Senior Associate, Information Security Operations

About The Position

Requirements

• You have a minimum of a Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field.
• 5+ years of experience in cybersecurity with hands-on experience in security operations, incident response, and security tools.
• Strong understanding of network protocols, security frameworks, identity and access management (IAM), and system administration.
• Expert level understanding of perimeter security controls, endpoint controls, and cloud environment controls.
• Experience with network infrastructure including switching, routing, VPN technologies, and wireless networks.
• Hands on proficiency in using security tools like SIEM systems, vulnerability scanning tools, EDR, firewalls, antivirus solutions, and DLP.
• Knowledge of operating systems like Windows and UNIX.
• Basic scripting skills in languages such as PowerShell, Bash, or Python.
• Strong written and verbal communication skills with the ability to tailor to both technical and non-technical audiences.
• Awareness of cybersecurity trends and emerging threats.
• Firewall management and configuration experience.
• Cloud security (AWS, Azure) experience.
• IPS/IDS implementation and management experience.
• Incident response and remediation experience.
• This position is required to work weekends and nights as necessary to ensure network availability and to support after regular business hours deployment of new systems, patches, fixes, and/or other enhancements.

Nice To Haves

• Certifications - CISSP, CISM, or equivalent; Network security certifications (e.g. Palo Alto, Cisco), SOC related certifications (e.g. Security+).

Responsibilities

• Plan, implement, manage, monitor, and upgrade security measures to protect the organization's data, systems, and networks
• SOC Operations - Monitor SIEM dashboards, analyze alerts, and develop detection content aligned with MITRE ATT&CK techniques.
• Framework Compliance - Apply NIST CSF principles to assess, design, and improve security posture across all domains.
• Zero Trust Implementation - Enforce identity-based access controls and micro-segmentation strategies to minimize attack surfaces.
• Coordinate with vendor technical support for complex issues and develop plans and strategies for system upgrades.
• Assess security advisories and software vulnerabilities and develop mitigation plans.
• Conduct regular scans, prioritize remediation, and track risk mitigation.
• Consult with business teams regarding threat mitigation best practices in technical areas such as Perimeter Security, CASB, Application Security, Core Systems, EDR, Cloud, and SIEM.
• Implement and manage network security tools including firewalls, VPNs, IPS/IDS, and web proxies.
• Manage VPN tunnels and secure remote access solutions for distributed teams.
• Monitor network traffic, analyze potential security threats, and respond/remediate: Network & Endpoint Security - Configure and monitor firewalls, IDS/IPS, and endpoint protection tools to safeguard enterprise infrastructure.
• Incident Response - Act as a key member of the Security Incident Response Team (SIRT), handling escalations and coordinating with MSSPs and internal teams.
• Develop and maintain support and user documentation and processes.
• Identify and implement automation opportunities for laborious and/or repetitive processes.
• Provide guidance and training to team members and other staff on security best practices.

Benefits

• Comprehensive medical, dental, and vision coverage and mental health support, annual wellbeing reimbursement, and access to our Employee Assistance Program (EAP)
• Generous paid time off policies, fertility and family-forming benefits, caregiver support, and flexible work schedules with purposeful in-person collaboration
• 401(k) plan with a competitive company match, annual equity awards, and participation in our Employee Stock Purchase Plan (ESPP), and company-paid life and disability insurance
• Company Learning Institute providing access to LinkedIn Learning, skill building workshops, leadership programs, mentorship connections, and networking opportunities
• Employee resource groups, service and recognition programs, and meaningful opportunities to connect, volunteer, and give back