Cyber Security Analyst - San Diego, United States - SOLV Energy

    SOLV Energy
    SOLV Energy San Diego, United States

    3 weeks ago

    Default job background
    Technology / Internet
    Description

    Purpose of Position: The core responsibility is to perform triage, analysis and investigations in response to security alerts, which includes analysis, digital forensics and data analytics. This position will also be responsible for building capabilities that close information gaps, strengthen our defenses and defend resources from emerging threats

    This role is hybrid and can be located in Bend, OR or San Diego.

    Re location is not available.

    Position Responsibilities and Duties:

    • § Evaluate and respond to recommendations or alerts from internal security tools and Managed Security Services Provider
    • Review vulnerability assessment results and threat intelligence regularly
    • Act as part of the SecOps team and ensure compliance with all security requirements
    • Proactively identify gaps or conflicts in existing processes and help develop solutions
    • Assist with other security aspects, including vendor security assessments and audit needs
    • Assist with the education and training of process/control owners to better understand technology control frameworks and their responsibilities
    • Generate regular reports and technical documentation for the SecOps team
    • Support cross company incidents and crisis
    • Review detections for tuning opportunities
    • Develop and maintain security incident playbooks

    Minimum Skills or Experience Requirements:

    • Bachelor's degree in Information Technology, Information Security, Cybersecurity or related field and/or equivalent experience
    • 3+ years of progressively more responsibility in directly related work
    • Two or more years of experience in utilizing enterprise security solutions including but not limited to SIEM, security detection and response tools, and endpoint security products
    • Excellent knowledge of Microsoft M365 Defender including incident response, threat hunting and vulnerability management
    • Experience in developing and updating Incident Response plans and runbooks
    • Familiarity with common network, system and web application attacks and mitigations
    • Knowledge of Information Security standards and access controls such as ISO27001/2, PCI DSS, and other international standards
    • Ability to work effectively in a team environment and in cross-functional teams
    • Ability to effectively document
    • Excellent verbal and written communication skills
    • Energetic, enthusiastic, charismatic
    • Entrepreneurial spirit