Information Security Analyst

Summary

Join G-P's diverse, remote-first team as an Information Security Analyst - SecOps and play a crucial role in securing our global infrastructure. You will investigate security alerts, conduct incident response, develop detection logic, and provide security recommendations. This position requires 5+ years of information security experience and a Bachelor's degree or equivalent. We offer competitive compensation, comprehensive benefits, and a supportive work environment. Contribute to a mission that impacts lives worldwide and help shape the future of work. G-P is committed to building a diverse and inclusive culture.

Requirements

• Possess a Bachelor’s Degree in Information Technology, Computer Science, Business, or Engineering or equivalent experience
• Have 5+ years of information security experience, preferably in the technology industry
• Have hands-on security operations experience including interdisciplinary experience with two or more of the following: Cyber Threat Analysis, Incident Response, Application Security, Operating Systems Security, Networking, Programming languages
• Possess technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies and motives
• Be familiar with computer network exploitation and network attack methodologies
• Be available for shift work and on-call response capacity, including 24 x 7 on-call support responsibilities

Responsibilities

• Investigate alerts, triage, deep dive, and come up with proper action items and remediation plans
• Conduct investigation, containment, and other response activities with business stakeholders and groups
• Compose incident analysis and finding reports for management, including gap identification and recommendations for improvement
• Recommend or develop new detection logic and tune existing sensors/security controls
• Participate in security incident response through in-depth, technical (log, forensic, malware, packet) analysis
• Provide oversight of security alert detection and analysis capabilities across multiple technologies to ensure that security incidents are identified in a timely manner
• Escalate and support potential security incidents in line with appropriate processes
• Support communications of potential security incidents via multiple channels
• Participate in the response of potential security incidents by identifying and communicating relevant supplementary information
• Identify and analyze new and emerging threats to determine impacts to G-P and provide guidelines and recommendations pertaining to opportunities to strengthen G-P security posture
• Assist with information security due diligence requests as needed
• Provide security recommendations to other team members, management, and business stakeholders for solutions, enhancements to existing systems, and new security tools to help mitigate security vulnerabilities and automate repeatable tasks

Preferred Qualifications

• Possess at least one of the following certifications: CISSP, GCIA, GCIH, CHFI, GCFA, CASP+
• Have experience with Log analysis and security content development in SIEM solutions (Splunk, IBM QRadar, LogRhythm, etc.)
• Have experience with Endpoint detection and response tools, e.g. CrowdStrike, SentinelOne, Microsoft Defender, etc
• Have experience with Incident Response playbook development, managing security incident analysis and remediation
• Have experience with Network-based preventative and detective technologies (Secure Web Gateway, Private Access, IDS/IPS, firewalls, proxy servers. Log analysis and security content development in SIEM solutions (Google Security Operations/Chronicle preferred, Splunk, IBM QRadar, LogRhythm, etc.)
• Have experience with Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices
• Have a strong understanding of security as it relates to DevOps (specifically in CI/CD)
• Have experience in SaaS, multi-tenant customer solutions

Benefits

• World class benefits, including health, vision and dental
• A matching 401K
• Competitive compensation
• Paid-time-off (PTO)
• Generous, equal-gender family leave
• Sabbatical after each 5 years of employment
• Frequent team events and a very strong focus on culture spanning a global team
• Flexible time off
• Flexible spending accounts
• Medical Insurance
• Dental insurance
• Vision insurance
• Sabbatical after 5 years of service
• Annual bonus dependent on various factors, including and without limitation, individual and company performance in addition to base salary