Security Analyst

Job Description

The Security Analyst is responsible for implementing, maintaining, monitoring, and managing email & messaging security capabilities. Under direction from the Director and in line with stated strategic objectives, the Engineer will conduct industry research, explore the products available on the market to meet the requirements, OR devise a plan to build a solution internally to deliver email security in accordance with the organization’s architectural designs, best practices, and regulatory or compliance requirements. As risks change, the security engineer is responsible for recommending modifications and enhancements to ensure the organization is evolving with the threat landscape.  

The Analyst is also responsible for ongoing incremental engineering required to continuously achieve the best coverage and operation of the technology, and as the SME (Subject Matter Expert) and will assist in troubleshooting system degradations and outages as required. The Engineer will function as the SME to propose and implement creative solutions to eliminate malicious (e.g. phishing) and unwanted email (e.g. spam) threats.  The Engineer will provide technical assistance, solution design, and hands on development support for security controls for enterprise email security gateways (e.g. maintenance, configuration, and policy management) and resolution of incidents impacting email.  The Engineer may also provide secondary support to Cloud Access Security Brokers (CASB), Data Loss Prevention (DLP), and email encryption.

ESSENTIAL FUNCTIONS:   Reasonable accommodations may be made to enable individuals with disabilities to perform the essential duties.

• Develop, deploy & support Email security software, tools, and technology capabilities for a hybrid-cloud environment utilizing Proofpoint and Microsoft Exchange Online.
• Advanced event monitoring and analysis of network traffic, endpoint indicators, cloud hosted systems, and various log sources to identify the threat, assess the potential damage, and recommend countermeasures.
• Analysis and implementation of perimeter email security and email routing solutions 
• Provide architecture assurance on messaging initiatives
• Implement email security standards such as DKIM, SPF and DMARC
• Maintain email security infrastructure, providing stability by developing tools, policies, processes, and procedures for the operations teams
• Provide a secure environment, by implementing controls to manage and mitigate risks 
• Develop automated metrics reporting capabilities
• Create, review, maintain and update documentation including - Documenting & Publishing fixes in central knowledge base
• Work with global colleagues to provide globally consistent processes and solutions
• Investigate & Troubleshoot root causes when escalated from operations
• Escalate and liaise with additional internal/external groups when required
• General frequent use and application of cyber technical standards, principles, theories, concepts
• Assist the Incident Response Team with email & messaging related issues as they occur. This may include involvement outside of regular work hours.
• Perform email e-discovery requests as needed.

Supervisory Responsibilities: This position has no formal supervisory responsibilities.

.

MINIMUM REQUIRED QUALIFICATIONS:   

• Bachelor’s degree in engineering, computers, or a technical field AND
• Five (5) years of experience in information security or email administration OR
• Equivalent combination of education and experience

Certificates and Licenses: None required.

OTHER REQUIRED QUALIFICATIONS: 

• Must demonstrate strong technical qualities, preferably within a distributed cloud environment. 
• Excellent understanding and experience architecting and implementing email security solutions
• Prior experience managing Proofpoint technologies
• Prior experience managing Microsoft cloud email & messaging security technologies
• Prior experience with Proofpoint, Wombat, etc. phishing reporting technologies
• Experience with email encryption implementations with PKI integration &/or Proofpoint SecureMail.
• Implementation experience with emerging email controls such as DMARC
• Prior experience working with Data Loss Prevention (DLP) solutions
• Strong general networking background (traditional & cloud)
• Knowledge of open-source MTA implementations
• Prior experience in the education sector preferred.
• Prior experience with AWS preferred.
• Microsoft Office (Outlook, Word, Excel, PowerPoint, Project, Visio, etc.); Web proficiency.
• Ability to travel 5% of the time
• Ability to clear required background check

DESIRED QUALIFICATIONS:  

• Prior work experience in a regulated environment. 

• Experience with Linux, MAC, and Windows operating systems
• Experience with Office 365 Advanced Threat Protection
• Ability to establish good working relationships with team members, colleagues, and external organizations. 
• Demonstrable ability to develop value-driven & budget conscious security capabilities
• Holds one or more including: Microsoft Certified: Azure Security Engineer Associate, Security +, CISSP, etc.  SIEM or Incident Response focused certifications preferred.

WORK ENVIRONMENT:  The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• This is a home-based position

Compensation & Benefits: Stride, Inc. considers a person’s education, experience, and qualifications, as well as the position’s work location, expected quality and quantity of work, required travel (if any), external market and internal value when determining a new employee’s salary level.  Salaries will differ based on these factors, the position’s level and expected contribution, and the employee’s benefits elections.  Offers will typically be in the bottom half of the range.

• We anticipate the salary range to be $66,379.50- $170,037.60. The upper end of this range is not likely to be offered, as an individual’s compensation can vary based on several factors. These factors include, but are not limited to, geographic location, experience, training, education, and local market conditions. Eligible employees may receive a bonus. Stride offers a robust benefits package for eligible employees that can include health benefits, retirement contributions, and paid time off.

The above job is not intended to be an all-inclusive list of duties and standards of the position. Incumbents will follow any other instructions, and perform any other related duties, as assigned by their supervisor.  All employment is “at-will” as governed by the law of the state where the employee works.  It is further understood that the “at-will” nature of employment is one aspect of employment that cannot be changed except in writing and signed by an authorized officer. 

Job Type

The above job is not intended to be an all-inclusive list of duties and standards of the position. Incumbents will follow any other instructions, and perform any other related duties, as assigned by their supervisor. All employment is “at-will” as governed by the law of the state where the employee works.  It is further understood that the “at-will” nature of employment is one aspect of employment that cannot be changed except in writing and signed by an authorized officer.

Stride, Inc. is a Federal Contractor, an Equal Opportunity/Affirmative Action Employer and a Drug-Free Workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected Veteran status age, or genetics, or any other characteristic protected by law.

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)