The Role
We are currently seeking a Senior Security Operations Analyst to join our Information Security & Risk team. The successful candidate will have the opportunity to help take Addepar’s Security and Risk Program to the next level. In this role, this person will work as part of the Security Operations function to investigate security alerts, develop new monitoring strategies, and work with the wider business to increase the overall security posture of the organisation.
We are looking for someone with prior SOC experience who is a self-starter, takes ownership of their work, and is a believer in collaborative teamwork! This role is responsible for continuing to advance the buildout of Addepar’s SOC and incident response functions, interfacing closely with our MDR provider, maintaining and improving our SIEM platform, and acting as incident commander for security-related incidents.
What You’ll Do
* Respond to security alerts and run threat hunting exercises.
* Help develop security alerts with our existing toolset and develop security-centric IR processes and runbooks.
* Take part in Addepar’s security on-call rotation, act as incident commander during Security Incidents, and lead regular incident postmortem exercises.
* Lead triage work during major incidents and validate incident occurrences to identify Security-related risks.
* Conduct post-incident reviews and analysis of alerts and monitoring to identify areas for improvement and implement necessary changes.
* Identify recurring issues and patterns to proactively prevent future problems and enhance system security.
Who You Are
* 4+ years of security incident response and investigation experience.
* Bachelor’s degree or higher. Computer Science or Engineering related education preferred.
* Experience with investigating using a wide variety of detective technologies such as SIEM, SOAR, packet capture analysis, host forensics and memory analysis tools.
* Proficient in one or more programming languages, including at least one scripting language.
* Ability to build strong relationships and work collaboratively with internal and external partners.
* Excellent verbal and written communication and organisational skills, along with the ability to deliver to time-sensitive guidelines.
* Certifications in Incident Response, Forensics, and Cloud Security are a major plus.
* Curious, always learning and deeply interested in cybersecurity.
* Self-starter with proactive problem solving skills
#J-18808-Ljbffr