Security Analyst II

Employment Type: Remote

Location Type: Remote - Available in the state listed on this job.

Note: Employment with BambooHR is contingent on passing both a background and credit check.

Position Overview

The Security Analyst II is responsible for maintaining and improving the security posture of the organization by protecting system boundaries, keeping computer systems and network devices hardened against attacks, and securing highly sensitive data. This role involves analyzing security measures, identifying potential vulnerabilities, and implementing solutions to mitigate risks. The Security Analyst II will work closely with IT teams, management, and other stakeholders to ensure the organization's security policies and procedures are effectively implemented and maintained.

Responsibilities

• Monitor and analyze security alerts from various sources, including intrusion detection systems, firewalls, and other security tools.
• Conduct vulnerability assessments and penetration testing to identify potential security weaknesses.
• Investigate security incidents and breaches, perform root cause analysis, and implement corrective actions.
• Develop and maintain security policies, procedures, and guidelines in accordance with industry best practices and regulatory requirements.
• Collaborate with IT and development teams to ensure secure design and implementation of systems and applications.
• Assist in the development and delivery of security awareness training for employees.
• Stay up-to-date with the latest security trends, threats, and technologies to proactively address potential risks.
• Participate in security audits and assessments, both internal and external.
• Provide guidance and support to junior security analysts and other IT staff.
• Prepare and present reports on security incidents, vulnerabilities, and overall security posture to management.
• Leverage AI and machine learning technologies to enhance threat detection, automate routine security tasks, and improve incident response times.

Requirements

• Education: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent work experience.
• Experience: 3-5 years of experience in information security or a related field.
• Technical Skills:
  • Strong understanding of security principles, techniques, and technologies.
  • Experience with security tools such as SIEM, IDS/IPS, firewalls, and antivirus software.
  • Familiarity with regulatory requirements and industry standards such as ISO 27001, NIST, GDPR, and PCI-DSS.
• Soft Skills:
  • Excellent problem-solving skills and attention to detail.
  • Strong communication skills, both written and verbal.
• Preferred Certifications: CISSP, CISM, GSEC, CEH, or CompTIA Security+.

Working Conditions

• This position may require occasional on-call work or after-hours support.
• The role may involve working in a high-pressure environment to address security incidents and threats.

What We'll Love About You

• You can patiently help others who are having difficult technical problems that may take a significant amount of time.
• You love technology and see it as a hobby on top of a career.

What You'll Love About Us

• Great Company Culture: Recognized by multiple organizations like Inc. and Salt Lake Tribune.
• Comprehensive Benefits: Health, life, and disability insurance.
• Generous Leave Policies: 4 weeks of vacation, 12 company holidays, parental leave, and volunteer time off.
• Retirement Savings: 401k plans with up to 6% company match.
• Paid-Paid Vacation: $2000 bonus.
• Mental Health Support: EAP through Headspace.
• Additional Benefits: [Link to benefits information]

About Us

At BambooHR, we're building something different: we're building a people intelligence platform that transforms HR and sets people free to do great work! We're a proven market leader driving innovation while building lasting success through thoughtful, sustainable growth.