Security Analyst II
Apply NowCompany: XTG
Location: San Diego, CA 92154
Description:
The Security Analyst II is primarily responsible for maintaining and enhancing operational activities related to security controls, policies, and processes within XTG's information security program. This position will be responsible for solving and handling escalations of information security incidents and to ensure security related tools are operating with the highest efficacy and operation.
This position may be remote, located within the US.
ACCOUNTABILITIES
Perform threat hunting and other initiatives as a part of Security Operations Center (SOC) and Computer Security Incident Response Team (CSIRT).
Act as a technical resource for incident response, including steps to minimize the impact and conduct a technical investigation into the source of the breach to provide mitigation and preventative measures.
Participate in collaborative sessions with other cyber defenders on malicious intrusions, attacks or suspicious activities, as well as share emerging cyber threat intel data.
Identify security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives.
Assist with risk assessments and analyze technical controls for risk treatment options.
Provide technical support in the development, testing, and operation of firewall policies, intrusion prevention systems, secure web/email gateways, EDR/XDR, SIEM and security related tools.
Identify new improvements in the SOC processes and make updates to SOP's in the knowledge base.
Assist with highly complex product evaluations, recommend, and implement products and services for security.
Additional duties as assigned.
EDUCATION & EXPERIENCE
A Bachelor's Degree in Computer Science or related degree or equivalent combination of education/experience. Three to five years of information security in IT Infrastructure/Network/Security Operations environments, support, and testing required.
SKILLS & CERTIFICATIONS
What we offer our team members:
This is a summary of the primary accountabilities and requirements for this position. The company reserves the right to modify or amend accountabilities and requirements at any time at its sole discretion based on business needs. Any part of this job descriptions is subject to possible modification to reasonably accommodate individuals with disabilities.
Total Annual Compensation: $85,000 - $95,000/year. Actual compensation offer to candidate may vary from posted hiring range based upon geographic location, work experience, education, and/or skill level.
This position requires use of information or access to hardware which is subject to the International Traffic in Arms Regulations (ITAR). To perform the position, you must be a U.S. Person as defined by ITAR. ITAR defines a U.S. person as a U.S. Citizen, U.S. Permanent Resident (i.e. 'Green Card Holder'), Political Asylee, or Refugee.
Visa sponsorship is not available for this role. Only candidates authorized to work in the United States will be considered.
XTG is a collection of companies specializing in the design-in and supply of component technologies that enable modern electronic systems within the TTI Family of Specialists. XTG is an Equal Opportunity Employer committed to providing equal opportunities to all employees and applicants for employment without regard to race, color, sex (including pregnancy, sexual orientation, gender identity, age, national origin, religion, physical or mental disability, veterans' status, genetic information, or any other characteristic protected by law.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)
This position may be remote, located within the US.
ACCOUNTABILITIES
Perform threat hunting and other initiatives as a part of Security Operations Center (SOC) and Computer Security Incident Response Team (CSIRT).
Act as a technical resource for incident response, including steps to minimize the impact and conduct a technical investigation into the source of the breach to provide mitigation and preventative measures.
Participate in collaborative sessions with other cyber defenders on malicious intrusions, attacks or suspicious activities, as well as share emerging cyber threat intel data.
Identify security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives.
Assist with risk assessments and analyze technical controls for risk treatment options.
Provide technical support in the development, testing, and operation of firewall policies, intrusion prevention systems, secure web/email gateways, EDR/XDR, SIEM and security related tools.
Identify new improvements in the SOC processes and make updates to SOP's in the knowledge base.
Assist with highly complex product evaluations, recommend, and implement products and services for security.
Additional duties as assigned.
EDUCATION & EXPERIENCE
A Bachelor's Degree in Computer Science or related degree or equivalent combination of education/experience. Three to five years of information security in IT Infrastructure/Network/Security Operations environments, support, and testing required.
SKILLS & CERTIFICATIONS
- Knowledge of security tools functionality to find attacks, tune out noise, and build security visibility into the environment.
- Experience supporting security software, to include firewalls, intrusion detection and prevention, DLP, secure web/email gateways, MS Defender, MS Purview and vulnerability scanners.
- Proficiency in performing vulnerability assessments, and defining treatment strategies.
- Experience with common information security management frameworks, such as International Standards Organization (ISO) 2700x, National Institute of Standards and Technologies (NIST), Payment Card Industry Data Security Standards (PCI DSS) is preferred.
- Comprehension of various cyber-attacks and recent hacking techniques.
- Strong understanding of operating systems, virtualization technologies, network devices, Cloud computing concepts, web proxies, firewalls, intrusion detection/prevention systems, antivirus systems, data loss prevention, and vulnerability assessment tools.
- Ability to work weekends and after business hours when needed.
What we offer our team members:
- A great benefits package that includes (but is not limited to) Medical/ Dental/ Vision, 401(k)/Roth plan with matching contribution, Healthcare Savings Accounts.
- A wide variety of benefits to include Tuition Reimbursement, vacation, floating holidays, volunteer day off, PTO or sick time.
- Ongoing training throughout your employment with opportunities to participate in professional and personal development programs.
- A strong focus on giving back to our communities through philanthropic opportunities.
- Great culture and opportunities for growth and advancement.
This is a summary of the primary accountabilities and requirements for this position. The company reserves the right to modify or amend accountabilities and requirements at any time at its sole discretion based on business needs. Any part of this job descriptions is subject to possible modification to reasonably accommodate individuals with disabilities.
Total Annual Compensation: $85,000 - $95,000/year. Actual compensation offer to candidate may vary from posted hiring range based upon geographic location, work experience, education, and/or skill level.
This position requires use of information or access to hardware which is subject to the International Traffic in Arms Regulations (ITAR). To perform the position, you must be a U.S. Person as defined by ITAR. ITAR defines a U.S. person as a U.S. Citizen, U.S. Permanent Resident (i.e. 'Green Card Holder'), Political Asylee, or Refugee.
Visa sponsorship is not available for this role. Only candidates authorized to work in the United States will be considered.
XTG is a collection of companies specializing in the design-in and supply of component technologies that enable modern electronic systems within the TTI Family of Specialists. XTG is an Equal Opportunity Employer committed to providing equal opportunities to all employees and applicants for employment without regard to race, color, sex (including pregnancy, sexual orientation, gender identity, age, national origin, religion, physical or mental disability, veterans' status, genetic information, or any other characteristic protected by law.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)