|
JOB TITLE |
DEPT/FUNCTION |
REPORTS TO NAME/TITLE |
|
|
Security |
Chad Thompson |
||
|
FLSA STATUS |
SALARY GRADE |
DATE PREPARED |
PREPARED BY |
|
Exempt |
05/18/23 |
Chad Thompson |
|
JOB SUMMARY/OVERVIEW |
|
This position supports TriNet, a U.S. public company that owns the Zenefits brand. We are currently seeking a motivated, experienced, and highly skilled Senior Cyber Defense Analyst to join our global cybersecurity team in India. As an integral part of our international operations, this individual will work remotely to identify, manage, and mitigate cyber threats to our organization.
The Senior Cyber Defense Analyst is a highly technical individual with a strong understanding of both industry-standard security practices and software. Working closely with other members of the team and reporting directly to the Cyber Defense Director, you will assist in the day-to-day operation of the TriNet security program. This will include (but is not limited to) monitoring for and responding to security related incidents and assisting and leading security-related projects (as assigned). The Senior Cyber Defense Analyst will be responsible for working during overnight US hours with minimal supervision and will be responsible for the analysis of security alerts, incidents, and investigations as well as reassigning, and escalating from a variety of tools to the appropriate internal or external team members.
|
|
ESSENTIAL DUTIES/RESPONSIBILITIES |
|
• Monitor, detect, and analyze emerging cyber threats, intrusion attempts, and security incidents using state-of-the-art cybersecurity tools and technologies.
• Perform detailed investigation of security incidents and provide quality incident response, including managing some incidents end-to-end.
• Develop, implement, and maintain incident response playbooks to ensure efficient and effective response to cyber threats.
• Participate in the evaluation, selection, and implementation of new cybersecurity tools and technologies.
• Provide expert cybersecurity advice and recommendations to internal stakeholders, ensuring that our defenses are in line with global industry best practices.
• Deliver regular and concise reports on security posture, incident response activities, and emerging threats.
• Work closely with the global cybersecurity team to align standards, strategies, and best practices.
• Reports to TriNet's management concerning residual risk, vulnerabilities, and other security exposures, including misuse of information assets and noncompliance.
• Plays an advisory role in application development or acquisition projects to assess security requirements and controls and to ensure that security controls are implemented as planned.
• Collaborates on critical technology projects to ensure that security issues are addressed throughout the project life cycle.
• Works with TriNet's technology department and members of the security team to identify, select and implement technical controls.
• Adherence to security processes and procedures that support service-level agreements (SLAs) to ensure that security controls are managed and maintained.
• Provides first and second level support and analysis during and after a security incident.
• Assists security administrators and technology staff in the resolution of reported security incidents.
• Acts as a liaison between incident response leads and subject matter experts.
• Monitors daily or weekly reports and security logs for unusual events.
• Attends and participates in monthly security tabletop exercises.
• Other projects and responsibilities may be added at the manager’s discretion.
|
|
JOB REQUIREMENTS AND QUALIFICATIONS |
|
Education Preferences: |
|
Training Preferences (licenses, programs, or certificates): • CEH: Certified Ethical Hacker
• CompTIA Security+
• CISSP: Certified Information Systems Security Professional
• CISA: Certified Information Systems Auditor
|
|
Experience Preferences: • 5+ yrs. experience in a security or similar technical role (with appropriate experience)
|
|
Other Knowledge, Skills and Abilities: • Proven experience with various cybersecurity tools and technologies, such as SIEM (Security Information and Event Management), EDR (Endpoint Detection & Response), and Threat Intelligence platforms.
• Exceptional understanding of advanced cyber threat actors and their methodologies, including APT (Advanced Persistent Threat), phishing, and ransomware.
• Excellent verbal and written communication skills in English.
• Demonstrated ability to work effectively in a remote, globally dispersed team.
• Flexibility to work in shifts, matching the requirements of a global operation.
• Previous experience with the following applications is preferred but not required:
o CrowdStrike
o Secureworks Taegis and/or Red Cloak
o Palo Alto Firewalls
o ServiceNow
o KnowBe4
o Tenable
• Ability to interact with TriNet's personnel at all levels and across all business units and organizations, and to comprehend business imperatives.
• Strong written and verbal communication skills.
• Must be able to learn and support new and quickly changing technologies.
• Able to multitask, prioritize, and work well under pressure and in high-stress situations.
• Ability to make decisions quickly and without always having documented answers to questions.
• Ability to remain organized, on-task, and manage time efficiently.
• Strong analytical and problem-solving skills – detail oriented.
• Strong collaboration skills. Works well in a team environment where team members may be distributed (not collocated)
|
|
WORK ENVIRONMENT/OTHER INFORMATION (Travel required, physical requirements, on-call schedules, etc.) |
|
• Minimal travel required.
• Work with a high sense of personal accountability to complete assigned work.
• The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
|
Please Note: TriNet reserves the right to change or modify job duties and assignments at any time. The above job description is not all encompassing. Position functions and qualifications may vary depending on business necessity.
TriNet is an Equal Opportunity Employer and does not discriminate against applicants based on race, religion, color, disability, medical condition, legally protected genetic information, national origin, gender, sexual orientation, marital status, gender identity or expression, sex (including pregnancy, childbirth or related medical conditions), age, veteran status or other legally protected characteristics. Any applicant with a mental or physical disability who requires accommodation during the application process should contact recruiting@trinet.com to request such accommodation.
