Security Operations Analyst

Summary

Join Hashgraph as a SecOps Analyst and play a crucial role in protecting our information assets and infrastructure. You will be part of a team of security professionals supporting the Security Operations Center (SOC), monitoring, detecting, and remediating security threats and vulnerabilities. This role involves incident response coordination, collaboration with stakeholders, implementation of security technologies, and ensuring compliance. You will conduct security audits, risk assessments, and develop mitigation strategies. The ideal candidate possesses strong analytical, problem-solving, and communication skills, along with experience in cybersecurity and incident response. This position offers the opportunity to work in a fast-growing software company within the exciting Web3 space.

Requirements

• A minimum of 2 years of experience in cybersecurity or SOC
• Proven experience in incident response, including developing and executing incident response plans, conducting investigations, and coordinating with internal and external stakeholders
• Familiarity with cloud security, network security, application security, and endpoint security
• Experience with security tools and platforms, such as SIEM, vulnerability scanners, endpoint protection platforms, and threat intelligence solutions
• Familiarity with regulatory standards and frameworks, such as GDPR, NIST, SOC 2, and ISO 27001
• Experience in conducting security audits, risk assessments, and developing remediation plans
• Excellent analytical, problem-solving, and decision-making skills
• Knowledge of and experience with cloud security, including securing Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS), and Software-as-a-Service (SaaS) environments, as well as familiarity with cloud service providers, such as AWS, Azure, and Google Cloud Platform
• Proven track record of successfully implementing and maintaining security technologies and processes in complex environments
• Strong communication and interpersonal skills, with the ability to effectively communicate complex security concepts to both technical and non-technical stakeholders
• Demonstrated leadership and team management abilities, including mentoring and coaching team members
• A strong commitment to staying current with industry trends, emerging threats, and best cybersecurity practices

Responsibilities

• Monitor for and respond to potential incidents
• Operate the organization's incident response efforts, including developing, maintaining, and executing incident response plans
• Assist our Threat Detect team to build more advanced/robust detections
• Assist in tuning and enhancing existing detections
• Evaluate and implement security technologies and tools to enhance the organization's security posture
• Collaborate with stakeholders to address security concerns and ensure compliance
• Conduct regular security audits and risk assessments to identify potential vulnerabilities and develop mitigation strategies
• Develop and maintain relationships with external security partners
• Stay current with the latest security trends, threat intelligence, and best practices
• Provide regular reports and updates on the organization's security status to management and other relevant stakeholders

Preferred Qualifications

• Understanding of common programming languages and scripting languages, such as Python, PowerShell, or Bash
• Experience with containerization and orchestration technologies, such as Docker and Kubernetes, and their associated security best practices
• Knowledge about Blockchain / Crypto / Web3