Job Description
Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!
Position Summary
We are seeking a highly skilled and experienced Senior Security Analyst to join our dynamic Information Security team. The ideal candidate will possess extensive knowledge and hands-on experience in vulnerability management, scripting, CyberArk Endpoint Privilege Manager (EPM), Zero Trust architecture, and Azure cloud security. This role will be critical in safeguarding our organization's information assets by identifying, analyzing, and mitigating security threats and vulnerabilities.
Key Responsibilities
- Qualys Vulnerability Management
- Conduct regular vulnerability assessments and penetration testing across all systems and networks.
- Analyze and prioritize identified vulnerabilities based on risk and impact.
- Coordinate with cross-functional teams to ensure timely remediation of vulnerabilities.
- Develop and maintain vulnerability management policies, procedures, and documentation.
- Monitor and report on the effectiveness of vulnerability remediation efforts.
- CyberArk Endpoint Privilege Manager (EPM)
- Manage and administer CyberArk EPM solutions to control and monitor privileged access across endpoints.
- Design and implement least privilege policies to minimize security risks.
- Monitor and analyze EPM logs and alerts to detect and respond to suspicious activities.
- Provide guidance and training to IT teams on best practices for privileged access management.
- Zero Trust Architecture
- Lead the design and implementation of Zero Trust security models across the organization's infrastructure.
- Assess current security posture and identify gaps in alignment with Zero Trust principles.
- Collaborate with network and system engineers to enforce strict access controls and continuous authentication mechanisms.
- Evaluate and integrate security technologies that support Zero Trust frameworks.
- Azure Cloud Security
- Ensure the security and compliance of Azure cloud environments by implementing best practices and security controls.
- Conduct security assessments and audits of Azure resources and services.
- Monitor Azure security center alerts and respond to potential threats and incidents.
- Advise on secure architecture and deployment strategies within Azure cloud services.
- Stay updated on emerging Azure security features and recommend enhancements accordingly.
- Incident Response and Monitoring
- Participate in security incident response activities, including investigation, containment, eradication, and recovery.
- Utilize security information and event management (SIEM) tools to monitor and analyze security events.
- Develop and maintain incident response plans and playbooks.
- Scripting and Automation
- Develop and maintain scripts (e.g., Python, PowerShell) to automate security processes and tasks.
- Implement automation solutions to improve efficiency in security monitoring, incident response, and compliance reporting.
- Collaborate with DevOps teams to integrate security automation into CI/CD pipelines.
- Compliance and Governance
- Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, NIST, GDPR).
- Assist in internal and external security audits and assessments.
- Develop and deliver security awareness training and education programs.
Qualifications
- Education
- Bachelor's degree in Computer Science, Information Security, or a related field. Master's degree preferred.
- Experience
- Minimum of 7-9 years of experience in information security or related roles.
- Proven experience in vulnerability management and remediation processes.
- Strong proficiency in scripting languages such as Python, PowerShell, or Bash.
- Hands-on experience with CyberArk Endpoint Privilege Manager (EPM) administration and deployment.
- Extensive knowledge of Zero Trust security principles and practical implementation experience.
- Solid experience with Azure cloud security services and tools.
- Experience with security frameworks and standards (e.g., NIST, ISO 27001).
- Certifications (preferred but not required)
- Certified Information Systems Security Professional (CISSP)
- Certified Ethical Hacker (CEH)
- Certified Cloud Security Professional (CCSP)
- Microsoft Certified: Azure Security Engineer Associate
- CyberArk certifications (e.g., Defender, Sentry)
- Skills and Competencies
- Strong analytical and problem-solving skills.
- Excellent communication and interpersonal skills.
- Ability to work effectively in a team-oriented and collaborative environment.
- High level of integrity and professional ethics.
- Ability to manage multiple tasks and projects simultaneously.
- Strong attention to detail and commitment to quality.