Exelixisposted 4 days ago
$105,500 - $150,500/Yr
Full-time - Mid Level
Alameda, CA

About the position

Join our highly skilled and rapidly growing cybersecurity team as a Cybersecurity Operations Analyst. The ideal candidate will be responsible for monitoring, detecting, and responding to cybersecurity events, ensuring the overall security of our organization's information systems. This role requires a proactive approach to identifying and mitigating potential threats, as well as a strong ability to collaborate with various departments, including the IT Helpdesk. As a Cybersecurity Operations Analyst, you will monitor network traffic and system logs for security incidents and anomalies, investigate and respond to security events in real-time, and implement and manage security tools such as SIEM, XDR/EDR, and Email Security. You will also conduct threat analysis and risk assessments to identify vulnerabilities, develop and maintain incident response plans, and collaborate with IT and other departments to ensure security best practices are followed. This position is ideal for someone who is detail-oriented, analytical, and passionate about cybersecurity. If you thrive in a fast-paced environment and are eager to make a significant impact on our organization's security, we encourage you to apply.

Responsibilities

  • Oversee the end-to-end cybersecurity threat response, from initial detection and analysis to containment, eradication, and recovery.
  • Ensure that all cybersecurity events and incidents are thoroughly investigated and documented, and that lessons learned are incorporated into future threat management strategies.
  • Monitor and analyze security events from various sources, including SIEM systems, intrusion detection/prevention systems, XDR, email security and firewall logs.
  • Investigate and respond to security incidents, including malware infections, phishing emails, unauthorized access, and data breaches.
  • Collaborate with the IT Helpdesk to address security-related issues and provide guidance on secure configurations and practices.
  • Provide expertise and support to the IT Helpdesk in identifying and mitigating security threats.
  • Facilitate communication and coordination between the cybersecurity team and the IT Helpdesk to enhance overall security operations.
  • Stay up to date with the latest cybersecurity threats, trends, and technologies to continuously improve the organization's security posture.
  • Regularly review and fine-tune the configurations of current security tools such as SIEM, EDR/XDR, and IDS/IPS to ensure they are effectively detecting and alerting on potential threats.
  • Co-create and maintain playbooks to standardize and automate threat response procedures.
  • Stay current with the latest threat landscape and emerging trends in cybersecurity to proactively identify and mitigate potential security risks.
  • Contribute to the overall information security strategy.
  • Assist in the development and delivery of training and awareness programs aimed at educating employees on cybersecurity best practices.

Requirements

  • Bachelor’s degree in related discipline and 5+ years of related experience; or Equivalent combination of education and experience.
  • CISSP, CISM, CEH, OSCP, GIAC or similar cybersecurity certification.
  • Experience in a SOC environment, with background in threat detection, incident response, and threat hunting.
  • Experience with threat intelligence platforms and integrating threat intelligence feeds to security tools to enrich threat detection.
  • Experience in proactive threat hunting to identify and neutralize emerging threats.
  • Experience with conducting and analyzing phishing simulations to enhance organizational security awareness and resilience.
  • Experience and successfully executing programs that meet the objectives of excellence in a dynamic business environment.
  • Experience or working knowledge of cloud, network, and application security.

Nice-to-haves

  • Experience in Biotech/Pharma is a plus.
  • Familiarity with SOC tools and technologies such as SIEM (e.g., Splunk, QRadar), EDR (e.g., CrowdStrike, Cortex), and IDS/IPS (e.g., Snort, Suricata).
  • Basic scripting skills (e.g., Python, PowerShell) to automate simple tasks and enhance detection capabilities.
  • Basic understanding of machine learning and behavioral analytics to identify anomalies and potential threats.
  • Ability to develop and refine basic correlation rules within SIEM to detect attack patterns, using frameworks like MITRE ATT&CK.
  • Strong analytical skills to correlate events and make informed decisions based on data.
  • Ability to analyze user behaviors and network traffic to detect suspicious activities.
  • Ability to establish and maintain relationships with security vendors.
  • Understanding of security frameworks and standards such as NIST, ISO 27001, and PCI-DSS.
  • Knowledge of DNS, network protocols, firewalls, VPNs, web application firewalls, email security, IPS/IDS, SIEM, DLP, cryptography, application whitelisting, and endpoint protection.
  • Good communication skills to collaborate with cross-functional teams and present findings clearly.
  • Resourceful and proactive in finding solutions to challenges.
  • A mindset focused on continuous learning and improvement.
  • Ability to work well in a team environment and create timelines, with good time management skills.
  • Good judgment and problem-solving skills, including negotiation and conflict resolution.

Benefits

  • 401k plan with generous company contributions.
  • Group medical, dental and vision coverage.
  • Life and disability insurance.
  • Flexible spending accounts.
  • Discretionary annual bonus program.
  • Opportunity to purchase company stock.
  • Long-term incentives.
  • 15 accrued vacation days in the first year.
  • 17 paid holidays including a company-wide winter shutdown in December.
  • Up to 10 sick days throughout the calendar year.
Hard Skills
MITRE ATT&CK Framework
1
Make
1
Python
1
Snort
1
Splunk
1
0FuL6Sbd ECmt46N2gIJ
0
1z0VW 1Xpbjtv6J
0
2QI6k9h4m Gb8ZmOk7cE
0
8QErAFB AsfNYUmK8
0
8Qqnvb90 8RUrQVL91B
0
AYIQRGy 4bwu3Jkh2e
0
FX6Cq Ohdw3PHSVF
0
LbHe217Wpf3 Lji284Qm6B
0
RULASXWi4njd n9BNEWdD3 prGhFf0QPJ1
0
SZDcJIq pHFUA
0
UvXQlpSfx Iu7j6lWmC
0
XGj25W1n AZGsIdFOh
0
ZzDnAvyjI 7ztQw68M5GW
0
bOmdM43c7jZgD8SKB OmGfxgdBvKEUQH
0
dFeyqjtbPD ti48jyqSbC
0
dMLn0waFco5 4Us573Bit
0
fODsIQvAX9c dlkLrF4HAmWBc
0
jeSpMbkxqNmO PayuMcN4
0
jkL0mJS OpnNyTs94X0
0
koNZEeWi3 ub3aZRVPT
0
l9KpAncT40s XtKPghfiaCl9
0
mBAr7 WHduC4F
0
nNtUyxrR3 1NgoMsfESc0
0
oynfs57rK UiVG
0
sfd5RF oUGVFCszT
0
tXZRmc 6VLRvdKQz
0
usA2Ra 3ZMkzb5TU
0
w7Tm5xnGh w9fV1CPaQGU
0
zRdnJNXkD Ul89aCmswZA
0
Soft Skills
0zPUS DKgoF9JH672
0
9oSckbu DirEI8mSX
0
CEBuMVzj VbfvgnMO
0
Yv1Ja6XwZhM 2l0HV93
0
Unlock 33 more keywords by signing up for Teal+Sign Up
Build your resume with AI

A Smarter and Faster Way to Build Your Resume

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service