Exelixisposted 4 days ago
$105,500 - $150,500/Yr
Full-time - Mid Level
Alameda, CA

About the position

Join our highly skilled and rapidly growing cybersecurity team as a Cybersecurity Operations Analyst. The ideal candidate will be responsible for monitoring, detecting, and responding to cybersecurity events, ensuring the overall security of our organization's information systems. This role requires a proactive approach to identifying and mitigating potential threats, as well as a strong ability to collaborate with various departments, including the IT Helpdesk. As a Cybersecurity Operations Analyst, you will monitor network traffic and system logs for security incidents and anomalies, investigate and respond to security events in real-time, and implement and manage security tools such as SIEM, XDR/EDR, and Email Security. You will also conduct threat analysis and risk assessments to identify vulnerabilities, develop and maintain incident response plans, and collaborate with IT and other departments to ensure security best practices are followed. This position is ideal for someone who is detail-oriented, analytical, and passionate about cybersecurity. If you thrive in a fast-paced environment and are eager to make a significant impact on our organization's security, we encourage you to apply.

Responsibilities

  • Oversee the end-to-end cybersecurity threat response, from initial detection and analysis to containment, eradication, and recovery.
  • Ensure that all cybersecurity events and incidents are thoroughly investigated and documented, and that lessons learned are incorporated into future threat management strategies.
  • Monitor and analyze security events from various sources, including SIEM systems, intrusion detection/prevention systems, XDR, email security and firewall logs.
  • Investigate and respond to security incidents, including malware infections, phishing emails, unauthorized access, and data breaches.
  • Collaborate with the IT Helpdesk to address security-related issues and provide guidance on secure configurations and practices.
  • Provide expertise and support to the IT Helpdesk in identifying and mitigating security threats.
  • Facilitate communication and coordination between the cybersecurity team and the IT Helpdesk to enhance overall security operations.
  • Stay up to date with the latest cybersecurity threats, trends, and technologies to continuously improve the organization's security posture.
  • Regularly review and fine-tune the configurations of current security tools such as SIEM, EDR/XDR, and IDS/IPS to ensure they are effectively detecting and alerting on potential threats.
  • Co-create and maintain playbooks to standardize and automate threat response procedures.
  • Stay current with the latest threat landscape and emerging trends in cybersecurity to proactively identify and mitigate potential security risks.
  • Contribute to the overall information security strategy.
  • Assist in the development and delivery of training and awareness programs aimed at educating employees on cybersecurity best practices.

Requirements

  • Bachelor’s degree in related discipline and 5+ years of related experience; or Equivalent combination of education and experience.
  • CISSP, CISM, CEH, OSCP, GIAC or similar cybersecurity certification.
  • Experience in a SOC environment, with background in threat detection, incident response, and threat hunting.
  • Experience with threat intelligence platforms and integrating threat intelligence feeds to security tools to enrich threat detection.
  • Experience in proactive threat hunting to identify and neutralize emerging threats.
  • Experience with conducting and analyzing phishing simulations to enhance organizational security awareness and resilience.
  • Experience and successfully executing programs that meet the objectives of excellence in a dynamic business environment.
  • Experience or working knowledge of cloud, network, and application security.

Nice-to-haves

  • Experience in Biotech/Pharma is a plus.
  • Familiarity with SOC tools and technologies such as SIEM (e.g., Splunk, QRadar), EDR (e.g., CrowdStrike, Cortex), and IDS/IPS (e.g., Snort, Suricata).
  • Basic scripting skills (e.g., Python, PowerShell) to automate simple tasks and enhance detection capabilities.
  • Basic understanding of machine learning and behavioral analytics to identify anomalies and potential threats.
  • Ability to develop and refine basic correlation rules within SIEM to detect attack patterns, using frameworks like MITRE ATT&CK.
  • Strong analytical skills to correlate events and make informed decisions based on data.
  • Ability to analyze user behaviors and network traffic to detect suspicious activities.
  • Ability to establish and maintain relationships with security vendors.
  • Understanding of security frameworks and standards such as NIST, ISO 27001, and PCI-DSS.
  • Knowledge of DNS, network protocols, firewalls, VPNs, web application firewalls, email security, IPS/IDS, SIEM, DLP, cryptography, application whitelisting, and endpoint protection.
  • Good communication skills to collaborate with cross-functional teams and present findings clearly.
  • Resourceful and proactive in finding solutions to challenges.
  • A mindset focused on continuous learning and improvement.
  • Ability to work well in a team environment and create timelines, with good time management skills.
  • Good judgment and problem-solving skills, including negotiation and conflict resolution.

Benefits

  • 401k plan with generous company contributions.
  • Group medical, dental and vision coverage.
  • Life and disability insurance.
  • Flexible spending accounts.
  • Discretionary annual bonus program.
  • Opportunity to purchase company stock.
  • Long-term incentives.
  • 15 accrued vacation days in the first year.
  • 17 paid holidays including a company-wide winter shutdown in December.
  • Up to 10 sick days throughout the calendar year.
Hard Skills
MITRE ATT&CK Framework
1
Make
1
Python
1
Snort
1
Splunk
1
1BMmVdNy82 GhNXaenmi9
0
7P6eDRtxW Nptg9Z1FD
0
J75kw1pKy hB3ZR6iAvF
0
JCQMe3cAE9j HZFfhx8Tql
0
JriuEAO1 HMxW5vnqBA
0
K8A9rZlmT iW2MwLHydes
0
LEmoH6fSz aRLK
0
MwC1Q0R MZijKEn2C
0
MxS8n HGXzf0a
0
OklHI6TVvrb Xfq4RSvthsyU0
0
PZs8d2f0Ttr NakD8l1bW3xm
0
QGPCI4K Fy374i92V6q
0
W261st4m JZzs5fhYn
0
WPhs2Dz DBLq2e9sjd
0
WV3urQa58 NUeBj9hbk4f
0
bTSIL n7PsLwheY
0
eo4WhTQU7 teKLf4NIP
0
etWCKj OpHuZf9dm
0
fc64tIzeN sz5fJuUvoNq
0
h6LJq4V sorOc
0
jFJlTCX7EGL PFKNt3aHb
0
n84xbs PtFRw9sNC
0
oqptzk eE7KFlUGB
0
qO5N1msj63ED qLC9fmgW
0
sMpKZ TnwmfLUChY
0
wleXUyp0ktZa 7SdgOHR96 8ygHE4lLoRv
0
y6KWE0lPmXf8BgU5x 3N42FJhorVpeQm
0
yI1adtx3G RrUYFQK5CZS
0
zts82cMY DhKdjsLeF9x
0
Soft Skills
1IYFR56 NmWtDJ6EM
0
2SeVp6hJuE8 7QtbZ3C
0
WlC0LYPa K4behn6i
0
YDWFd 9KtgpJQIaLb
0
Unlock 33 more keywords by signing up for Teal+Sign Up
Build your resume with AI

A Smarter and Faster Way to Build Your Resume

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service