Senior Security Operations Analyst

Summary

Join Alma, a mission-driven company simplifying access to mental health care, as a Senior Security Operations Analyst. You will play a crucial role in defending against cybersecurity incidents, analyzing threats, and improving our incident response program. This role requires extensive experience in incident management, security tools, and threat detection. You'll collaborate with various teams, develop strategies, and communicate effectively with both technical and non-technical stakeholders. Alma offers a remote-first work environment and a comprehensive benefits package, including health insurance, retirement plan, stipends, and generous paid time off.

Requirements

• Have 4+ years of experience working in a similar role with web technologies and information security and at least 2 years working in a senior role
• Be self-motivated and capable of driving efforts to completion with minimal oversight while knowing when to ask for guidance and assistance as needed
• Have achieved Certified Information Systems Security Professional (CISSP) certification or other relevant certifications
• Have extensive experience managing incidents from detection to remediation including documenting findings, managing the response team and process, communicating updates, leading remediation efforts, and performing retrospectives for process improvement
• Have experience building and running incident response programs, including planning tabletop exercises, developing breach simulation scenarios, facilitating tabletop sessions with numerous stakeholders, and writing summary reports
• Have experience working with an incident management tool like OneTrust
• Deeply understand AWS security tools and processes in regards to monitoring, logging, and incident management
• Have multiple years of experience monitoring security systems that can scale, with high levels of automation
• Have extensive experience deploying and tuning the Elastic security information and event management (SIEM) platform and Endpoint Detect and Response (EDR) tool or a similar product
• Have knowledge of tactics, techniques, and procedures leveraged by attackers and adversaries (e.g., MITRE ATT&CK)
• Have strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
• Have strong communication skills and can convey complex technical topics to non-technical stakeholders clearly and concisely
• Have experience building short and long-term strategies for incident response and security operations teams

Responsibilities

• Defend against cybersecurity incidents and identify, analyze, communicate and contain incidents as they occur
• Validate and maintain incident response plans and processes to address potential threats
• Conduct network monitoring, intrusion detection analysis, and log-based and endpoint-based threat detection to detect and protect against threats coming from multiple sources
• Deploy and manage cloud-centric detection to detect threats related to cloud environments and services used by the organization
• Work with the security information and event management (SIEM) system to correlate activity across assets (endpoint, network, apps) and environments (on-premises, cloud) and identify patterns of anomalous activity
• Research emerging threats and vulnerabilities to aid in the identification of incidents
• Create runbooks for frequently occurring incidents and alerts to automate or assist with the resolution of those cases
• Provide users with incident response support, including mitigating actions to contain activity and facilitating forensics analysis when necessary

Benefits

• We’re a remote-first company
• Health insurance plans through Aetna (medical and dental) and MetLife (vision), including FSA and HSA plans
• 401K plan (ADP)
• Monthly therapy and wellness stipends
• Monthly co-working space membership stipend
• Monthly work-from-home stipend
• Financial wellness benefits through Northstar
• Pet discount program through United Pet Care
• Financial perks and rewards through BenefitHub
• EAP access through Aetna
• One-time home office stipend to set up your home office
• Comprehensive parental leave plans
• 11 paid holidays, 1 Alma Mental Health Day, and 1 Alma Volunteering Day
• Flexible PTO