Address
SalaryRemote: This is a remote position. We are a global team that leverages the latest technology to communicate with our colleagues across the globe. When it’s safe to do so, there may be times in which this role would be required to travel to a local office for in-person collaborations with your team.Being a Security Operations Analyst at iManage means…The iManage Cloud Security Operations team is expanding and is actively searching for technical professionals to come join our dedicated, energetic and fast-growing global team. If you are currently in another area of IT, and are considering a move into Information Security, this position is the gateway into that world. Prior experience is less important to us than the capability, willingness and motivation to learn across a wide variety of technical areas.The position is primarily responsible for the day-to-day monitoring of, and initial security event detection analysis for, all production systems, network infrastructure as well as all related information security systems, data and event logs using our SIEM and related tools. This position will, when needed, triage and escalate higher priority events to other analysts & engineers and provide the needed technical information for further analysis. Additionally, the SOC Analyst assists in identifying, analyzing and influencing the management of security risks across the organization based on observed events, logs and collected threat intelligence.iM responsible for…
- Monitor and respond to security & system events from a variety of systems and sources in a timely manner and with the highest level of courtesy, professionalism and respect.
- Handle day to day monitoring of, and remediation for, all security related infrastructure, both private and public cloud, using tooling such as Zabbix, Nagios or Prometheus.
- Prepare and document standard operating procedures then, using automation tooling such as Ansible, Terraform, PowerShell or Python, create managed automation to handle the day-to-day work in Azure and/or Kubernetes.
- Interface with other teams throughout the organization with the objective to provide high quality and low friction, Security Operations services.
- Develop technical solutions and tools to help detect and mitigate security vulnerabilities as well as automate repeatable tasks.
- Act as part of the incident response team providing troubleshooting, analysis and forensics when needed.
- 3+ years of general, yet practical, IT or similar technology experience. System, network or similar experience preferred; others will be considered.
- 3+ years of Information Security connected experience, either directly or indirectly, along with the capability, willingness and motivation to absorb new technical information at an accelerated pace.
- Exposure to automation and scripting tools such as Ansible, Terraform, Python or PowerShell.
- Be equipped with a basic understanding of endpoint protection and Anti-Virus, Windows Defender preferred but others would be a suitable replacement.
- Contain a ground-level understanding of Azure or similar cloud service such as Amazon Web Services. Certification(s) would stand out.
- Understand, or at least possess the ability to articulate, the concept of a SIEM along with the ability, and desire, to develop a deeper understanding quite quickly.
- Be highly motivated to consume, process and convert newly obtained knowledge & experience into their day-to-day work.
- Have the nearly innate desire to figure things out along with the dedication to maintaining a lifelong commitment to continuous learning.
- Possess excellent verbal and written communication skills in both in-person and electronic forms.
- Be comfortable with operating under minimal supervision after being given the direction and tools, in a fast-paced environment.
- Command the ability to think in a non-linear, yet almost rigorously analytical, type of problem-solving mindset.
- Understand, and be able to work with, global schedules that often require nontraditional, and non-US, working hours.
- Hold the capability to follow prescribed processes and procedures.
- Configuration and/or administration of a SEIM is a plus, Splunk preferred.
- Experience in firewall administration, Palo Alto & Panorama preferred, including functions such as firewall ACL’s, DNS block lists and VPN.
- Cursory understanding of PKI infrastructure including SSL certificates issued by third party Certificate Authorities and/or the Microsoft Windows Certificate Authority.
- Scripting and automation experience using Python, PowerShell or similar.
- One or more of the following certifications: CompTIA Security+ or GIAC Security Essentials (GSEC), CompTIA Network+ or CCNP/CCNA or similar.
- Join a supportive, experienced team with an inclusive, encouraging, and vibrant culture.
- Have flexible work hours that allow me to balance my ‘me time’ with my work commitments.
- Collaborate in a modern open-plan workspace, focus on impactful work, solving complex, real challenges utilizing the latest technologies and protocols.
- Own my career path with our internal development framework. Ask us more about this!
- Learn new skills and earn certifications with access to unlimited courses in LinkedIn Learning.
- Join an innovative, industry-leading SaaS company that is continuing to grow & scale!
- Creating an inclusive environment where I can help shape the culture not just by fitting in, but by adding to it.
- Providing a market competitive salary that is applied through a consistent process, equitable for all our employees, and regularly reviewed based on industry data.
- Rewarding me with an annual performance-based bonus.
- Offering comprehensive Private Health Plan, and Superannuation.
- Granting enhanced leave for expecting parents; 20 weeks 100% paid for primary leave, and 10 weeks 100% paid for secondary leave.
- Providing me with a flexible time off policy to take the time off that I need. Be it for vacation, volunteering, celebrating holidays, spending time with family, or simply taking time to recharge and reset.
- Caring for my mental health and well-being with multiple company wellness days and free access to the Healthy Minds app for mindfulness, meditation and more.
#LI-RemotePowered by JazzHR
