Advise tuning of SIEM correlation rules and use cases to identify security incidents and anomalies.
Currently possess and maintain a DoD 8570 IAT II Certification.
Monitor SIEM alerts, triage, and respond to security incidents in a timely manner, escalating as necessary to the appropriate team(s) for further investigation and remediation.
Perform Third Party/Supply Chain Risk Management reviews, to include security research and audit report analysis.
Document procedures and playbooks for incident response and security processes to aid in maintaining compliance certifications and smooth security operations.
Perform internal security control audits and recurring reviews to validate adherence to established procedures. Recommend updates to procedures as business needs evolve.
Collaborate with cross-functional teams, including Product engineering, People Operations, and IT Operations, to ensure effective integration and operation of security controls.
Stay current of emerging threats, vulnerabilities, and industry trends in cybersecurity, and recommend proactive measures to enhance our security posture.

Requirements

5+ years of experience in cybersecurity engineering or compliance, with strong preference towards candidates who have worked with NIST 800-171, CMMC, NIST 800-172, or NIST 800-53.
Excellent analytical and problem-solving skills, with the ability to troubleshoot complex security incidents and recommend effective countermeasures.
Demonstrated experience documenting security procedures and playbooks, such as for incident response.
Strong proficiency in platforms including Google Workspace, Google Security Operations (aka Google Chronicle), MacOS, Github, Notion, and Slack.
Excellent communication and interpersonal skills, with the ability to collaborate effectively with team members and stakeholders in a remote work environment.
Relevant certifications such as CISSP, CCSP, EC-CSA, or GIAC Certified Detection Analyst are highly desirable.
Hold a security clearance / Eligible to apply for a security clearance

Benefits

Medical/Dental/Vision
Premiums are 100% Company Paid
Health Reimbursement Account
Life Insurance
Disability Insurance
401k Retirement Plan
Company Stock Options
Home Office Budget
Unlimited paid time off, with a mandatory 10 days off on top of 11 federal government holidays, week of Thanksgiving, last two weeks of December (including New Year’s Day)
Paid Parental Leave
Reimbursement for approved trainings/subscriptions
Conferences (travel, lodging, and fees)

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills

cybersecurity engineeringcomplianceincident responsesecurity auditsrisk managementsecurity procedures documentationtroubleshootingsecurity controlscorrelation rulesvulnerability assessment

Soft skills

analytical skillsproblem-solving skillscommunication skillsinterpersonal skillscollaborationadaptabilityattention to detailcritical thinkingteamworkremote work proficiency

Certifications

DoD 8570 IAT II CertificationCISSPCCSPEC-CSAGIAC Certified Detection Analyst