Staff Security Analyst

Logo of Ro

Ro

๐Ÿ’ต $178k-$217k
๐Ÿ“Remote - United States

Job highlights

Summary

Join Ro, a leading direct-to-patient healthcare company, as a Staff Security Analyst. You will be a key member of the highest escalation unit for technical cybersecurity analysis and response, leading incident response efforts and developing innovative solutions to combat sophisticated adversaries. This role requires deep technical expertise in adversary tactics, techniques, and procedures, as well as strong analytical and communication skills. You will collaborate with various teams to address security challenges and contribute to the overall security strategy. Ro offers a competitive salary and benefits package, including comprehensive health insurance, flexible PTO, and opportunities for professional development. While based anywhere in the US, collaboration at HQ is expected for those in the tri-state area.

Requirements

  • Bachelorโ€™s degree in a technical field, or equivalent work experience
  • 7 years of experience in a security operations and incident response role
  • GCIH certified; experienced in incident management, crisis management, and/or breach response with in-depth knowledge of monitoring and response procedures
  • Expert in using Splunk SPL as well as SQL queries to analyze and synthesize a variety of data including security event logs and raw data to establish ground truth
  • Expertise in securing and conducting security investigations in AWS, Azure and GCP environments
  • Excellent analytical process, hypothesis generation, and reporting skills
  • Advanced proficiency in network/host based intrusion analysis, malware analysis, cloud native response, and/or forensics (disk/memory)
  • Advanced understanding of tactics, techniques and procedures following industry recognized frameworks such as MITRE ATT&CK
  • Solid understanding of network protocols and architecture
  • Basic scripting/programming (Python, PowerShell, Bash, etc.) skills
  • Experience designing remediation and recovery plans
  • Experience with automating security plans and playbooks via an orchestration platform
  • Strong oral and written organizational and interpersonal skills
  • Broad understanding of the risks facing the security industry, including current and emerging threats
  • Strong experience leveraging threat intelligence from platforms such as Crowdstrike Falcon or Recorded Future, to inform security strategy

Responsibilities

  • Serve in the teamโ€™s highest escalation unit for technical cybersecurity analysis and response, leveraging superior investigative skills and knowledge of adversary tactics, techniques, and procedures
  • Command cyber incident response efforts, quickly correlate multiple data sources, and apply various analytical techniques to determine the best remediation strategy tracking incidents to completion
  • Impact program strategy across multiple competency domains including external threat, insider risk, fraud management, and physical security
  • Provide subject matter expertise during meetings while speaking about complex topics to both technical and non-technical colleagues, partners, and business leaders
  • Leverage best-of-breed technologies to perform investigations in coordination with both our managed security providers and internal SOC personnel
  • Develop new hypotheses and advanced searches within a rich dataset to discover adversary tactics, techniques and procedures in near-real-time and retrospectively as identified by threat intelligence
  • Create, maintain, and execute incident response playbooks to drive manual and automated analysis for the entire SOC within a SIEM and SOAR platform
  • Work with multiple stakeholder teams such as IT, Threat Intelligence, Product Security, Infrastructure and patient care teams to solve security challenges at scale while balancing usability, stability, scalability and performance

Preferred Qualifications

Certified GCIA, GCFA, GNFA, GCFR, GREM, GIME or equivalents

Benefits

  • Full medical, dental, and vision insurance + OneMedical membership
  • Healthcare and Dependent Care FSA
  • 401(k) with company match
  • Flexible PTO
  • Wellbeing + Learning & Growth reimbursements
  • Paid parental leave + Fertility benefits
  • Pet insurance
  • Student loan refinancing
  • Virtual resources for mindfulness, counseling, and fitness

Share this job:

Disclaimer: Please check that the job is real before you apply. Applying might take you to another website that we don't own. Please be aware that any actions taken during the application process are solely your responsibility, and we bear no responsibility for any outcomes.

Similar Remote Jobs

Please let Ro know you found this job on JobsCollider. Thanks! ๐Ÿ™