Security Analyst - Vulnerability Management

Company Description

Vuori is re-defining what athletic apparel looks like: built to move and sweat in but designed with a casual aesthetic to transition into everyday life. We draw inspiration from an active coastal California lifestyle; an integration of fitness, creative expression and life. Our high energy fast paced office environment is reflected in the clothes we make. We aim to inspire others to take on all aspects of their lives with clarity, enthusiasm and purpose…while having a lot of fun along the way. We are proud to be an outlet for opportunity and for personal growth and success.

Job Description

The Information Security team is looking for a Security Analyst to lead Vuori's Vulnerability Management program. This role is responsible for operation of vulnerability assessment tools to identify, evaluate, help remediate, and report vulnerabilities across the enterprise. This role performs assessments of systems and networks within the network environment and identifies where those systems/networks deviate from acceptable configurations, standards, or policy. 

Responsibilities include but are not limited to:

• Works independently to scope vulnerable bodies of technologies, identify weaknesses, severity, and impact, and recommend paths to remediation. 
• Support treatment and remediation activities with identified points of contact and system owners 
• Learns advanced Cybersecurity concepts including new and modern threat exploitation techniques of inside and outside bad actors. 
• Contributes to actionable intelligence in the form of reports, notifications, alerts, and briefings. 
• Coordinate and communicate with cross-functional teams throughout the system lifecycle. 
• Motivated to gain knowledge of security techniques through formal and informal cybersecurity training opportunities (such as on-the-job training, mentorship, training courses, knowledge assessments). Contributes to development of relevant applications and systems. 

Qualifications

• 2+ Years experience working as a Security Analyst, Penetration Tester, or similar role. 
• Any of the following security certifications: CEH, Security+, PenTest+, GSEC. 
• Microsoft Certified: Azure Fundamentals, Microsoft Certified: Azure Security Engineer Associate 
• Experience with Vulnerability Management platforms such as Tenable Nessus, Rapid7 InsightVM, or Qualys. 
• Experience with multiple operating systems (Windows, macOS, Linux). 
• Working knowledge/experience with Python, PowerShell, and REST APIs. 
• Knowledge of vulnerability scoring systems (e.g., CVSSv3). 
• EDR solutions such as CrowdStrike or Microsoft Defender for Endpoint. 
• Microsoft Sentinel and other Advanced security capabilities (Defender for 365 and Identity). 
• Strong understanding of Cybersecurity principles and frameworks. 
• Ability to work collaboratively in a team environment. 
• Detail oriented, organized, follow up skills with an analytical thought process. 

Additional Information

Pay Range: From $120,000-$150,000/yr

Benefits:

• Health Insurance
• Paid Time Off
• Employee Discount
• 401(k)

All your information will be kept confidential according to EEO guidelines.