Senior Security Analyst

The Basics: 

The Senior Security Analyst will drive continuous improvement across all aspects of Tanium’s Security Operations program, provide subject matter expertise on investigations, and lead incident response efforts. Additionally, this role will provide candidates with an opportunity to help grow and scale a security operations program with responsibilities across on-premises and cloud corporate environments. Candidates will work with a team to enhance strategies, implement detective and preventive mechanisms, develop standard operating procedures, and automate repeatable tasks. Candidates will respond to and be an escalation point for security related events and alerts and perform remediation. 

 This position is available for remote workers with flexible working hours but may require occasional work outside of normal business hours. 

 What you'll do:

• Act as an escalation point and subject matter expert for Security Operations personnel 
• Lead incident response, containment, and remediation for confirmed security incidents 
• Perform event and incident triage (e.g., malware triage, network analysis, live response, etc.)
• Provide recommendations and perform remediation of security incidents and events
• Collaborate on design, architecture, and threat models to incorporate detection and monitoring requirements
• Collaborate with security engineering on the implementation and deployment of tools
• Drive continuous improvement across all aspects of Security Operations
• Drive strategic improvements of detection and response strategies
• Be hands on in enhancing detection and prevention controls (e.g., logic updates, exclusions, etc.)
• Develop playbooks to improve the efficiency of operation processes
• Develop and maintain security operations processes & documentation (e.g., runbooks, operating procedures, etc.)
• Perform threat hunts and translate results actionable detection and repeatable processes
• Work with different operating systems and cloud hosting providers (e.g., AWS, GCP, Azure, OCI)
• Maintain working knowledge of attacker tactics, techniques, and procedures (TTPs) 

We're looking for someone with:

•  Education:
  • BA/BS and/or equivalent work experience preferred.
• Experience/Qualifications:
  • 5+ years working in a Security Operations and Incident Response
  • Expertise in incident response methodologies and approaches
  • Experience in incident response and forensics for cloud and on-premises environments
  • Deep knowledge of cloud architecture, cloud security, and cloud services 
  • Threat modeling, including developing countermeasures, of SaaS applications  
  • Familiarity with implementation of multi-tenant cloud environments  
  • Experience administering and responding to events on Linux, MacOS, and Windows operating systems  
  • Proficiency with common security tools and platforms (e.g., SIEMs, vulnerability scanners, and malware analyzers)  
  • Proficiency with IDS/IPS systems and endpoint Antivirus and EDR products  
  • Deep understanding of attacker tactics, techniques, and procedures  
  • Experience with analyzing security event logs, and detecting and responding to security events  
  • Experience with automation platforms and automation of repetitive tasks  
  • Excellent communication (verbal and written), critical thinking, and analytical skills  Ability to work both independently and as part of a team 

About Tanium 

Tanium, the industry’s only provider of converged endpoint management (XEM), leads the paradigm shift in legacy approaches to managing complex security and technology environments. Only Tanium protects every team, endpoint, and workflow from cyber threats by integrating IT, Operations, Security, and Risk into a single platform that delivers comprehensive visibility across devices, a unified set of controls, and a common taxonomy for a single shared purpose: to protect critical information and infrastructure at scale. Tanium has been named to the Forbes Cloud 100 list for six consecutive years and ranks on Fortune’s list of the Best Large Workplaces in Technology. In fact, more than half of the Fortune 100 and the U.S. armed forces trust Tanium to protect people; defend data; secure systems; and see and control every endpoint, team, and workflow everywhere. That’s the power of certainty. Visit www.tanium.com and follow us on LinkedIn and Twitter.

On a mission. Together. 

At Tanium, we are stewards of a culture that emphasizes the importance of collaboration, respect, and diversity. In our pursuit of revolutionizing the way some of the largest enterprises and governments in the world solve their most difficult IT challenges, we are strengthened by our unique perspectives and by our collective actions.   

We are an organization with stakeholders around the world and it’s imperative that the diversity of our customers and communities is reflected internally in our team members. We strive to create a diverse and inclusive environment where everyone feels they have opportunities to succeed and grow because we know that only together can we do great things. 

Each of our team members has 5 days set aside as volunteer time off (VTO) to contribute to the communities they live in and give back to the causes they care about most.   

What you’ll get

The annual base salary range for this full-time position is $95,000 to $285,000 This range is an estimate for what Tanium will pay a new hire. The actual annual base salary offered may be adjusted based on a variety of factors, including but not limited to, location, education, skills, training, and experience.

In addition to an annual base salary, team members will receive equity awards and a generous benefits package consisting of medical, dental and vision plan, family planning benefits, health savings account, flexible spending account, transportation savings account, 401(k) retirement savings plan with company match, life, accident and disability coverage, business travel accident insurance, employee assistance programs, disability insurance, and other well-being benefits.

For more information on how Tanium processes your personal data, please see our Privacy Policy