Senior Information Security Analyst

We are looking for a Senior Information Security Analyst to work with a team of exceptional assurance engineers supporting our US Federal compliance program. The role involves monitoring security tools and systems, deploying new security solutions, and responding to prospect and customer questions related to security compliance.

Requirements

• Minimum 5 years of experience with RMF, FedRAMP, NIST 800-53, and DISA SRG.
• Automation knowledge (Python, bash scripting) and experience hardening Linux, Windows, or Mac systems is a plus.
• Background working with data logging applications (e.g., Splunk)
• Knowledge of vulnerability scanning tools (e.g., Prisma, Trivy, & Tenable)
• A defensive security mindset.
• Experience documenting processes and standard operating procedures.
• Strong organizational skills, attention to detail, and ability to multitask.
• Ability to understand the intent of cloud assurance requirements to provide effective and meaningful analysis.
• Experience successfully working with cross-functional teams to identify requirements, draft control narratives, identify limitations, and engineer new solutions for cloud security controls challenges.
• Be able to work effectively with other members of our organization to drive results, including remote teams.
• Excellent verbal and written communication skills.
• Prior experience working in a Security and Compliance group at a SaaS/Cloud company or with security, governance, risk, and compliance preferred.
• GSEC, GCIH, CEH, GCIA, or CISSP certifications are a plus.

Benefits

• Competitive salary and benefits package
• Opportunities for professional growth and development
• Flexible work arrangements
• Collaborative and dynamic work environment