Security Analyst

WeWork

Posted Date 12/19/2018
Description

Position: Information Security Analyst ­ Operations

About Us:

WeWork is an organization committed towards helping people around the world make a life, and not just a living. We accomplish this through the thoughtful design of our spaces and technology.

We build and maintain a wide range of technology to support our mission. Our technology team and product catalog ranges from the typical web applications, expansive IoT sensor network streaming signals into data pipelines to help optimize the way we use space, and a geographically dispersed workforce on cloud infrastructure among other functions. The Security Operations team within the Information Security department is critical on protecting what we love.

About the Role:

The Security Analyst will support the Information Security team process within the company. The individual will be well­versed in information security and security operations. The position will report to the Manager, Security Operations. The ideal candidate should be: familiar and up to date with current and emerging threats; able to develop risk mitigation strategies required to protect the confidentiality, integrity, and availability of information systems, infrastructure, and client data; and proficient at working with internal business units and vendors to resolve risk issues and develop efficient and effective action plans.

Role Responsibilities:

  • Help support projects from all engineers
  • Perform scans and validation of vulnerability/patch management process
  • Support and lead blue team incident response and investigations
  • Tier 1 support – security incidents and requests
  • Help run and support the security operations function
  • Identify security risk and develop solutions to eliminate or minimize risk
  • Hands on with security tools for security operations controls (firewalls, endpoints, IPS, IDS)
  • Participate in the development and updating of runbooks and security procedures

Desired Skills and Experience:

  • Strong understanding of the multiple layers of the OSI model protocols (TCP, IPSEC, 802.1X)
  • Strong experience supporting or maintaining cloud infrastructure (AWS, GCP, Azure)
  • Strong experience around Windows, Linux, and OSX security controls
  • Experience with common security products/tools; SIEM, vulnerability management, threat assessment, endpoint protection, user behavior, cloud access security broker, identity and access management
  • Basic understanding of virtualization security controls

Ideal candidates should have:

  • Excellent verbal and written communication skills
  • Ability to react to high pressure dynamic changing environments
  • Ability to learn and train security concepts to a wide audience
  • Strong problem solving and analytical skills for both technical and people processes
  • Basic understanding of scripting languages (Python, bash, Ruby)
  • Strong understand of how a basic web application functions
  • Basic understanding of cryptography and cloud security controls
  • Security+ Certificate

Share this job

Notice

This job board is currently inactive.

Please contact us if you have any questions.