Senior Cyber Security Analyst

ABOUT THE ROLE Peloton continues to grow and deliver the connected fitness platform of the future to help our members be the best version of themselves. As a technology-enabled business, our approach to security operations must evolve and grow alongside our services and members. We are looking for a Senior Cyber Analyst with a diverse set of skills that can thrive in a challenging, fast-paced, and rewarding environment. We do not have a traditional SOC tier structure, so you can expect to help us improve our detections as well as create additional detections, build automations, and research help define the solutions roadmap to achieve scale. The right candidate should have a strong focus on results, be self-driven, and be excited by working on a diverse set of problems, threats, and alerts. YOUR DAILY IMPACT AT PELOTON Directly support Peloton’s Security Program while conducting in-depth research and strategic analysis of intelligence data from various sources to leverage in threat hunting Stay up to date with relevant vulnerabilities, threat actors, indicators of compromise (IOCs) tactics, techniques, and procedures (TTPs), and trends, identifying actionable areas of interest and threats Provide intel-driven insights into existing and emerging threats, use insights to search Peloton enterprise for activity that is anomalous and/or malicious Work with Security Engineering and the Security Operations Center to baseline user behaviors and events as well as build out new detections and response workflows Provide triage support for incident response and investigation efforts as part of Peloton’s Security and Operations team and other internal teams Recommend and build countermeasures based on threat analysis, intelligence, and forecasting Develop, implement, and maintain security incident playbooks/runbooks Prepare and present analysis with findings and recommendations in the form of briefings, reports, and dashboards to managers, various team leads and senior leadership as required YOU BRING TO PELOTON Minimum 5 years in Information Security Experience in incident response or threat detection required; we value in-depth knowledge of cloud environments (AWS, GCP, Azure, Kubernetes), SaaS platforms (O365, Google Workspace), or Active directory Strong knowledge o f Incident Response principles and processes Experience with EDR analysis and rule creation Expert experience with SIEM tools or data lakes Experience with dissecting attacker methodologies and techniques and/or EDR tooling Excellent analytical and problem solving skills A learning mindset and excitement for learning new technologies or security areas BONUS Previous experience in cloud-native or tech environments Prior Threat Intel and Threat Hunting experience Programming/Scripting experience Security certifications such as GCTI, GCIH, GCIA, GPEN, etc. #LI-SS1 #LI-Hybrid The base salary range represents the low and high end of the anticipated salary range for this position based at our New York City headquarters. The actual base salary offered for this position will depend on numerous factors including, without limitation, experience and business objectives and if the location for the job changes. Our base salary is just one component of Peloton’s competitive total rewards strategy that also includes annual equity awards and an Employee Stock Purchase Plan as well as other region-specific health and welfare benefits. As an organization, one of our top priorities is to maintain the health and wellbeing for our employees and their family. To achieve this goal, we offer robust and comprehensive benefits including: Medical, dental and vision insurance Generous paid time off policy Short-term and long-term disability Access to mental health services 401k, tuition reimbursement and student loan paydown plans Employee Stock Purchase Plan Fertility and adoption support and up to 18 weeks of paid parental leave Child care and family care d ... (truncated, view full listing at source)