Cyber Security Analyst

Summary

Join Pismo's Blue Team and play a critical role in protecting our systems and data. You will be responsible for incident response, developing and maintaining security playbooks, conducting threat intelligence analysis, implementing edge controls, securing APIs, and managing WAF. This role requires proven experience in security incident handling, AWS security, and working in mission-critical environments. You will leverage your expertise in the financial sector to ensure security practices align with industry regulations. The ideal candidate will also possess experience with WAF, security automation, and advanced threat detection. Pismo offers a range of benefits including remote work, flexible hours, and various insurance and wellness programs.

Requirements

• English Intermediate-to-Advanced (B2)
• Incident Response: Proven experience in handling security incidents, from detection to resolution, ensuring minimal disruption, between Level 2 or 3
• AWS Security: Expertise in utilizing and managing AWS services to secure cloud infrastructure and applications
• Mission-Critical Environments: Experience working in environments where high availability, reliability, and security are crucial
• Criticality Assessment: Ability to assess and define the criticality of incidents and vulnerabilities for effective prioritization of actions

Responsibilities

• Incident Response: Efficiently and effectively respond to Blue Team security incidents, ensuring quick containment, investigation, and resolution
• Security Playbooks: Develop, maintain, and regularly update security playbooks for various incident scenarios, ensuring structured responses
• Web Application Protection: Implement and manage Web Application Firewalls (WAF) to safeguard web applications from security threats
• Cloud Security: Utilize and manage AWS services to enhance security in cloud environments, ensuring cyber security, data protection and system integrity
• Security Automation: Automate security processes and workflows through scripting to improve efficiency and reduce manual intervention
• Threat Intelligence: Conduct thorough threat intelligence analysis to identify, assess, and mitigate risks from emerging threats
• End-to-End Security Processes: Lead security processes from incident identification through to resolution and post-incident analysis
• Incident and Vulnerability Prioritization: Define the criticality of incidents and vulnerabilities to prioritize response actions based on severity
• Financial Market Knowledge: Leverage expertise in the financial sector, ensuring security practices align with sector-specific regulations and compliance requirements
• Mission-Critical Systems: Ensure high availability and security of systems operating in mission-critical environments, managing security at scale

Preferred Qualifications

• WAF Knowledge: Experience in implementing and managing Web Application Firewalls (WAF) to protect web applications
• Security Automation: Experience automating security processes with scripting languages such as Python, PowerShell, or Bash
• Advanced Threat Detection: Familiarity with advanced threat detection tools and techniques
• Digital Certificate Management
• Financial Market Experience: Familiarity with industry-specific regulations and security best practices within the financial market
• Threat Intelligence: In-depth knowledge of threat intelligence analysis and using intelligence feeds to identify and mitigate risks
• CompTIA Security+
• Certified Information Systems Security Professional (CISSP)
• CySA+ (Certified Cybersecurity Analyst)
• ISC2 and other relevant cybersecurity certifications

Benefits

• Remote work
• Flexible hours
• Meal & Food vouchers
• Remote work financial support
• Life Insurance
• Medical and Dental
• Assistance Employee child care benefit: daycare
• Private Pension (2x1)
• Vidalink partnership
• Support for studying languages
• Incentive for AWS and GCP certifications
• Sesc Partnership
• Performance Incentive Plan