Senior SecOps Analyst

Foot Locker Inc.
Denver, CO
Posted 3 days ago
Apply on Company Website

Overview

This role is 100% REMOTE - Must be in the US

Our global house-of-brands inspires and empowers youth culture. Relentlessly committed to fuel a shared passion for self-expression, we create unrivaled experiences at the heart of the sport and sneaker communities through the power of our people. If you want to be a part of something bigger than you can imagine, you've come to the right place. To learn more about the incredible impact we're making on both our local and global communities, Click Here!

The Senior SecOps Analyst is a leader who brings team members along in improving the corporation's security posture. Perform research to keep the business on the cutting edge of security technologies. They have the security maturity to prioritize business risk. Develop process & procedures, as well as improve and automate current processes & procedures.

Improve upon the daily security operations which involve monitoring system health, responding to security events, administering security tools such as email gateways, firewalls, IDS, proxies, end point security, and SIEM tools, conducting data analysis, and reporting to management. Work closely with established security analysts in the daily use and support of operational security tools, hardware and system software. Perform related work as required.

Responsibilities

  • Conduct research to keep business on cutting edge of security technologies.
  • Engage with external security resources to stay up-to-date on security landscape.
  • Prioritize security risk to the business.
  • Improve upon established processes and procedures.
  • Develop new integrations between security tools.
  • Run security related projects across multiple teams.
  • Follow, create, and update incident response processes and procedure in use and support of operational software tools, hardware and system software.
  • Respond to realized cyber risks in forms of attacks via Phishing, Bots, Malware, etc.
  • Monitor Identity risks of both corporate and customer logins
  • Be willing and capable of learning new tools and processes.
  • Monitor SIEM, conduct data analysis, and evaluate logs for security events
  • Evaluate health and management of Anti-Virus, Anti-Malware, and other Advanced Threat agents in a global deployment
  • Create reports and enhance metrics based on data analysis.
  • Participate in weekly security review boards, identifying and classifying cyber risks
  • Adhere to all corporate security policies and standards as they relate to job duties.
  • Provide on-call support as part of rotation within the team. This requires 24x7 availability during the on-call rotation. The frequency will be dependent on the number of associates in the rotation.

Qualifications

  • Must demonstrate the ability to professionally communicate in verbal and writing skills.
  • Must demonstrate the ability to properly outline security risks to various business units.
  • Must understand basic security principles with an understanding of malware, cryptography, threats and vulnerabilities, access control, and application, data, and host security.
  • Must understand core networking (TCP/IP, routing, switching, wireless) and the OSI model.
  • Must have basic computer programming / scripting skills (Powershell/Bash/Python) and an interest in data analysis.
  • Must understand basic use of both Windows 10/Server 2012/2016 and Linux, including console level commands.
  • Must demonstrate skills and interest in supporting a variety of security systems such as SIEM, IDS/IPS, firewalls, proxies, host security software, and vulnerability scanners.
  • Should understand risk analysis techniques to provide business with context on remediation, prevention, or mitigation steps.

MINIMUM QUALIFICATIONS:

  • An Associate's degree or higher from an accredited university or college with course work in Information Security, Information Management Systems, or Networking.

OR

  • Completion of non-accredited coursework through related on-the-job-training, AND 3-5 years full time experience in an IT role.

PREFERRED

  • CompTIA Security+, CEH or similar industry certification.

LI-REMOTE

LI-RD1

Apply on Company Website