PDQ

Security Analyst

PDQ

full-time

Posted on:

Origin:  • 🇺🇸 United States • Utah

Visit company website
AI Apply
Apply

Job Level

Mid-LevelSenior

Tech Stack

AzureCloudCyber SecurityElixirGoogle Cloud PlatformJavaScriptKubernetesLinuxPythonRubySaltStackSDLC

About the role

  • Before you apply, please note This is an hybrid role and open to candidates in Salt Lake City, UT or within commuting distance of our South Salt Lake City headquarters. As a Security Analyst at PDQ, you will play a key role in protecting our organization’s systems, networks, and data from security threats. You will monitor and investigate security incidents, identify vulnerabilities, and collaborate with IT and engineering teams to strengthen our defenses. This role requires a balance of technical expertise, analytical thinking, and proactive problem-solving. In this role, you will collaborate with PDQ’s Operational Security team to: Ensure proper implementation of security practices, such as vulnerability management Support achievement of meaningful industry certifications (e.g. ISO 27001, SOC2) Manage prioritization of security related activities Monitor threat landscape (e.g. CISA feeds, industry publications, news, etc.) and engage with Product, engineering, and infrastructure Leaders to ensure adequate controls are in place Collaborate with infrastructure teams to ensure security controls are implemented in production environments Automate security checks and scans as well as help prioritize and remediate findings. Assist with in response and recovery related to security incidents or breaches Monitor security alerts and logs to detect potential threats, suspicious activity, or breaches. Perform incident triage, investigation, and response, escalating when appropriate. Conduct vulnerability assessments, risk analysis, and remediation follow-up. Assist with security audits, compliance requirements, and reporting. Support the development and implementation of security policies, procedures, and controls. Research emerging threats, attack vectors, and best practices to improve organizational security posture. Provide guidance and training to staff on cybersecurity awareness and safe practices. Engage in threat hunting activities both in PDQ products and within PDQ networks. Monitor and stop fraud and abuse of our products.

Requirements

  • 3–5 years of experience in cybersecurity Familiarity with SIEM tools, intrusion detection/prevention systems, and vulnerability management platforms. Knowledge of networking fundamentals, operating systems (Windows/Linux), and cloud environments. Understanding of common attack techniques (e.g., phishing, malware, privilege escalation, lateral movement). Strong analytical, problem-solving, and communication skills. Ability to work in a fast-paced environment with attention to detail. Solid understanding of web and mobile application security across the SDLC Strong experience with secure cloud architecture and design Experience with a variety of security testing tools and best practices Strong experience with threat modeling and analysis Experience implementing and securing cloud storage and cloud infrastructure Understanding of common threats and attacks, as well as security protocols and standards Work collaboratively across multiple departments Handle sensitive and confidential information Apply strong analytical and problem-solving skills Exercise curiosity and seek opportunities for continued learning Think creatively and outside the box Stay up to date on latest security trends and technologies Communicate concepts to technical and non-technical audiences alike Tools we use: Applications written in Elixir, C#, Ruby, JavaScript, Python Infrastructure implemented in GCP/Kubernetes SIEM is Azure Sentinel Security tooling like Microsoft Sentinel, Defender for Endpoint, and Wiz