Security Analyst
Sorry, this job was removed at 11:38 a.m. (MST) on Tuesday, July 10, 2018
By clicking Apply Now you agree to share your profile information with the hiring company.
Salt Lending is expanding our information security team. Security takes a front seat at Salt, and we take the protection of our community very seriously. We work with cutting-edge technologies and are charged with building the systems and processes to secure our customers’ assets.
This position is broad in focus, encompassing security operations, architecture, and engineering and requires the ability to be available during off-hours and a willingness to work through incidents until resolved.
Required experience:
- 5 years working in information security.
- Proficiency with the following:
- Identity and access management, including federation of cloud services.
- Cloud security architecture: IAM, IaaS, PaaS, SaaS services.
- SIEM, IDPS, VPN, and Endpoint protection solutions.
- Writing orchestration plugins to interact with various security systems for automating security response. Ruby, Python, Powershell, or other languages.
- Managing vulnerability assessments, inventory, and patch management.
- Strong incident response skills, for example:
- Ability to track threat actors using OSINT and performing analysis to detect phishing sites.
- Familiarity with web application attacks and the ability to analyze log data to determine threat severity, impact, and recommend defensive enhancements.
- Experience handling targeted attacks from persistent attackers, including spear phishing, malware analysis, and network forensics.
- An interest in all things blockchain.
- Knowledge of applied encryption to protect data at rest and in transit:
- Know how certificate authorities work, and the application of x.509 certificates.
- Using key vaulting and encryption as a service to protect data in applications and at rest in the cloud.
- Experience with IPSec and Client VPNs
Preference given to candidates who have:
- Offensive security experience.
- DevSecOps/WebAppSec experience.
- Experience working with cryptocurrencies, smart contracts, etc.
Education:
- Bachelor degree in technology-related field, or equivalent experience.
- Security-related credentials help, but experience and attitude are more important. We will take into consideration certifications such as GIAC, OSCP, CISSP, etc.
Job type
Full-time. Must be in Greater Denver Area or willing to relocate.
Read Full Job Description