Senior Security Operation Analyst

28 Oct 2024

Vacancy expired!

JOB PURPOSE:Provide technical analysis, guidance, mitigation, and remediation of logical security related threats to Acima infrastructure and data security. This Information Technology professional will work with various teams to conduct evidence-based reviews by means of collection and correlation of system logs, events and processes for risks, threats, and indicators of compromise (IOC). Providing detailed analysis and applying defense-in-depth methodology to address risk and logical security threats with the specific goal of protecting sensitive and confidential data of both customers and coworkers. This role will provide Information Security “blue team” threat intelligence, vulnerability remediation and logical security to prevent business interruptions in a fast-paced retail environment.

KEY RESPONSIBILITIES:
  • Work with managed service providers, security tools, log sources and various teams to identify threats to Acima and provide effective mitigations to avoid business interruptions
  • Review and analyze access, network, and system logs and alerts in a hybrid-cloud environment for inappropriate or unauthorized access
  • Support business initiatives by enhancing and supporting information security requirements, standards and principles
  • Conduct regular system tests and ensure continuous monitoring of network, system, and application security
  • Promptly respond to all security incidents and provide thorough post-event analysis utilizing associated runbooks and incident response plans
  • Interact with internal and external auditors as needed to ensure regulatory and policy compliance.
  • Identify and determine root causes of security violations. Verify and document the corrective actions to ensure application, data, and infrastructure security
  • Provide technical guidance and recommendations to co-workers about the risks and control measures associated with new and emerging information system technologies
  • Communicate with key groups (i.e. various lines of business and other technical teams) regarding potential threats, remediation efforts and all logical implementation steps
  • Keep pace with emerging security threats, technologies, and systems
  • Track, analyze and mitigate Advanced Persistent Threats (APT), phishing and social engineering other security related threats.
  • Detect, respond, and mitigate logical and cyber threats on a per event basis
  • Monitor, review, and provide security guidance for Network security tools and associated access mediums such as Network access controllers (NAC), gateway anti-malware and enhanced authentication
  • Create analytical reports for Leadership on complex criminal activity
  • Identity and access management principles
  • Application security and encryption technologies
  • Assist in the preparation and periodic update of information security policies, architectures, standards, and other technical requirements documents needed to enhance security.
  • Knowledgeable on cyber threats relative to the retail and fintech industries
  • Keep up to date on the latest security standards and best practices

JOB REQUIREMENTS:
  • MUST SIT IN DRAPER, UTAH OR PLANO, TX OFFICE
  • Basic functional knowledge of Sarbanes-Oxley (SOX) and Payment Card Industry Data Security Standards (PCI-DSS) in order to monitor and enforce related controls
  • 3 or more years of Security information and event management correlation (SIEM) experience.
  • 3 or more years of information security tools administration or cyber threat research/analysis experience
  • 2 or more years of hands-on Cloud security experience (AWS – Azure) and security related tools.
  • Indepth knowledge of network and web related protocols (TCP/IP, UDP, IPSEC, DNS, HTTP, HTTPS, routing protocols, etc.)
  • Demonstrated by means of experience or technical Certification for security business controls, strategies, methodologies as well as knowledge and experience with all of the following technologies; firewalls; intrusion detection; directory services; web access controls; advanced authentication methods; public key infrastructure (PKI); VPN, TCP/IP; anti malware, single sign on; audit; diagnostics, Log Rhythm, and forensic tools.
  • Experience with change management and related ticketing systems
  • Demonstrated ability to create technical documentation utilizing industry recognized tools.
  • Must be familiar with the current regulatory environment such as Sarbanes-Oxley, GLBA, etc.
  • Must have the ability to effectively communicate to all levels of individuals clearly at their level.

PREFERENCE

:
  • Bachelor’s degree in related field preferred
  • Relevant technical security certifications (example: CISSP, GCIH, Security+, CEH, AWS Security).
  • 5 or more years relevant Information security work experience.
  • Functional knowledge working with some or all of the following:
    • Sentinel One
    • Web Application Firewalls (WAFs)
    • Security Controls for Cloud Environments (Microsoft Azure, Amazon Web Services)
    • Okta Identity Management
    • Rapid 7 IDR/InsightVM, LogRhythm, Splunk or Similar SIEM.
  • Intermediate to Advanced Knowledge of Microsoft PowerShell
  • Familiarity with programming or scripting language
  • Experience in managing web application security
  • Prior Security Operations Center (SOC) or Network Operations Center (NOC) experience
  • Background in Security Incident Response

Benefits & CompensationAcima understands that employment is the sum of many parts. Our compensation is very competitive,

starting at $76,000+ annually based on experience and qualifications. Our total benefits round out what we feel is a complete package. From day one you’ll experience:
  • Company activities (Ping-Pong tournaments, health pushes, etc.)
  • Department snacks and treats
  • Employee referral bonus program
After 60 days you’ll have access to:
  • Medical insurance
  • Dental plans
  • Vision plans
  • Supplemental insurance (long-term/short-term disability, life insurance, etc.)
  • Health Savings Account (HSA) with company match
  • Company paid holidays
  • Paid Time Off (PTO)
After 90 days, you’ll have access to our 401(k) plan

About AcimaAcima Credit (Acima) based in Draper, Utah is a young and dynamic leasing company that provides consumers financing options for life necessities that otherwise would not be available to them. We help with financing options from tires/wheels to furniture and appliances. Acima blends the use of innovative online technology with a fast and easy application process for thousands of retailers nationwide. Customers love us because we make the impossible possible. Retailers love us because we make it easy for them.Acima is growing at a tremendous rate. Recognized as one of the fastest growing companies (by the Mountain West Capital Network and the Utah Business Magazine) we need awesome people to continue to propel that growth. Here you’ll find a place where you can learn, progress and grow professionally. You’ll be challenged to think creatively, work hard and make smart decisions.

  • ID: #21815719
  • State: Utah Draper 84020 Draper USA
  • City: Draper
  • Salary: Depends on Experience
  • Job type: Permanent
  • Showed: 2021-10-28
  • Deadline: 2021-12-25
  • Category: Et cetera