigate advanced threats.
• Configure and monitor EDR/EPP tools, conduct regular audits, and ensure proper integration with other security controls.
• Respond promptly to endpoint security alerts, investigate incidents, and implement corrective actions.

Automation & Security Orchestration:

• Design and implementsecurity automation workflowsto enhance efficiency.
• Exploreorchestration solutionsto automate remediation processes for recurring security gaps.
• Integrate security tools to provide a unifiedreal-time security monitoringframework.

Compliance & Risk Management:

• Ensure security controls align withindustry standards (NIST, ISO 27001, CIS Benchmarks,DISA STIGetc.).
• Conduct periodic risk assessments and audits to proactively address security weaknesses.
• Maintain compliance with regulatory requirements and Qualys internal governance policies.

Collaboration with Qualys Support:

• Engage with Qualys support for issue resolution, updates, and to stay informed about new features and best practices.
• Participate in Qualys user forums and communities to share insights and learn from others' experiences.

• Bachelor's or Master's degreein Cybersecurity, Information Technology, or a related field.
• 3+ years of experiencein cybersecurity, with a focus onvulnerability management, cloud security, and endpoint protection.
• Strong expertise inQualys Vulnerability Managementand security policy enforcement.
• Hands-on experiencewith CSPM tools and cloud security best practices.
• Proven track record inEDR/EPP deploymentand security incident handling.
• Experience in securityautomation, orchestration, and integrationwith SIEM and SOAR platforms.
• Relevant certifications such asCISSP, CISM, CEH, or OSCPare preferred.
• Strong analytical, problem-solving, and communication skills.
• Ability tolead projects and mentor junior analystswhile driving a security-first culture.

If you're passionate aboutenhancing enterprise security,driving innovation, andleading critical cybersecurity initiatives, we encourage you to apply and join our team as aSenior Security Analyst!