Gusto · 7 hours ago
Security Operations Analyst
Maximize your interview chances
Bookkeeping and PayrollEmployee Benefits
H1B Sponsor Likely
Insider Connection @Gusto
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Security Monitoring & Incident Response: Perform real-time monitoring, respond to security incidents, and assist with post-incident analysis. This could include the following:
Administer, tune, and enhance security tools such as SIEM, endpoint detection & response, data loss prevention, etc.
Develop and maintain automation scripts and tools to enhance security operations efficiency and effectiveness.
Maintain documentation on security incidents, vulnerabilities, and procedures to support continuous improvement and compliance.
Support internal users with security concerns and questions, helping to strengthen and promote Gusto’s security culture.
Triage and analyze vulnerability results to identify and prioritize security weaknesses, escalating as necessary for immediate response.
Collaborate with cross-functional teams to drive the remediation of vulnerabilities.
Regularly audit and refine vulnerability management processes, tools, and reports to maintain accuracy, and ensure compliance with security policies.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
2+ years of experience in security operations or a related field.
Monitoring security tools for alerts and investigating suspicious activity.
Conducting regular vulnerability assessments, triaging risks, and tracking remediation efforts.
Identifying, analyzing, and responding to security incidents, which includes root cause analysis and remediation.
Gathering and applying threat intelligence to proactively address potential security threats.
Documenting procedures and creating incident reports to improve response processes and compliance.
Basic understanding of networking, firewalls, and security protocols.
Operational familiarity with Linux and containers.
Understanding of K8s manifest files and package versioning.
A passion for continuous learning and a proactive approach to security challenges.
Exposure to cloud environments (AWS, Azure, or Google Cloud).
Knowledge of managing IAM permissions with Terraform.
Understanding of the principles of least privilege.
Scripting language proficiency.
Familiarity with security tools such as SIEM, endpoint protection, and vulnerability scanners.
Analyze and document findings effectively, providing clear insights into key issues.
Preferred
Experience with log analysis and digital forensics.
Experience leading an incident response investigation.
Understand vulnerabilities and how to patch them.
Experience with GitHub Dependabot.
Understanding of industry standard security frameworks and benchmarking.
Coding experience in one or more general purpose programming languages.
Security certifications (e.g., CISSP, CompTIA Security+, AWS Certified Cloud Practitioner) are a plus.
Interest in the landscape of security and its impact across multiple industries and tactics, techniques, procedures of threat actors.
Benefits
Health insurance
401(k)s
Company
Gusto
Gusto is an HR and payroll platform that simplifies complex tasks, empowering businesses to focus on what matters most.
H1B Sponsorship
Gusto has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (14)
2022 (31)
2021 (32)
Funding
Current Stage
Late StageTotal Funding
$746.1MKey Investors
Friends & Family CapitalT. Rowe PriceAkkadian Ventures
2023-01-28Series Unknown
2022-05-12Series E· $55M
2021-08-10Series E· $175M
Recent News
The Business Journals
2024-12-11
2024-11-28
2024-11-19
Company data provided by crunchbase