IT Security - Sr. Analyst
Indexed description
Essential Functions
May perform any or all of the following duties:
- Design, deploy, and manage security solutions (firewalls, Cloudflare WAF/bot mitigation, SIEM, EDR/AV, IDS/IPS, DLP, vulnerability-management platforms).
- Harden Linux (Ubuntu), Windows, network, and cloud services in alignment with CIS, NIST, and vendor best practices.
- Integrate security tooling into cloud (AWS/Azure/GCP) and on-prem environments, ensuring continuous logging and monitoring.
- Develop scripts to automate security tasks, orchestration workflows, and reporting.
- Build automated detection and response playbooks within SOAR/SIEM or equivalent platforms.
- Maintain high-fidelity alerts, dashboards, and security metrics in SIEM and related logging platforms.
- Monitor Cloudflare traffic for DDoS, bot, and application-layer attacks, tuning rules and rate-limiting policies as needed.
- Gather and disseminate threat-intelligence indicators to stakeholders.
- Serve as a key member of the Cybersecurity Incident Response Team (CIRT/IRT), leading forensic investigations, root-cause analysis, containment, and recovery.
- Optimize SIEM use-cases and maintain runbooks for both automated and manual response procedures.
- Participate in a rotating on-call schedule for after-hours security events.
- Conduct secure source-code reviews and perform SAST, DAST, and software-composition analysis for new and existing applications.
- Integrate security checks into CI/CD pipelines; enforce secure configuration in infrastructure-as-code and deployment workflows.
- Provide secure-coding guidance to development and digital-integration teams.
- Perform risk assessments on business applications, cloud resources, and data-center systems, document findings and track remediation.
- Engineer and document controls that satisfy PCI-DSS, SOX, NIST, GDPR, and related requirements.
- Create and maintain key cybersecurity metrics and compliance dashboards.
- Contribute to security-architecture decisions for network, endpoint, and cloud solutions.
- Evaluate emerging security technologies and recommend adoption or configuration changes based on threat landscape and business needs.
- Act as a subject-matter expert (SME) for security best practices across infrastructure, DevOps, and application teams.
- Partner with stakeholders to design secure solutions and support vulnerability remediation initiatives.
- Maintain current knowledge of evolving threats, tools, and mitigation strategies.
- Produce executive-level security reports and assist with other cybersecurity tasks as assigned.
- Bachelor’s degree in Computer Science, Information Security, Engineering, or related field (or equivalent experience).
- 5+ years of hands-on experience in cybersecurity engineering or infrastructure security roles.
- Preferred certifications: CISSP, OSCP, GIAC (GSEC, GCIA, GCIH), or equivalent.
- Deep technical knowledge of:
- Network protocols, firewalls, proxies, IDS/IPS
- Cloud platforms (e.g., AWS, Azure, GCP) and securing cloud-native services
- Endpoint protection and EDR tools
- Security monitoring and SIEM solutions (e.g., Elastic, Splunk, Sentinel)
- Vulnerability scanning tools (e.g., Tenable, Burp Suite)
- Identity and access management (IAM), MFA, and SSO
- Strong scripting or automation skills (e.g., Python, PowerShell, Bash).
- Knowledge of secure software development and DevSecOps practices is a plus.
- Experience engineering controls for compliance with security standards and frameworks (PCI, NIST, GDPR, CCPA).
- Excellent communication skills and ability to translate technical risk into business impact.
- Restaurant Support Center that is a fast-paced setting with high volume of activity and a deadline-driven environment.
- Sitting for extended periods of time, using telephone, typing and/or operating a computer and/or mouse.
- Travel as needed: approximately five (5)%.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search