Senior Security Analyst

Company Description

BETSOL is a cloud-first digital transformation and data management company offering products and IT services to enterprises in over 40 countries. BETSOL team holds several engineering patents, is recognized with industry awards, and BETSOL maintains a net promoter score that is 2x the industry average.

BETSOL’s open source backup and recovery product line, Zmanda (Zmanda.com), delivers up to 50% savings in total cost of ownership (TCO) and best-in-class performance.

BETSOL Global IT Services (BETSOL.com) builds and supports end-to-end enterprise solutions, reducing time-to-market for its customers.

BETSOL offices are set against the vibrant backdrops of Broomfield, Colorado and Bangalore, India.

We take pride in being an employee-centric organization, offering comprehensive health insurance, competitive salaries, 401K, volunteer programs, and scholarship opportunities. Office amenities include a fitness center, cafe, and recreational facilities.

Learn more at betsol.com

Job Description

Roles & Responsibilities:

• Triage alerts and analyze security events/logs for threats such as computer viruses, exploits, and malicious attacks.
• Use critical thinking to bring together information from multiple sources to determine if a threat is present.
• Conduct security incident response and investigation.
• Conduct comprehensive security assessments and risk analysis on existing systems and applications.
• Analyze web traffic for suspicious patterns and potential security breaches.
• Perform vulnerability assessments and penetration testing.
• Prepare and provide security documentation and evidence for internal and external audits, ensuring compliance with regulatory requirements and security standards.
• Stay abreast of the latest cybersecurity trends, threats, and technologies to proactively address emerging risks. 

Qualifications

• Bachelor’s degree in computer science, Information Technology, cybersecurity, or a related field.
• 3+ years of relevant experience.
• Proficiency in conducting risk assessments, vulnerability assessments, and penetration testing.
• Experience deploying and maintaining email security systems including anti-phishing, DLP, and encryption technologies to safeguard sensitive data and mitigate threats.
• Hands-on experience with security tools and technologies such as IDS/IPS, SIEM, and Penetration testing tools like Qualys/Tenable.
• Hands-on troubleshooting skills for security alerts related to Firewall (SonicWall & FortiGate), Microsoft Entra ID/O365, Windows and Linux Servers.
• Experience with evidence gathering for any of the compliances like PCI DSS, SOC2, HIPPA and ISO. 
• Good understanding of the IT infrastructure architecture both on-prem and AWS and Azure clouds.

Tools:

• Vulnerability management: Tenable, QualysGuard, Nessus
• Endpoint protection: Sophos, Bitdefender, Trend Micro, Windows Defender
• SIEM: Wazuh, DataDog, Splunk, Microsoft Sentinel, Sumo Logic
• Email Security: Zix email security, Exchange Online Protection, Defender for Office 365
• Compliance standards: ISO ISMS, SOC2, PCI DSS, HIPAA

Preferred:

• Any of the Certifications like - AWS Certified Security - Specialty, Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information System Auditor (CISA), GIAC Certifications, or NIST Cybersecurity Framework (CSF)

Additional Information

NA