Senior Information Security Analyst

12 Nov 2024

Vacancy expired!

Job Description

Locations in Houston, TX, Chicago, IL, Nashville, TN, Boston, MA

PayScale is changing the way companies attract and retain top talent through innovative compensation based tools and analytics.

PayScale is looking for a Senior Information Security Analyst to join our Information Security Team. You will play a key role in Information Security working with IT, Infrastructure, DevOps, and Development Teams. The right individual for this role will be experienced with Vulnerability Management, Security Monitoring, and Incident Response. If you thrive by working in a fast paced start-up environment and working with securing web applications and platforms, consider this opportunity as the next level in your professional development.

PRIMARY RESPONSIBILITIES:

  • Work with Engineering Teams to implement secure practices and processes
  • Support vulnerability scanning and security monitoring of cloud platforms and services
  • Work with Information Security and Technical Teams to achieve Continuous Monitoring
  • Coordinate and lead 3rd party penetration test program
  • Identify vendor vulnerabilities and risk mitigation/remediation
  • Work with Technical Teams on patching strategy and implementation
  • Standardize reporting of vulnerabilities and patching SLAs
  • Assist in expanding Incident Response program, processes, training, and testing
  • Act as escalation point for security incidents and violations
  • Work with technical teams to Investigate and monitor security escalations
  • Document and train technical teams on incident response playbooks and procedures
  • Assist in preparing incident reports and root cause analyses
  • Assist with SOC2 and internal audits

Qualifications

REQUIREMENTS/SKILLS:

Bachelor’s degree required

5-7 years of work experience, preferably in a technology-based company (SaaS experience a plus)

Experience working with multiple cross functional teams; IT, Infrastructure, DevOps, and Development

Experience leading or working directly within a vulnerability management program

Experience with network/system vulnerability scanning tools such as Tenable, Qualys, or Nexpose

Experience leveraging CVE, CVSS, and CWE category systems to prioritize and rank vulnerabilities

Working knowledge of various threat intelligence feeds and sources

Familiarity with MITRE ATT&CK framework and scanning for TTPs

Ability to provide mitigation and remediation strategies for vulnerabilities and software weaknesses

Experience with IaaS and cloud infrastructures such as AWS, Azure, and GCP

Experience with incident response procedures (evidence preservation, chain of custody)

Experience analyzing security events or incidents and determining root cause through use of logs & tools

Strong communication and writing skills

Ability to collaborate with peers, managers, and clients

Awareness and pride in 100% client satisfaction

Remote or Boston-area based - No sponsorship or relocation available at this time

Additional Information

Benefits & Perks – The Highlights:

All around awesome culture where together we strive to:

  • Pursue excellence every day
  • Create customer value
  • Compete to win (and lose!) as a team

As part of our culture of transparency and commitment to employee engagement, we have several programs and resources such as:

  • Regular virtual company meetings
  • Coffee chats
  • Table for 4 Executive conversation
  • Spirit Week
  • Pulsing tools for continuous conversations to drive performance and career growth
  • Strengths based tools designed to help employees engage with peers and managers, supported through a program called StandOut
  • Access to top notch learning courses for all employees through LinkedIn Learning
  • As well as constant re-evaluation of what our employees need to be successful at work!

Our more standard benefits include:

  • Flexible Paid Time Off program – most employees average around 3 weeks per year
  • 14 paid holidays including Independence Week, Juneteenth and World Mental Health Day
  • 3 comprehensive health plans to fit your unique needs; plans have up to 100% company-paid premium coverage for employee Medical, Dental and Vision
  • Access to Premera’s Healthcare Services including an Employee Assistance Program (EAP), 24-hour Nurse Hotline, Telehealth (Doctor on Demand), Talkspace, and other virtual care options
  • Flexible Spending Account (FSA) options for pre-tax employee allocations towards: Medical, Dependent Care, Parking, and Transit
  • Company Paid Short Term Disability, Long Term Disability, and Life Insurance
  • Comprehensive Paid Parental / Adoption Leave program
  • 401k program with fully vested, immediate company match\
  • Payscale Cares Hours:
    • We believe in giving back to our communities and we want you to have the time you need to do this.
    • You are now able to take half a day each quarter (typically around 4 hours) to give back!
    • 16 hours will be given per year to use in approximate increments of 4hrs per quarter
    • You can use this time to volunteer by yourself or work with your team to plan a team event where you can give back together.
  • Payscale Learning Hours:
    • Research from Josh Bersin shows that employees have less than 1% of their time to focus on learning.
    • We want to give you more time to focus on building new skills, growing your career and developing yourself.
    • You can use this time to utilize LinkedIn Learning, learn from a peer, teach a topic to someone else, etc.
    • We encourage you to take half a day each quarter (typically around 4 hours) to do this.
    • 16 hours will be given per year to use in approximate increments of 4hrs per quarter

Equal Opportunity Employer:We embrace equal employment opportunity.

PayScale is committed to a policy of equal employment opportunity for all applicants and employees. It is our policy that employees will not be subjected to unlawful discrimination on the basis of race, color, religion, sex, age, national origin or ancestry, physical or mental disability, veteran or military status, marital status, sexual orientation, political ideology and any other basis protected by federal, state, or local laws. This policy applies to all terms and conditions of employment, including but not limited to: recruitment, hiring, transfers, promotions, training, discipline, termination, compensation and benefits, performance appraisals, education, and social and recreational programs.

  • ID: #22650293
  • State: Tennessee Nashville 37201 Nashville USA
  • City: Nashville
  • Salary: USD TBD TBD
  • Job type: Full-time
  • Showed: 2021-11-12
  • Deadline: 2022-01-09
  • Category: Et cetera