IT Security Analyst
Joining Cyberhaven offers a unique opportunity to be at the forefront of revolutionizing data protection through cutting-edge AI technology. Cyberhaven is dedicated to overcoming the challenges faced by traditional data security products, ensuring robust protection of critical data against insider threats in a rapidly evolving work environment. With a unique approach to data lineage, tracing data from its origin for better classification and protection, Cyberhaven combines the functionality of traditional data protection security tools into a single, more effective solution. This role not only allows you to contribute to the advancement of cloud and data security but also places you within a team of security and product professionals passionate about transforming the way data is protected.
We are looking for an IT Security Analyst to operate and maintain security solutions for Cyberhaven with a focus on corporate IT, vulnerability management and incident response.
What You'll Do:
- SaaS Security & Management: Support the integration and management of SaaS applications. Ensure secure and efficient operations across our platforms.
- Security Compliance and Frameworks: Assist in implementing and managing frameworks like SOC2, NIST 800-53, and ISO 27001. Participate in compliance activities and audits to ensure all systems meet security standards.
- Device Management: Help manage mobile devices and desktops using JAMF and Intune, ensuring secure and effective operation of corporate devices.
- Google Workspace Security & Identity: Assist in the administration and secure configuration of Google Workspace, including enforcement of least privilege and contextual authentication
- Insider Risk and Data Loss Prevention (DLP): Support initiatives for insider risk management and data loss prevention, monitoring activities that pose a risk to company data.
- Vulnerability Management: Participate in identifying, assessing, and mitigating vulnerabilities within the organization’s systems and networks.
- Security Operations: Engage in security operations including monitoring, incident response, and security assessments. Participate in the response to cybersecurity incidents.
- Vendor Management: Assist with the security assessments of vendors and maintain relationships with security service providers.
- Security Awareness: Support the development and delivery of security awareness training programs to promote a security-aware culture.
- IT Services: Assist with end user requests and execute changes with a security-first mindset
Who You Are:
- Educational & Experience: You hold a Bachelor’s degree in IT/Cybersecurity and/or relevant certifications & experience. You have at least 2 years of experience in an IT Security role.
- Security Knowledge: You have a working knowledge of IT security best practices and standards such as SOC2, NIST 800-53, and ISO 27001.
- Technical Skills: You have basic knowledge of managing SaaS tools, JAMF, Intune, and Google Workspace. You can navigate both MacOS and Windows logs and security events. You can analyze a CVE and understand its risk to a given environment.
- Security Skills: You are familiar with incident response methodologies and can execute security investigations from end to end. You have experience gathering evidence for incidents and audits while maintaining proper chain of custody.
- Analytical Abilities: You have strong analytical skills and attention to detail help you identify and address security threats effectively.
- Communication Skills: You possess excellent verbal and written communication skills, capable of explaining complex security issues in an understandable manner.
- Team Player: You are able to work collaboratively in a team environment and wear multiple hats effectively.
What you can count on:
- Competitive salary and stock options
- Health benefits – 100% paid for you and your family
- Flexible time off (paid)
- Career advancement opportunities
Cyberhaven is the AI-powered data security company revolutionizing how companies detect and stop the most critical insider threats to their most important data. We've raised over $140M from leading Silicon Valley investors like Khosla and Redpoint. Cyberhaven is also backed by founders, executives, and security leaders who have built transformational technologies at Crowdstrike, Nutanix, Palo Alto Networks, Meta, Google, Slack, and others.
Our company values are:
- Think Deeply and Use Sound Reasoning
- Step Up and Take Ownership
- Continuously Learn and Grow
- Obsess About Customers
- Enjoy the Journey
- Reach for Ambitious Goals
Cyberhaven is committed to creating a diverse environment and is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.