Sr. Information Security Analyst

Full Time
Farmers Branch, TX
Areas of Interest: Incident Response, Systems Security Analysis
report a problem
Overview


Push us. Amaze us. Inspire us.

 

The VMware Information Security Operations team is responsible for detecting and responding to cyber threats targeting VMware systems, applications, infrastructure, information, and users. The Sr. Information Security Analyst is a highly technical role responsible for investigating and responding to cyber threats as part of the Security Operations Center (SOC) team. The ideal candidate will have strong experience in threat hunting and technical analysis, as well as team leadership and development experience.

This position is responsible for:

  • Driving primary monitoring and response for security events and alerts.
  • Overseeing response support to users, driving user adherence to security policies, and managing escalations.
  • Driving proactive hunting for security threats and malicious activity, developing related tactics and techniques.
  • Planning, designing, and developing complex security monitoring and response capabilities and processes.
  • Interfacing with other teams to identify and resolve security events, providing education and communication on security best practices.
  • Providing review and oversight of analyst responses to requests, communications, and documentation.
  • Establishing requirements, criteria, and processes for testing and implementing security tools for the Security Operations Center (SOC) team.
  • Managing and overseeing incident communications with other teams.
  • Leading evidence collection, documentation, communications, and reporting.
  • Providing feedback on effectiveness of threat intelligence platform and data feeds.
  • Reviewing and approving threat indicators submitted by security analysts.
  • Mentoring other security analysts.
  • Maintaining current knowledge and understanding of the threat landscape and emerging security threats.
  • Maintaining a high level of confidentiality.

Required skills and experience:

  • 8 years of experience working in a Security Operations Center (SOC).
  • Experience as an operational shift or team lead.
  • Established as a security expert with thorough command of technical concepts in at least one security monitoring and response domain.
  • Strong understanding of Security Operations Center (SOC) and Incident Response practices and methodologies.
  • Strong understanding of cloud computing and security issues related to cloud environments.
  • Experience performing security monitoring and response capabilities on cloud platforms (Amazon Web Services, Microsoft Azure).
  • Experience using SIEM products (Splunk Enterprise, Elastic Stack).
  • Experience with endpoint security analysis on Windows, Mac, and Linux event data and related tools (Tanium, McAfee ePO).
  • Experience with malware analysis or forensic analysis.
  • Expert technical knowledge of Internet security and networking protocols.
  • Understanding of security technologies, including UEBA, SIEM, IDS/IPS, firewalls, endpoint security, content filtering, and packet inspection.
  • Understanding of system hardening techniques and practices.
  • Strong analytical skills and ability to identify advanced threats.
  • Ability to interact effectively at all levels of an organization and across diverse cultural and linguistic barriers.
  • Ability to quickly adapt as the external environment and organization evolves.
  • Comfortable facing new challenges and changes in direction.
  • Self-motivated, team player, and detail oriented.
  • Positive and constructive attitude.
  • Ability to prioritize projects and deliverables.
  • Excellent written and verbal communications.
  • Availability outside working hours for high priority events.

Desired skills/experience/certification:

  • Bachelor’s degree or equivalent experience.
  • Security certifications such as CISSP, GCIH, GIAC.
  • Scripting skills such as Python, Perl, RegEx.
EEO Statement
VMware is an equal opportunity employer committed to the principles of equal employment opportunity and affirmative action for all applicants and employees. Equal opportunity and consideration are afforded to all qualified applicants and employees in personnel actions, which include: recruiting and hiring, selection for training, promotion, rates of pay or other compensation, transfer, discipline, demotion, layoff or termination. VMware does not unlawfully discriminate on the basis of race, color, religion, sexual orientation, marital status, pregnancy, gender identity, gender expression, family medical history or genetic information, citizenship, national origin or ancestry, sex, age, physical or mental disability, medical condition, veteran status, military status, or any other basis protected by federal, state or local law, ordinance or regulation. VMware also makes reasonable accommodations for disabled employees consistent with applicable law. Further, it is the policy of VMware to maintain a working environment free of all forms of harassment.



Share this job:

VMware

See why VMware was named a "Best Place to Work"
VMware is the leader in cloud infrastructure, business mobility and virtualization software. A pioneer in the use of virtualization and policy-driven automation technologies, VMware simplifies IT complexity across the entire data center to the virtual workplace, empowering customers with solutions in the software-defined data center to hybrid cloud computing and the mobile workspace. With 2014 revenues of $6.04 billion, VMware has more than 500,000 customers, 75,000 partners, and 18,000+ employees in 120+ locations around the world. At the core of what we do are our employees who deeply value execution, passion, integrity, customers, and community. Want to be part of a compassionate community that thrives on architecting what’s next in IT? Learn more at vmware.com/careers.
Visit VMware's Social Media pages:
Company Industry: Computer Software
Company Type: Public Company
Company Size: 10,001+