Senior Cybersecurity Analyst, Blue Team

Summary

Join Pismo's Blue Team and play a critical role in protecting our financial market systems. You will be responsible for incident response, developing and maintaining security playbooks, conducting threat intelligence analysis, implementing edge controls, securing APIs, and managing WAF. This role requires proven experience in incident response, WAF management, AWS security, and threat intelligence. Familiarity with financial market regulations and mission-critical environments is essential. Desirable qualifications include security automation experience and relevant certifications. Pismo offers a competitive benefits package including remote work, flexible hours, and various insurance and wellness programs.

Requirements

• English Advanced
• Proven experience in handling security incidents, from detection to resolution, ensuring minimal disruption
• Strong experience in implementing and managing Web Application Firewalls (WAF) to protect web applications
• Expertise in utilizing and managing AWS services to secure cloud infrastructure and applications
• In-depth knowledge of threat intelligence analysis and using intelligence feeds to identify and mitigate risks
• Experience working in environments where high availability, reliability, and security are crucial
• Familiarity with industry-specific regulations and security best practices within the financial market
• Ability to assess and define the criticality of incidents and vulnerabilities for effective prioritization of actions

Responsibilities

• Efficiently and effectively respond to security incidents, ensuring quick containment, investigation, and resolution
• Develop, maintain, and regularly update security playbooks for various incident scenarios, ensuring structured responses
• Implement and manage Web Application Firewalls (WAF) to safeguard web applications from security threats
• Utilize and manage AWS services to enhance security in cloud environments, ensuring data protection and system integrity
• Automate security processes and workflows through scripting to improve efficiency and reduce manual intervention
• Conduct thorough threat intelligence analysis to identify, assess, and mitigate risks from emerging threats
• Lead security processes from incident identification through to resolution and post-incident analysis
• Define the criticality of incidents and vulnerabilities to prioritize response actions based on severity
• Leverage expertise in the financial sector, ensuring security practices align with sector-specific regulations and compliance requirements
• Ensure high availability and security of systems operating in mission-critical environments, managing security at scale

Preferred Qualifications

• Experience automating security processes with scripting languages such as Python, PowerShell, or Bash
• Familiarity with advanced threat detection tools and techniques
• CompTIA Security+
• Certified Information Systems Security Professional (CISSP)
• CySA+ (Certified Cybersecurity Analyst)
• ISC2 and other relevant cybersecurity certifications

Benefits

• Remote work
• Flexible hours
• Meal & Food vouchers
• Remote work financial support
• Life Insurance
• Medical and Dental
• Assistance Employee child care benefit: daycare
• Private Pension (2x1)
• Vidalink partnership
• Support for studying languages
• Incentive for AWS and GCP certifications
• Sesc Partnership
• Performance Incentive Plan