Cyber Security Analyst

Appnovation helps brands thrive through innovative, people-inspired experiences and solutions. By embracing the powerful combination of technology and agility, we seamlessly integrate strategy, experience, design, development and analytics.

We create standout digital experiences by collaborating with brands to understand the individual challenges and goals for every initiative. Focusing on our clients’ customers, we effectively combine empathy, evidence and real-world insight so that solutions are derived from truth and meaning. Appnovation is an award-winning team dedicated to inspiring possibility.

We are looking for a Cyber Security Analyst to join our growing Corporate Information Security team. This is a full-time position within the organization and the successful candidate will be a member of the Information Security team. This role will support the team in improving organization security posture and assist in ISO 27001 / HITRUST CSF certification related programs. The ideal candidate will have 3-5 years of experience in managing various security tools and processes. 

• SIEM deployment 
• Incident Detection and Response 
• SOC Management
• Security processes and procedures
• Vulnerability Management
• EndPoint Protection
• DLP deployment
• Network / Cloud Security (Firewall, IPS) 

SIEM

• Experience in deployments for multiple environments for mid to large organizations. - Experience in managing, designing, configuring SIEM environments.
• Experience with integration of different cloud and on-premise log sources.
• Experience in managing incidents through the Incident Response Process.
• Knowledge and thorough understanding of MITRE ATT&CK & Cyber Kill Chain Model
• Experience guiding a team of SOC Analysts to monitor, detect, analyze, remediate, and report on cyber events & incidents impacting the IT infrastructure & applications. 

Vulnerability Management 

• Provide expertise and guidance in managing and configuring the VM tools.
• Experience in analyzing vulnerability scan results, identifying vulnerability patterns.
• Good understanding of OWASP Top 10.
• Support the team in analyzing application security testing reports and working with the various business units to drive remediation efforts. 

Others 

• Experience working with Network and Application Firewalls, DLP, EPP, PAM, Email Security.
• In-depth knowledge of popular operating systems (Windows, Linux, Mac OS), cloud platforms (AWS, GCP, Azure) and networking protocols (TLS, DHCP, DNS, etc.).
• Expertise in scripting using Regex, Bash or Python.
• Knowledge of common security frameworks such as ISO27001, HITRUST CSF.
• Good to have: Security Certifications (Security+, CISSP, CEH, SANS, vendor specific certifications). 

YOU WILL HAVE AN OPPORTUNITY TO:

• Maintain / Manage SIEM Infrastructure, Vulnerability Management Infrastructure and other related security tools (DLP, PAM, EPP, Email Security etc).
• Monitoring & Investigation of alerts, conduct triage and escalate by following the Incident Response Plan / Process.
• Perform threat hunting to detect and isolate threats and provide recommendations to technical teams.
• Work on on-boarding infrastructures and applications to ensure a successful transition to SOC for security monitoring and alerting.
• Develop and maintain use cases; design secure solutions to meet business challenges and requirements.
• Ensure VM processes are followed for all assets & applications. 
• Collaborate with different stakeholders to remediate identified vulnerabilities and ensure that defined SLAs are being met.
• Ensure adequate protection & monitoring for all external facing assets & applications.
• Create dashboards and generate reports for all security tools. 
• Maintain, review & update SOP/ Process documents for all security tools.
• Respond to security inquiries from employees, auditors, clients and other stakeholders.
• Maintain up-to-date understanding of security threats, countermeasures, security tools, and Cloud Security and SaaS technologies. 

#LI-AH1

Thank you for your interest in a career with Appnovation Technologies! Please note that only those selected for an interview will be contacted.   Appnovation is an equal opportunity employer and committed to diversity and inclusion. We encourage applications from all qualified candidates and accommodations are available upon request throughout the recruitment process.