Senior Cybersecurity Analyst

Apply

Posted Date
11-07-2022
Job ID
26321
Job Function
Information Technology
REI City
Seattle
REI State
Washington
REI Location
Seattle HQ
Remote Eligible
Yes
Please visit the Covid-19 Hiring Updates before applying
What's cool about this job

At REI, our mission is to inspire, educate and outfit for a lifetime of outdoor adventure and stewardship. As a Senior Cybersecurity Analyst, you will be responsible for protecting the Co-op by following incident detection and response policies and procedures in order to identify, detect, communicate and respond to cybersecurity threats across the enterprise environment. As a Senior Cybersecurity Analyst, you should have a strong comprehension of incident response, work well with other people, and have strong verbal and written communication skills.


This is an exciting time to consider joining the team as we are advancing the technology to build a next generation Cybersecurity Defense Center. You would have the opportunity to contribute your expertise while growing your own skillset in digital forensics and incident response using best in class technology. All while helping to save the planet!


By staying true to our roots, prioritizing work/life balance for our teams, and making commitments to Racial Equity, Diversity, and Inclusion company-wide, we’ve earned a place on Forbes Magazine’s 2022 list of Best Places to Work For Women and have enjoyed recognition from FORTUNE Magazine as a Best Company to Work For over several consecutive years. We have worked to influence legislation through the REI Cooperative Action Fund, a community-supported public charity designed to harness the collective power of the co-op’s members and employees. The Cooperative Action Fund facilitates the building of a more just, equitable, and inclusive outdoor culture. We work hard – and play hard – to earn and keep our reputation for quality and integrity every single day.


•            Participates in security incident response activities.

•            Analyzes threats and current security controls to identify gaps in current defensive posture.

•            Analyze disparate data sources for security incidents.

•            Develop content to improve detective capabilities in SIEM/SOAR.

•            Respond to network security incidents promptly to mitigate damage or restore service.

•            Develop and deliver metrics as requested.

•            Partners with constituents and stakeholders to implement changes to process and technology.

•            Participates in the creation of roadmaps for current security capabilities.

•            Ensures documentation for managed platforms/services are detailed, thorough, and current.

•            Helps promote and develop communications related to campaigns for cybersecurity awareness.

•            Keeps current on organization's business practice, technology, and cybersecurity posture.

•            Makes recommendations on improvements to be made to existing security controls.

•            Participates in rotating after hours on-call schedule.

•            Provide mentorship to junior analysts on the team.


Bring your passion and expertise

This position correlates cybersecurity related data across the entire enterprise, performing Cybersecurity Incident Response Handling and Incident containment and recovery while assisting application owners to understand and implement the security aspects of their applications. The role requires knowledge of system security design and network security best practices, analytical and organizational skills, and the ability to effectively communicate and work independently and as part of a team as required. Models and acts in accordance with REI’s guiding values and mission.


Requirements:


  • 4+ years’ professional experience in Digital Forensics/Incident Response/Cyber Security Operations experience.
  • 6+ years’ experience within an Information Technology function (customer support, networking, software development, etc.)
  • Current holder of at least one recognized security-relevant certification (i.e., CISSP)
  • Expert-level working knowledge and deep understanding of cyber security in at least two or more of the following disciplines: network engineering, Active Directory, public key infrastructure, encryption, DLP, endpoint security, penetration testing, application security, or cloud security
  • Experience with threat modeling (ASVS 4, MITRE ATT&CK, or other)
  • Strong written and oral communication skills; can effectively communicate technical concepts
  • Actively participates and collaborates with others on one's own team and across REI for the achievement of business goals.
  • Flexible in one's viewpoints and positions in order to support the direction taken by others at REI.
  • Executes effectively by using resources efficiently, meeting deadlines, and keeping others informed of work plans and progress toward goals.
  • Clearly conveys and accurately receives information by a variety of methods and in various situations.
#LI-LM1
#LI-Remote
As required by applicable Pay Transparency laws, REI provides a range of compensation for roles that may be hired in locations under these requirements. Factors that may be used to determine your actual salary may include a wide array of factors, including: your specific skills and experience, geographic location or other relevant factors. 

The pay for this role is: $96400 - $154300 per year . 
At REI we offer an enviable work environment that Fortune Magazine has recognized on the "100 Best Places to Work" list since the award's inception – 23 years in a row! Sure, we work hard, but it’s balanced with time off to play—a strategy that works for us as we continue to grow and thrive. Want to enjoy a workplace where you can be yourself, be heard and be respected while having a job that challenges you? This is the place.

With more than 160 retail locations (and growing), REI offers unique competitive benefits to its more than 15,000 employees, including healthcare, gear and apparel discounts, free equipment rentals and challenge grants to help employees reach personal outdoor goals, generous retirement plan contributions, public transit subsidy, adoptions assistance, paid sabbaticals, and more.

REI is an Equal Opportunity Employer

Posting Range
$96400 - $154300 per year
NEW YORK CORRECTION LAW
ARTICLE 23-A, Section 753
LICENSURE AND EMPLOYMENT OF PERSONS PREVIOUSLY CONVICTED OF ONE OR MORE CRIMINAL OFFENSES

§753. Factors to be considered concerning a previous criminal conviction; presumption.

1. In making a determination pursuant to section seven hundred fifty-two of this chapter, the public agency or private employer shall consider the following factors:

(a) The public policy of this state, as expressed in this act, to encourage the licensure and employment of persons previously convicted of one or more criminal offenses.

(b) The specific duties and responsibilities necessarily related to the license or employment sought or held by the person.

(c) The bearing, if any, the criminal offense or offenses for which the person was previously convicted will have on his fitness or ability to perform one or more such duties or responsibilities.

(d) The time which has elapsed since the occurrence of the criminal offense or offenses.

(e) The age of the person at the time of occurrence of the criminal offense or offenses.

(f) The seriousness of the offense or offenses.

(g) Any information produced by the person, or produced on his behalf, in regard to his rehabilitation and good conduct.

(h) The legitimate interest of the public agency or private employer in protecting property, and the safety and welfare of specific individuals or the general public.

2. In making a determination pursuant to section seven hundred fifty-two of this chapter, the public agency or private employer shall also give consideration to a certificate of relief from disabilities or a certificate of good conduct issued to the applicant, which certificate shall create a presumption of rehabilitation in regard to the offense or offenses specified therein.