Security Operations Analyst [Remote-US]

The Role

We are seeking a Security Operations Analyst to join our Information Security team. The Security Operations Analyst will play a key role in monitoring, detecting, and responding to security incidents across the organization. This role requires a keen eye for detail, a proactive mindset, and the ability to work effectively under pressure.

As a Security Operations Analyst, you will report directly to the Manager of Information Security & Privacy. You will be responsible for the day-to-day monitoring of security alerts, managing security incidents, and conducting investigations to protect our company’s assets and data. Our environment includes a mix of on-premises systems and cloud-based services, requiring a versatile and adaptive approach to security operations.

We’re looking for a candidate who is passionate about security, thrives in a fast-paced environment, and enjoys working as part of a dynamic team. The ideal individual should be adept at identifying potential threats, responding swiftly to incidents, and continuously improving security operations processes.

Your day-to-day

• Security Monitoring:
  • Monitor security alerts and events using our SIEM (Security Information and Event Management) platform and other security tools.
  • Analyze and investigate security incidents to determine their impact and recommend appropriate remediation actions.
  • Perform regular audits of security logs to identify potential security threats and vulnerabilities.
• Incident Response:
  • Respond to security incidents, including containment, eradication, and recovery efforts.
  • Conduct forensic analysis to understand the root cause of security incidents and provide detailed incident reports.
  • Collaborate with other teams to resolve incidents and implement measures to prevent future occurrences.
  • Work with threat intelligence team members to integrate threat data into monitoring systems, ensuring alerts are relevant.
• Vulnerability Management:
  • Assist in vulnerability assessments and the implementation of remediation strategies to address identified weaknesses.
  • Track and report on the status of vulnerabilities and the effectiveness of remediation efforts.
• Process Improvement:
  • Contribute to the continuous improvement of security monitoring and incident response processes.
  • Develop and maintain security operations playbooks, procedures, custom detection rules, alert configurations and documentation based on the organization’s specific threat landscape and risk profile.
  • Stay current with the latest security threats, trends, and technologies to enhance the company’s security posture.
• Collaboration and Communication:
  • Work closely with other security team members, IT, and development teams to ensure security is integrated into all aspects of operations.
  • Communicate security incidents and their impact to management and other stakeholders in a clear and concise manner.

About you

• Experience:
  • Bachelor’s degree or equivalent experience
  • 3-5 years of experience in security operations, incident response, or a related role.
  • Experience with security monitoring tools, SIEM platforms, and incident response procedures.
• Technical Skills:
  • Strong understanding of security principles, threat landscapes, and common attack vectors.
  • Proficiency in using security tools such as IDS/IPS, firewalls, endpoint protection, and forensic analysis tools.
  • Familiarity with network protocols, system administration, and cloud environments (e.g., AWS, GCP).
• Soft Skills:
  • Strong analytical and problem-solving skills, with the ability to think critically under pressure.
  • Excellent communication skills, with the ability to clearly convey complex security concepts to both technical and non-technical audiences.
  • Ability to work independently and as part of a team, with a proactive and adaptable approach to security operations.

Bonus points

• Certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH), Certified Cyber Threat Hunter (CCTH), Offensive Security Certified Professional (OSCP), ITIL Foundation, AWS Security Specialty , or other relevant security certifications.
• Experience with cloud security, particularly in monitoring and responding to incidents in cloud environments.
• Familiarity with compliance requirements such as GDPR, CCPA, or PCI-DSS and their impact on security operations.
• Experience with Automation: Experience in automating security monitoring and incident response tasks using scripting or SOAR (Security Orchestration, Automation, and Response) platforms.

Salary: $136,000 to $172,000*

*Please note that the final salary offered will be determined based on the selected candidate's skills, and experience, as well as the internal salary structure at Quanata. Our aim is to offer a competitive and equitable compensation package that reflects the candidate's expertise and contributions to our organization.

Additional Details:

• Benefits: We provide a wide variety of health, wellness and other benefits.These include medical, dental, vision, life insurance and supplemental income plans for you and your dependents, a Headspace app subscription, monthly wellness allowance and a 401(k) Plan with a company match.
• Work from Home Equipment: Given our virtual environment— in order to set you up for success at home, a one-time payment of $2K will be provided to cover the purchase of in-home office equipment and furniture at your discretion. Also, our teams work with MacBook Pros, which we will deliver to you fully provisioned prior to your first day.
• Paid Time Off: All employees accrue four weeks of PTO in their first year of employment. New parents receive twelve weeks of fully paid parental leave which may be taken within one year after the birth and/or adoption of a child. The twelve weeks is applicable to both birthing and non-birthing parent.
• Personal and Professional Development: We’re committed to investing in and helping our people grow personally and professionally. All employees receive up to $5000 each year for professional learning, continuing education and career development. All team members also receive Udemy subscriptions and access to multiple different coaching opportunities through BetterUp.
• Location: We are a remote-first company for most positions so you may work from anywhere you like in the U.S, excluding U.S. territories. Occasional travel may be required for team meetings or company gatherings. Employees based in the San Francisco Bay Area or in Providence, Rhode Island may commute to one of our local offices as desired.
• Hours: We maintain core meeting hours from 9AM - 3PM Pacific time for collaborating with team members across all time zones.