Senior InfoSec Analyst

MongoDB’s mission is to empower innovators to create, transform, and disrupt industries by unleashing the power of software and data. We enable organizations of all sizes to easily build, scale, and run modern applications by helping them modernize legacy workloads, embrace innovation, and unleash AI. Our industry-leading developer data platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available in more than 115 regions across AWS, Google Cloud, and Microsoft Azure. Atlas allows customers to build and run applications anywhere—on premises, or across cloud providers. With offices worldwide and over 175,000 new developers signing up to use MongoDB every month, it’s no wonder that leading organizations, like Samsung and Toyota, trust MongoDB to build next-generation, AI-powered applications.

The MongoDB Information Security team is seeking a motivated Information Security Analyst to join us. The ideal candidate will have a vast background in security, including but not limited to, experience in corporate environments, incident response, systems, applications, and an understanding of cloud environments. 

This is an exciting opportunity to be a key member of our Information Security Operations team. We are an end to end Security Operations team. You will be responsible for solving technical and administrative problems, reducing risk, and building trust. You will also be responsible for maintaining security solutions, tooling, alerting, and automation workflows. The team aims to seek challenges, analyze alerts, establish trust across the team and greater org. 

We are looking to speak to candidates who are based in Warsaw for our hybrid working model.

We are looking for someone with the following skills

• Displayed experience in security operations, incident response, and threat hunting disciplines
• Practical knowledge of common threats and exposures to web applications and services
• Experience with detection / incident tooling or automation workflow optimization
• Proficient in cloud ecosystems, including tools, technologies, and how to secure them
• Proven experience in operating & maintaining SIEM, SOAR, and EDR; developing queries and alerts
• Accustomed to performing investigations, analysis and communicating the events or incidents to proper stakeholders clearly
• Experience deploying tooling to advance investigation tactics and incident response across different environments ie; corporate environments and cloud environments
• A strong understanding of MacOS, Linux, and Windows security
• Love to learn; you are motivated to learn about security and tinkering
• Experience interfacing with technical and non-technical individuals. Ability to adjust the level of technicality depending on the audience
• GIAC, CEH, GSOC certificates

Position Expectations

• Drive maturity of Operations by suggesting overall improvements ie; playbooks, detections, automations, and gaps critical in working with other teams and departments
• Leverage and maintain automation workflows, and enriching discoveries and detections
• Utilizing analysis frameworks (ie; MITRE) to better understand gaps, and work towards closing those gaps 
• Maintain, improve, and configure Information Security Operations tooling and alerts
• Develop and maintain well written documentation and playbooks
• Work cross functionally with multiple teams deploying tooling, establishing new processes, or improving existing processes
• Ability to quickly learn new Information Security concepts and adapt to a modern, fast-paced organization
• Mentor and train others on the team to level up. We will all grow together
• Participate in weekly on-call rotations

Success Measures

The Information Security Analyst will be successful in this role when they can execute the following strategic tasks

3 Months

• You will have familiarized yourself with much of the Information Security Operations documentation hub, and met everyone on the team. You will have the opportunity to identify any gaps and make improvements, leading to an understanding of the Security Operations departments process

6 Months

• You will have a foundational understanding  of the data and tooling the entire Information Security team uses. By now you should be taking ownership of tasks. You would have fully scoped and executed a small project by now, that has positively impacted the company security posture

12 Months

• Fully comprehensive understanding of our program, response process and operation of tooling, as well as workflow automation. You should be considered a subject matter expert in the realm of investigations for corporate security operations

To drive the personal growth and business impact of our employees, we’re committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees’ wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it’s like to work at MongoDB, and help us make an impact on the world!

MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.

MongoDB is an equal opportunities employer.

Req ID - 1263065540