Apply on Employer Site

TCW · 1 day ago

AVP, Information Security Analyst

LA Metro Area

Full-time

Hybrid

Mid, Senior Level

$135K/yr - $150K/yr

5+ years exp

TCW is a firm focused on safeguarding the confidentiality, integrity, and availability of data and technology assets. The AVP Security Analyst will lead vulnerability management activities and enhance information security operations by managing the vulnerability lifecycle and collaborating with teams to reduce risk across the enterprise.

Asset ManagementFinanceFinancial Services

H1B Sponsor Likely

Responsibilities

Lead the full vulnerability management lifecycle (scanning, assessment, prioritization, reporting, and remediation) across cloud and on-prem environments

Support and enhance asset discovery and management by leveraging tools such as Armis to ensure complete visibility of cloud, on-prem, and hybrid assets, enabling more effective vulnerability management, threat detection, and incident response

Implement, monitor, and improve Azure-native security controls, including identity, workload, and data protection, as well as CSPM and CNAPP tooling for cloud risk management

Investigate, validate, and escalate suspicious or anomalous activity through available tools and telemetry

Provide strong support for incident response, including investigation, containment, remediation, and lessons learned across the lifecycle of security incidents

Manage and optimize SIEM and SOC operations, including detection engineering, correlation rules, alert handling, and escalation processes (Microsoft Sentinel preferred)

Configure, manage, and maintain EDR capabilities to ensure effective endpoint visibility, protection, and response

Conduct technical and practical threat hunting in Azure and hybrid environments to proactively detect and mitigate risks

Utilize basic scripting/querying skills (KQL, PowerShell, Python) to support investigations, analysis, and automation efforts

Partner with infrastructure, application, and cloud teams to assess existing controls and implement security improvements

Participate in regular security operations reviews and recommend improvements to processes, tools, and controls

Stay current on evolving cloud security risks, vulnerability trends, and attack techniques, with emphasis on Azure

Perform other security-related duties as assigned

Qualification

Vulnerability managementCloud security (Azure)SIEM/SOC operationsIncident responseEDR platformsAsset management platformsScripting/querying KQLScripting/querying PowerShellScripting/querying PythonAnalytical skillsThreat modeling frameworksSecurity frameworksCertifications Security+Certifications CISSPCertifications etc.Communication skillsCollaboration skills

Required

Minimum of 5 years of experience in Information Security, with at least 3 years of in-depth experience with vulnerability management, cloud security, and/or security operations

Strong hands-on experience with cloud security (azure preferred), including policy enforcement, identity and access management, and secure configurations

Proven track record with vulnerability scanning tools (e.g., Defender, Qualys, Tenable, Vipr) and the ability to drive remediation programs across enterprise environments

Hands-on experience with SIEM/SOC operations (Microsoft Sentinel preferred), including detection engineering and event analysis

Experience with EDR platforms, including configuration, management, and optimization of endpoint security capabilities

Experience with asset management platforms (e.g., Armis, Axonious, ServiceNow CMDB, or similar) and applying asset intelligence to support security operations

Solid understanding of incident response methodologies, threat detection, and cloud-native attack vectors

Strong analytical skills with ability to identify root causes and provide actionable, risk-based recommendations

Excellent written and verbal communication skills, including clear documentation of investigations and outcomes

Ability to work independently and collaboratively with technical and non-technical stakeholders

Comfortable managing multiple priorities in a fast-paced, evolving environment

Preferred

Bachelor's degree in Information Security, Computer Science, Information Systems, or related field or equitable working experience

Familiarity with threat modeling frameworks (e.g., MITRE ATT&CK)

Knowledge of security frameworks (e.g., NIST, ISO, CSA)

Proficiency with scripting/querying (e.g., KQL, PowerShell, Python) for analysis and automation

Certifications such as Security+, CySA+, CEH, GCIA, GSEC, AZ-500, SC-200, CISSP, CISM, GCIH or equivalent

Benefits

Annual discretionary bonus

Comprehensive benefits package

Company

TCW

TCW is a global asset manager with more than fifty years of experience across fixed income, equities, and alternatives.

Founded in 1971

Los Angeles, California, USA

501-1000 employees

http://www.tcw.com

H1B Sponsorship

TCW has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (7)

2024 (5)

2023 (2)

2022 (5)

2021 (4)

2020 (2)

Funding

Current Stage

Late Stage

Total Funding

unknown

Key Investors

Nippon Life Insurance Company of Japan

2017-12-01Series Unknown

2012-08-08Acquired

Leadership Team

Bob Baxter

Senior Vice President--Alternative Strategies

David D. Kim

Managing Director, Head of Japan

Recent News

Globe and Mail

Onex names Megan McClellan CFO as Chris Govan plans to step down next year

2025-10-16

Business Wire

TCW to Change Listing Exchange of Equity ETFs to NASDAQ

2025-06-14

Business Wire

TCW Launches the TCW Private Asset Income Fund to Deliver Exposure to Asset-Backed Finance Market

2025-06-02

Company data provided by crunchbase