Security Analyst Job at Pi-Square Technologies LLC, Rancho Cucamonga, CA

NUI2cVJqTWdCQnZqNkxpZnlNaTV4b005K2c9PQ==
  • Pi-Square Technologies LLC
  • Rancho Cucamonga, CA

Job Description

MAJOR DUTIES AND RESPONSIBILITIES

1. Monitor firewalls, network and host intrusion prevention/detection systems, virtual private networks, threat intelligence platforms, endpoint protection, security training platforms, email security, forensic tools, public/private/hybrid cloud infrastructure, identity and access management systems, and physical security systems.

2. Monitor security operations center tools and dashboards.

3. Perform threat hunting activities using security operations center tools across the environment using internal or external threat intelligence sources.

4. Architect cybersecurity solutions for on premises and cloud computing environments.

5. Participate in and/or leads cybersecurity engineering projects.

6. Assist with risk analysis activities.

7. Assist with designing and implementing controls to mitigate risk.

8. Identify attack surface reduction opportunities through vulnerability data analysis and/or identify opportunities for process improvements and automation.

ADDENDUM

Security Operations

1. Monitor security systems and provide early response to potential threats.

2. Manage security incident response; serve as escalation point for conducting investigations into security incidents involving advanced and sophisticated threat actors and TTPs.

3. Design, test, and implement response playbooks, orchestration workflows and automations.

4. Research, recommend and test new security technologies and platforms

5. Analyze technologies and establishes highly effective processes and protocols to ensure comprehensive protection exists to prevent unauthorized entry into company networks and systems.

6. Support automation and orchestration to maximize team talent and reduce routine tasks.

7. Drive creation of countermeasures to protect company personnel and information assets.

8. Document, prioritize, and formally report incidents, root cause analyses, and after-action reviews.

9. Coordinate between internal and external resources protecting enterprise systems.

10. Periodically attend and participate in change management policy discussions and meetings.

11. Understand breach and attack simulation solutions to validate and improve the effectiveness of preventative controls and incident response.

12. Motivate employees to maximize rigorous system security controls, focusing on reducing complexity and maturing security practices.

13. Work as a team to consistently learn and share advanced skills and foster team excellence.

Vulnerability

1. Work analytically to solve both tactical and strategic problems within the vulnerability management program.

2. Plan, develop, configure, and execute vulnerability scans on a wide variety of corporate and business information systems both on prem and cloud based.

3. Establish rapport with other IS teams to mature the vulnerability management program.

4. Respond to tickets and incidents in a proactive manner.

5. Collect and aggregates information from a wide variety of sources and formats for relevance to our environment; monitors and provides metrics on threat level of vulnerabilities.

6. Contribute and participates in team activities and planning regarding improving team skills, awareness, communication, reputation, and quality of work.

7. Collaborate and communicates with Compliance, Internal Audit, the Business teams, and others to identify, analyze, and communicate risk; and provides support around vulnerability management within their business requirements.

8. Identify, develop, and implement mechanisms to detect vulnerabilities and how they may lead to corporate incidents to enhance compliance with and support of security standards and procedures.

9. Respond to tickets and incidents in a proactive manner.

10. Coordinate with the Incident Response team to remediate security incidents as needed.

11. Understand compliance requirements that may impact security and effectively collaborates with business areas and project teams to develop security solutions that address these requirements.

12. Work with information systems owners and administrators to understand their security needs and assists with implementing practices and procedures consistent with security policies.

13. Build and maintains supplier partnerships to further the company mission and goals.

14. Maintain current knowledge of industry trends and standards.

15. Create and maintains environmental documentation, tasks, change records, etc.

16. In a lead capacity, advocate internally and externally for compliance on security measures to protect corporate applications and environments.

Applications Security

1. Perform Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST).

2. Perform application security testing on various types of applications such as Web, API's, Thick Client's, Mobile, etc., inclusive of the supporting infrastructure components.

3. Leverage application artifacts such as business requirements, user stories, design documents, architecture documents to understand the testing scope and create targeted security user stories or misuse cases.

4. Manage and execute security assessments for multiple projects simultaneously and ensure project timelines are met.

5. Analyze source code to mitigate identified weaknesses and vulnerabilities within the system.

6. Ensure containerization security best practices are maintained and vulnerabilities are addressed.

Experience Requirements Eight (8) or more years IT experience with at least five (5) years in a cybersecurity role with a focus on protect, detect, and respond in addition to the following:

- Mitre ATT&CK and Cyber Kill Chain frameworks

- Establishing or participating in Blue Team exercises

- In-depth knowledge of computer operating systems such as Windows, MacOS and Linux.

- System development lifecycle.

- Deploying, managing, and using Security Operations tools such as SIEM, EPM, DLP, Vulnerability Management, Firewalls, WAFs, Antivirus Solutions, Email Protection Solutions, Incident Response and Threat hunting and management.

- Scripting experience such as PowerShell, JavaScript, or Python.

- Experience working with Identity and Access Control Management Tools.

Pi-square technologies is a Michigan (USA) Headquartered Automotive Embedded Engineering Services company, Synergy Partner for major OEMs and Tier 1s and their implementation partners in Automotive Embedded Product Development, Projects, Requirements Analysis, Software Design, Software Implementation, Efficient Build, Release Process, and turnkey software V & V Services. We have more than 20+ years of industry expertise with specialization in the latest cutting-edge automotive technologies such as Infotainment, connected vehicles, Cyber security, OTA, and Advanced Safety/ Body electronics.

Job Tags

Full time, Contract work, Internship, Remote job,

Similar Jobs

NOLA PROTECTION

Security Screener at New Orleans Convention Center Job at NOLA PROTECTION

 ...Experience not required, butpreferred Benefits: Flexible Schedule / Overtime Pay Days, Nights, Weekends ALLavailable Medical, dental,vision, and supplemental insurance for most full-time positions(Must meet eligibility requirements) Paid Training Ongoing... 

Nirvana Engineer Search

Civil Or Environmental Project Manager Job at Nirvana Engineer Search

We are currently hiring a Project Manager to join our South Burlington Team. Our progressive firm is looking to add a licensed civil or...  ...civil projects with a strong emphasis on municipal and industrial water and wastewater. -Develop business and build client... 

SAP

SAP S/4 HANA Cloud Platform Associate Consultant (T2) Job at SAP

 ...We help the world run better At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared...  ...in Plan areas(Sizing, Scoping, Client/LandscapeStrategy, HANA High Availability/HANA Disaster Recovery Strategyetc.) of Implementation... 

Humana

Telephonic UM Administration Coordinator Job at Humana

 ...+ Primarily receive calls from Providers, Hospitals, Skilled Nursing Facilities and other vendors+ Support the UM Nurses to process...  ...1 or more years of Healthcare experience+ 1 or more years of telephonic Customer Service experience+ Working knowledge of Microsoft Word... 

AbaCares Services

Caregiver $15 Job at AbaCares Services

 ...direct care or related field* Strong communication and interpersonal skillsBenefits:* Competitive compensation of $14 - $15.00 per hour* Opportunities for growth and professional development* Health insurance optionsAbout the Company:AbaCares Services...