Senior Incident Response Analyst
Remote - United States
Acquia, Inc.
Acquia provides the leading cloud platform for building, delivering, and optimizing digital experiences.Acquia is the open digital experience company. We provide the world's most ambitious brands with products built around Drupal to allow them to embrace innovation and create customer moments that matter. At Acquia, we believe in the power of community and collaboration — giving our customers and partners the freedom to build tomorrow on their terms.
Headquartered in the U.S., we have been named one of North America’s fastest growing software companies by Deloitte and Inc. Magazine, rated a leader by the analyst community, and named one of the Best Places to Work by the Boston Business Journal. We are Acquia. We are building for the future and we want you to be a part of it!
Acquia’s Security Operations team is seeking a Senior Security Analyst. In this role, you will be tasked with performing log analysis, forensic investigations, event monitoring, threat hunting, and other security operations activities.
You’re a self starter who is passionate about cyber security. You stay ahead of the latest developments in the security industry. You trawl the internet looking for the latest exploits and threats against cloud-based technologies. You care about protecting the business and our customer’s interests.
Responsibilities include:
- Perform security alert and event monitoring across all levels of the Acquia Platform.
- Security alert ticket triage and investigation, through to ticket closure.
- Complete daily tasks to help ensure Acquia’s sites and infrastructure remain safe and secure.
- Perform daily review of anti-virus alerts across Acquia’s endpoints and internal network.
- Perform log analysis and related digital forensics.
- Perform weekly and monthly audit tasks for Acquia’s security compliance requirements.
- Analyze internal vulnerability reports and perform crucial vulnerability management activities.
- Perform threat analysis of new CVEs, and track packages and software across the Acquia platform.
- Maintain a general knowledge of common security vulnerabilities, attack vectors, methods, and remediation techniques (DDOS, Man in the Middle, Brute Force, SQL Injections, Cross-Site Scripting, Cross-Site Forgery Request).
- Continue to develop your technical knowledge and skills to stay ahead of the threats.
Qualifications:
- 2+ years prior experience working as a security analyst or part of a security operations center.
- Experience with continuous monitoring tools, such as SumoLogic, Splunk, ELK, or ArcSight is highly beneficial.
- Understanding of web technologies. ( HTTP, DNS, PKI and Networking ) is crucial.
- Familiarity with one or more of the following beneficial; Linux, Apache, Nginx, Varnish, MySQL, PHP, Drupal and securing cloud based platforms (AWS).
- Good understanding of cloud security architecture and networking principles.
- Security qualifications such as CCNA, CISSP, CEH, OSCP and GCIH are beneficial.
Skills and Abilities:
- Desire to become an authority in the role, demonstrating an ability to learn and a can do demeanor.
- Embrace additional responsibilities and fill in the gaps. Owns projects, accountable for results. Recognizing when it's appropriate to jump in and own it, and also when to provide support and collaboration.
- Adopts a team approach, acknowledging and appreciating efforts, contributions, and compromises. Recognizes the common purpose of the team and respects team decisions.
- Ability to prioritize and track alerts and thoroughly communicate across a globally distributed team.
- Must be diligent, reliable, and able to work independently and as a member of a team.
- Strong problem-solving abilities, initiative, and comfortable performing under pressure.
- Great interpersonal and communication skills.
Acquia is an equal opportunity (EEO) employer. We hire without regard to age, color, disability, gender (including gender identity), marital status, national origin, race, religion, sex, sexual orientation, veteran status, or any other status protected by applicable law.
Tags: ArcSight AWS CEH CISSP Cloud Compliance DDoS DNS ELK Exploits Forensics GCIH Incident response Linux Log analysis Monitoring MySQL Nginx OSCP PHP PKI Scripting Splunk SQL Vulnerabilities Vulnerability management XSS
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs