Information Security Analyst – Cybersecurity Operations

Join our highly skilled and rapidly growing cybersecurity team as a Cybersecurity Operations Analyst. The ideal candidate will be responsible for monitoring, detecting, and responding to cybersecurity events, ensuring the overall security of our organization’s information systems. This role requires a proactive approach to identifying and mitigating potential threats, as well as a strong ability to collaborate with various departments, including the IT Helpdesk.

As a Cybersecurity Operations Analyst, you will monitor network traffic and system logs for security incidents and anomalies, investigate and respond to security events in real-time, and implement and manage security tools such as SIEM, XDR/EDR, and Email Security. You will also conduct threat analysis and risk assessments to identify vulnerabilities, develop and maintain incident response plans, and collaborate with IT and other departments to ensure security best practices are followed.

This position is ideal for someone who is detail-oriented, analytical, and passionate about cybersecurity. If you thrive in a fast-paced environment and are eager to make a significant impact on our organization’s security, we encourage you to apply.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

• Oversee the end-to-end cybersecurity threat response, from initial detection and analysis to containment, eradication, and recovery. Ensure that all cybersecurity events and incidents are thoroughly investigated and documented, and that lessons learned are incorporated into future threat management strategies.
• Monitor and analyze security events from various sources, including SIEM (Security Information and Event Management) systems, intrusion detection/prevention systems, XDR, email security and firewall logs.
• Investigate and respond to security incidents, including but not limited to, malware infections, phishing emails, unauthorized access, and data breaches.
• Collaborate with the IT Helpdesk to address security-related issues and provide guidance on secure configurations and practices.
• Provide expertise and support to the IT Helpdesk in identifying and mitigating security threats.
• Facilitate communication and coordination between the cybersecurity team and the IT Helpdesk to enhance overall security operations.
• Stay up to date with the latest cybersecurity threats, trends, and technologies to continuously improve the organization’s security posture.
• Regularly review and fine-tune the configurations of current security tools such as SIEM, EDR/XDR, and IDS/IPS to ensure they are effectively detecting and alerting on potential threats.
• Co-create and maintain playbooks to standardize and automate threat response procedures. This includes developing automated workflows to streamline incident response, reduce response times, and improve the overall efficiency and effectiveness of the cybersecurity operations team.
• Stay current with the latest threat landscape and emerging trends in cybersecurity to proactively identify and mitigate potential security risks. 
• Contribute to the overall information security strategy. 
• Assist in the development and delivery of training and awareness programs aimed at educating employees on cybersecurity best practices, ensuring they are well-equipped to recognize and respond to potential security threats effectively.

SUPERVISORY RESPONSIBILITIES:

• No supervisory responsibility

EDUCATION/EXPERIENCE/KNOWLEDGE & SKILLS:

Education:

• Bachelor’s degree in related discipline and 5+ years of related experience; or
• Equivalent combination of education and experience
• CISSP, CISM, CEH, OSCP, GIAC or similar cybersecurity certification.

Experience:

• Experience in a SOC environment, with background in threat detection, incident response, and threat hunting.
• Experience with threat intelligence platforms and integrating threat intelligence feeds to security tools to enrich threat detection.
• Experience in proactive threat hunting to identify and neutralize emerging threats.
• Experience with conducting and analyzing phishing simulations to enhance organizational security awareness and resilience.
• Experience and successfully executing programs that meet the objectives of excellence in a dynamic business environment.
• Experience or working knowledge of cloud, network, and application security.
• Experience in Biotech/Pharma is a plus.

Knowledge/Skills/Abilities:

• Familiarity with SOC tools and technologies such as SIEM (e.g., Splunk, QRadar), EDR (e.g., CrowdStrike, Cortex), and IDS/IPS (e.g., Snort, Suricata).
• Basic scripting skills (e.g., Python, PowerShell) to automate simple tasks and enhance detection capabilities.
• Ability to configure and use security tools effectively by integrating various log sources and data feeds.
• Basic understanding of machine learning and behavioral analytics to identify anomalies and potential threats.
• Ability to develop and refine basic correlation rules within SIEM to detect attack patterns, using frameworks like MITRE ATT&CK.
• Strong analytical skills to correlate events and make informed decisions based on data.
• Ability to analyze user behaviors and network traffic to detect suspicious activities.
• Ability to establish and maintain relationships with security vendors.
• Understanding of security frameworks and standards such as NIST, ISO 27001, and PCI-DSS, and the ability to apply them to an organization’s security needs.
• Knowledge of DNS, network protocols, firewalls, VPNs, web application firewalls, email security, IPS/IDS, SIEM, DLP, cryptography, application whitelisting, and endpoint protection.
• Good communication skills to collaborate with cross-functional teams and present findings clearly.
• Resourceful and proactive in finding solutions to challenges.
• A mindset focused on continuous learning and improvement.
• Ability to work well in a team environment and create timelines, with good time management skills.
• Good judgment and problem-solving skills, including negotiation and conflict resolution.

WORKING CONDITIONS:

• Environment: primarily working indoors in an office environment

#LI-EZ1

If you like wild growth and working with happy, enthusiastic over-achievers, you’ll enjoy your career with us!

Our compensation reflects the cost of labor across several U.S. geographic markets, and we pay differently based on those defined markets. The base pay range for this position is $105,500 – $150,500 annually. The base pay range may take into account the candidate’s geographic region, which will adjust the pay depending on the specific work location. The base pay offered will take into account the candidate’s geographic region, job-related knowledge, skills, experience and internal equity, among other factors.

In addition to the base salary, as part of our Total Rewards program, Exelixis offers comprehensive employee benefits package, including a 401k plan with generous company contributions, group medical, dental and vision coverage, life and disability insurance, and flexible spending accounts. Employees are also eligible for a discretionary annual bonus program, or if field sales staff, a sales-based incentive plan. Exelixis also offers employees the opportunity to purchase company stock, and receive long-term incentives, 15 accrued vacation days in their first year, 17 paid holidays including a company-wide winter shutdown in December, and up to 10 sick days throughout the calendar year.

DISCLAIMER 

The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to the job.

We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.

Read Full Description