Security Operations Analyst

About the role:

*This is an office based role with the option to work from home a couple of days per week*

CoreWeave is hiring for a Security Operations Analyst who will be responsible for maintaining daily operations of our security operations team and cyber suite of tools. We’re looking for someone who can work closely with our IT, Network, and Engineering teams to deliver high quality, repeatable, and sustainable outcomes related to cyber security and reliability. They will also play a critical role in reporting deviations, tracking, and identifying errors/incident trends, and monitoring of CoreWeave network, infrastructure and endpoint assets to ensure the overall health and security of the CoreWeave ecosystem. 

Wondering if you’re a good fit? We believe in investing in our people, and value candidates who can bring their own diversified experiences to our teams – even if you aren't a 100% skill or experience match. Here are a few qualities we’ve found compatible with our team. If some of this describes you, we’d love to talk. 

• You have experience with monitoring and analyzing logs and alerts from a variety of different technologies across multiple platforms in order to identify and mitigate security incidents affecting the Coreweave enterprise.

• You have an eye for assessing the security impact of security alerts and traffic anomalies to identify malicious actions.

• You have an understanding of Operating Systems and their architectures (Windows, Unix/Linux, and OSX) in support of identifying security incidents and to have a proper overview of risk profile.

• You have a fundamental understanding of Windows, Unix/Linux, and OSX Operating Systems, and can identify security incidents within those environments 

• Leveraging network security tools and capabilities to support Cyber Threat Monitoring activities.

• Documenting results of cyber threat analysis effectively and prepares comprehensive handoff and/or escalation for CIRT/Intelligence Function teams.

• Performing malware analysis and identification of Indicators of Compromise (IOCs) to evaluate incident scope and associated impact in support of identification of security incidents.

• Identifying gaps and leads in implementation of new methods and technologies to sufficiently mitigate risk.

• Providing recommendations to enhance and advance the defensive capabilities of the Threat Management Center (TMC) and its subsequent ability to defend the Coreweave Enterprise.

• Experience with building/configuring Security Incident and Event Management (SIEM) systems, intrusion defense system (IDS), intrusion prevention system (IPS), Firewall, Antivirus, Web Proxies, Authentication, Cryptography, Kubernetes, Linux server administration, and/or network administration

• Familiarity with sending Requests for Proposals (RFPs) to gather information regarding installation of new cyber tooling to best protect the company

• Creating and presenting technical strategies and technical solution recommendations

• Integrating new technologies into existing technology portfolio

• Collaborating with cross-functional teams, including engineering