[Remote] Information Security Analyst (Third Shift)
Note: The job is a remote job and is open to candidates in USA. Appian is a company dedicated to process automation technology, focusing on helping large enterprises and governments streamline complex processes. They are seeking an Information Security Analyst to join their Security Operations team, responsible for monitoring security alerts, evaluating threats, and ensuring compliance with industry regulations.
Responsibilities
- To assist with information security related continuous monitoring activities, including monitoring for continued compliance with internal security controls, policies, regulations, and laws
- To collaborate with interdepartmental teams to help detect unique threats and mitigations
- To support internal and external security reviews, audits, and control evaluations
- To participate in the incident reporting and investigation processes
- To help conduct risk analysis and provide recommendations for remediation or mitigation
- To support information security projects
- To coordinate with Appian Engineering teams to research potential security issues
- To participate in blue-team activities. And sometimes red-team!
- To be passionate about staying up to date on current security risks and trends
- To have excellent written and oral communication skills
- To have the ability to manage multiple tasks efficiently
Skills
- Excellent communication skills, including the ability to effectively communicate in English both verbally and in writing
- Bachelor's degree in related field of study
- Solid understanding of network fundamentals and internet protocols (TCP/IP networking and network services DNS, DHCP, etc.)
- Proficiency in at least one scripting language (Python preferred)
- Proficient in querying large datasets using SQL or other big data query languages such as KQL, Splunk Query Language (SPL), etc
- Solid understanding of operating systems concepts (Hardening, Log monitoring, and difference between Operating Systems)
- Knowledge of the MITRE ATT&CK Framework, Cyber Kill Chain or other relevant network defense and intelligence frameworks
- Familiarity with threat intelligence sources, common adversary tactics, techniques, and procedures (TTPs)
- Knowledge of cloud-based infrastructures (SaaS, PaaS, IaaS) and layer security responsibilities
- Knowledge of cloud concepts (AWS), containers, kubernetes, and DevSecOps principles
- Demonstrated experience identifying and communicating information security concepts and risks to an audience
- Experience with EDR and SIEM platforms
- Experience automating security processes, detections, or investigations to enhance efficiency and threat response
- Relevant information security certifications, such as GCIH, AWS Security, or other SANS certifications
Benefits
- 401(k) plan with company match
- Flexible time off
- Paid parental leave
- Medical, dental, and vision plans
- Life insurance
- Disability insurance
- Wellness programs
- Flexible spending accounts
- Health savings account contributions
- Employee referral bonus program
- Learning and development resources
- Employee Assistance Program (EAP) with free mental health support
- Employee Stock Purchase Program (ESPP)
- Retirement/pension plan
- Wellness dollars
- Tuition reimbursement
- Family-forming benefits
Company Overview
Company H1B Sponsorship