Security Analyst
Qualified.com$130,000 - $145,000/year
Full Time
Junior (1 to 2 years)
Not SpecifiedCompensation
Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Cybersecurity, TechnologyIndustries
Requirements
- Expertise in building and operating security information/event management systems (SIEM), centralized logging, and enrichment solutions (Endpoint protection/detection, Network telemetry data, ELK, DataDog, SumoLogic, Snowflake, AWS and GCP services, HR systems, codebase infrastructure, build infrastructure)
- Expertise with Linux, Windows, and MacOS security and best practices
- Practical experience working with and knowledge of AWS & GCP security best practices
- Ability to automate workflows via scripting languages: Python, Go, & Shell
- Superb communication skills and capacity; ability to partner effectively with diverse company stakeholders
- Years of practical security experience in DFIR, knowledge of best practices for incident handling, security operations, detecting, and responding to attacks
Responsibilities
- Triage, investigate, and respond to security alerts and incidents from our SIEM and other monitoring tools, leading investigations and performing forensics on IT systems as necessary to rapidly identify and mitigate potential threats
- Execute, develop, and document incident management runbooks and processes
- Prepare incident reports of analysis methodology and results
- Prioritize events using existing tools to correlate data for the purpose of reducing false positives and detecting threats
- Analyze and tune security alerts and interpret events, as well as create new signals based on signatures and behavioral activities
- Assist with implementation of counter-measures or mitigating controls
- Recognize potential, successful, and unsuccessful intrusion attempts and potential compromises through thorough reviews and analyses of relevant event detail and summary information
- Partner with key stakeholders and communicate effectively to continuously improve the feedback loop of preparation, identification, analysis, containment, and post mortem activities
- Prepare executive summaries and conduct briefings on significant investigations
- Ability to prioritize competing tasks and responsibilities
- Depending on skillset and interest: Contribute to Threat Modeling, Threat Hunting, and Threat Assessment efforts; Partner with engineering teams to promote secure coding practices; Pentesting and Red Team Operations
Skills
SIEM
Incident Response
DFIR
Forensics
Triage
Security Operations
Incident Management
Alert Management
Detection Engineering
JumpCloud
Cloud-based identity and access management services
About JumpCloud
JumpCloud offers cloud-based directory services that help businesses manage user identities and access to IT resources like applications, networks, and devices from a single platform. It serves a variety of clients, including small and medium-sized businesses and larger enterprises, particularly in sectors that require strong IT security. The company operates on a subscription model with different service tiers, allowing clients to choose features that fit their needs and budgets. JumpCloud's goal is to simplify identity management and access control, enhancing security and operational efficiency for its users.
Louisville, ColoradoHeadquarters
2012Year Founded
$371.3MTotal Funding
SERIES_FCompany Stage
Enterprise Software, CybersecurityIndustries
501-1,000Employees
Benefits
Health Insurance
Dental Insurance
Vision Insurance
Life Insurance
Disability Insurance
Health Savings Account/Flexible Spending Account
Unlimited Paid Time Off
401(k) Company Match
Remote Work Options
Risks
Increased competition from established IAM providers like Okta and Microsoft.
Rapid technological advancements may strain JumpCloud's resources to keep up.
Economic uncertainties could impact spending on IAM solutions, affecting revenue.
Differentiation
JumpCloud offers a unified platform for identity and device management.
The company provides Zero Trust security models for remote and hybrid work environments.
JumpCloud's SaaS Management capabilities address the rising importance of cloud-based applications.
Upsides
The global IAM market is projected to grow at a CAGR of 13.1% until 2030.
Increased demand for Zero Trust models aligns with JumpCloud's offerings.
Growing need for SME cybersecurity solutions supports JumpCloud's market presence.
Related Jobs
RemoteRemoteSenior Manager, Incident Reponse
Vultr$150,000 - $225,000/year
- Full Time
- Senior (5 to 8 years)
RemoteCyber Threat Analyst
ArcadiaSalary not specified
- Full Time
- Junior (1 to 2 years), Mid-level (3 to 4 years)
RemoteAnalyst I, Falcon Complete (Hybrid, St. Louis)
CrowdstrikeSalary not specified
- Full Time
- Junior (1 to 2 years)
RemoteCyber Analyst, Digital Forensics Incident Response
At-BaySalary not specified
- Full Time
- Mid-level (3 to 4 years)
RemoteSecurity Operations Lead
EarnestSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteStaff Data Analyst, SOC/Support
Huntress$155,000 - $170,000/year
- Full Time
- Expert & Leadership (9+ years)
RemoteCyber Security Architecture
GE HealthcareSalary not specified
- Full Time
- Senior (5 to 8 years)