Our IT Department has an opening for an Information Security Analyst who will be primarily responsible for day-to-day security threat monitoring and analysis from client security to enterprise servers, operating systems, applications and infrastructure devices. The Information Security Analyst will also work with IT Security management on developing, implementing and managing security controls and defenses related to the execution for the Information Security Program, including Intrusion Detection, Log Monitoring, Vulnerability Assessment, and Information Security Process & Reporting. This position can be based in our San Jose (preferred) or Foster City office.
Manage and support the log collection, security scanning, intrusion detection, content filtering and other security-related systems.
Review and triage information security alerts, provide analysis, determine and track remediation, and escalate as appropriate.
Active member of the Computer Security Incident Response Team (CSIRT) responding to reported incidents according to the Incident Response Plan.
Provide support for the log management and Security Information and Event Monitoring (SIEM) solutions.
Review and triage experience with endpoint detection and response tools.
Provide technical leadership for the vulnerability management program, advanced security monitoring, providing proactive detection and prevention.
Ensure authorized access by investigating improper access; revoking access; reporting violations; monitors information requests; recommend improvements.
Actively participate in the maintenance and development of the Information Security Management System (ISMS).
Participate in security and change management meetings.
Provides installation, maintenance, upgrades and troubleshooting of security applications, appliances across all functional departments.
Desired Skills and Qualifications:
Strong knowledge of current security threats, techniques, and landscape, as well as a dedicated and self-driven desire to research current information security landscape.
Ability to research, develop and keep abreast of tools, techniques, and process improvements in support of security detection and analysis in accordance with current and emerging threats and attack vectors.
Ability to take on additional tasks as defined by the Information Security Management Team, including participating in the on-call rotation.
Strong knowledge of Incident Analysis and Response concepts and techniques, including incident tracking process, root cause, lessons learned and process improvements.
Deep understanding of network devices and architecture, TCP/IP, network protocols, server operating systems, and vulnerability scanning.
Strong understanding of internal control concepts and policies with focus on improving process/procedure manuals and documentation.
Strong knowledge of cybersecurity frameworks (such as ISO 27001, NIST CSF, CIS, etc.)
Knowledge of Windows, Linux/Unix, VMware, IDS/IP, forensic discovery.
Knowledge in security awareness training.
Strong interpersonal and communication skills and the ability to work effectively with a wide range of constituencies in a diverse community.
May perform other duties as assigned including work in other areas to cover absences or relief to equalize peak work periods or otherwise balance the workload.
Reporting to the Chief Security Officer, the ideal candidate will have a minimum of 4 years of security analyst experience within a complex operational and development environment. Bachelor’s degree in Information Assurance, Information Security, Computer Science, related field and/or equivalent experience. Certifications such as CISSP, CISM, GCIH, GCIA, GPEN not required but preferred.
To be fully considered for this position, please apply directly online: http://www.fenwick.com/pages/Careers-Professional-Staff.aspx
Internal Number: R654
About Fenwick & West LLP
Fenwick & West is a top-tier law firm with an open and inclusive culture. With more than 300 attorneys and 400 employees in the Silicon Valley, San Francisco, Santa Monica, Seattle and New York, we work with companies on the cutting edge of technology, life sciences and cleantech. For more than four decades, our Firm has helped some of the world's most recognized companies become and remain market leaders. We are proud to have been named one of the Best Places to Work in the Bay Area for the twelfth year.