Senior Security Analyst (f/m/d)

<h2><strong>About the Opportunity</strong></h2> <p>Contentful strives to build a secure and safe service and commits considerable effort and resources to security. Our Security team supports corporate-wide information security management programs and collaborates closely with internal teams. We believe that Security must be anchored by DevOps principles with strong repeatable processes.</p> <p>We are looking for a committed and driven Senior Security Analyst with experience performing analysis and incident management of information security events, as well as experience contributing directly to the growth of and design of a security program. As a Senior Security Analyst, you will have daily alert investigation and incident response responsibilities, but you will be empowered to proactively drive change to shape and support the growth of our Security program.</p> <p>Candidates should have experience triaging new and unfamiliar alerts, leading technical workstreams in incidents, or leading all aspects of medium scale incidents. They should have experience creating and maintaining high quality threat detection and demonstrate knowledge and understanding of common Information Security principles and frameworks, coupled with excellent communications skills and a continuous desire to learn and grow.</p> <p>You will be expected to work independently, work as a part of a global dispersed team, and partner with stakeholders throughout the organization to ensure comprehensive risk mitigation while reducing impact to end users throughout the organization.</p> <h2><strong>What to expect? </strong></h2> <ul> <li>Perform daily alert investigation and response in a hybrid environment.</li> <li>Conduct detail-oriented analysis across challenging and complex ecosystems.</li> <li>Communicate investigation and threat updates to technical and non technical senior leaders.</li> <li>Work collaboratively across internal functions to identify, respond, and remediate security issues.</li> <li>Investigate and lead incidents of medium size and complexity.</li> <li>Investigate vulnerability exploitation and support remediation inline with vulnerability programs.</li> <li>Collaborate with the team and actively assist in major response exercises.</li> <li>Drive continuous improvement across all aspects of threat detection and response.</li> <li>Create processes, documentation, and runbooks to support a rapidly growing team.</li> <li>Identify systemic issues and collaborate on approaches to address root causes.</li> <li>Collaborate on threat models by incorporating detection use cases into designs.</li> <li>Identify and lead efforts to improve efficiency, response, detection, and preventative measures.</li> <li>Design and build detection logic across multiple platforms (e.g., SIEM, EDR, etc.)</li> <li>Play an active role in scaling Operation practices by contributing to team roadmaps.</li> <li>Provide delightful and informative interactions with all end users.</li> <li>Proactively identify opportunities for user training and awareness programs.</li> <li>Provide insights and input on tool selection to help grow our cybersecurity portfolio.</li> </ul> <h2><strong>What you need to be successful</strong></h2> <ul> <li>5+ years of Security Operations experience, including alert triage and investigation</li> <li>2+ detection and tuning experience, inclusive of Security Operations experience</li> <li>2+ years of Security Incident Response experience</li> <li>Ability to support on call and occasional off-hours incident response efforts</li> <li>Proficiency in analysis ... (truncated, view full listing at source)