Senior Information Security Analyst
Remote
iSpot.tv competes for the best talent. Our compensation packages consist of salary and equity in one of Seattle’s hottest start-ups, as well as other standard benefits. Most importantly, we provide a really interesting working experience, and the chance to contribute to the success of something great.
What You’ll Be Part Of:
The mission of the Information Security Team at iSpot is to protect customer and corporate data and the provided data analysis through cybersecurity and technical controls. Our team is responsible for detecting and preventing cyber intrusions, and helping the company develop more secure applications and infrastructure. We also work to protect the company from malicious attacks by looking for vulnerabilities in systems, responding to incidents, and mitigating threats
Responsibilities:
- Threat Detection and Incident Response:
- Monitor security alerts, identify potential threats, and respond to security incidents.
- Conduct thorough investigations and root cause analyses of incidents to mitigate damage and prevent future incidents.
- Develop and implement incident response protocols and processes.
- Vulnerability Management:
- Conduct regular vulnerability assessments and work with IT teams to remediate identified vulnerabilities.
- Review and enhance security configurations, monitor patch management, and provide recommendations for hardening systems.
- Risk Assessment and Mitigation:
- Evaluate security risks associated with new technologies, systems, and third-party vendors.
- Perform regular risk assessments and collaborate with internal teams to implement mitigations.
- Ensure compliance with industry standards, regulatory requirements, and internal policies.
- Security Tools Management:
- Administer and optimize security tools (e.g., SIEM, EDR, firewalls, IPS/IDS).
- Ensure tools are updated and effectively utilized for threat detection and prevention.
- Policy and Procedure Development:
- Develop and enforce security policies, procedures, and best practices.
- Work closely with IT and other departments to implement and align these policies across the organization.
- Security Awareness Training:
- Design and lead security awareness training for employees to foster a culture of cybersecurity.
- Regularly update training content based on evolving threats and best practices.
- Continuous Improvement and Research:
- Stay current on emerging security threats, trends, and technologies.
- Provide recommendations for the continuous improvement of the organization's security posture.
Qualifications and Requirements:
- Education: Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).
- Experience: Minimum of 5 years in a cybersecurity role, with experience in security operations and incident response.
- Certifications (preferred): CISSP, CISM, CEH, CompTIA Security+, or equivalent.
- Technical Skills: Proficiency with SIEM, firewall management, IDS/IPS, EDR tools, vulnerability scanners, and security orchestration.
- Soft Skills: Strong analytical, communication, and problem-solving skills; ability to work well under pressure and manage multiple projects.
Preferred Experience:
- Experience with cloud security (e.g., AWS, Azure) and related security frameworks.
- Knowledge of regulatory requirements such as GDPR, HIPAA, and PCI-DSS.
- Familiarity with scripting languages (e.g., Python, PowerShell) for automating security tasks.
Target cash compensation range: $109,350- 137,780 USD Annually
We are committed to providing competitive, market-informed compensation. The cash compensation above includes base salary, variable commission for employees in eligible roles, and annual bonus targets for eligible roles. In addition to cash compensation, all full time iSpotters are eligible to participate in iSpot’s equity plan to receive stock options. Non-exempt roles will also be eligible for (pre-approved) overtime pay. Individual compensation packages are influenced by different factors unique to each candidate, including their skills, experience, qualifications and other job-related reasons.
For more information on total rewards package, go HERE
Hybrid & Flexible Workplace Policy
iSpot supports a hybrid and flexible workplace. Depending on location and work responsibilities, employees may be designated as full-time or part-time office-based or a fully remote employee. A hybrid work schedule indicates that you work in the office some days and work from home other days. The best hybrid workplaces allow for flexibility while also encouraging consistency.
Those local or living in surrounding areas to one of our offices (Bellevue, WA; El Segundo, CA; New York, NY) will work a hybrid schedule, coming into their local office 1-3 days a week. While those in a role, not office-based and located further away from our offices, will work a fully remote schedule. If you have questions regarding exact details of our hybrid & flexible workplace policy, please let your recruiter know and they will discuss with you further.
#LI-Remote
If you don't feel you met every single requirement for the role, don't rule yourself out. Please apply anyway!
iSpot.tv is an equal opportunity employer. All applicants will receive consideration for employment without regard to race, ethnicity, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please contact our HR team.
California Residents applying for positions at iSpot.tv can access our California Consumer Privacy Act here.
ApplyJob Profile
Fully remote Hybrid work schedule Part-time office-based
Benefits/PerksAnnual bonus Equity Equity plan Flexible Workplace Fully remote Hybrid & Flexible Workplace Policy Hybrid work Interesting working experience Overtime pay Salary Standard benefits Stock options
Tasks- Administer security tools
- Conduct investigations
- Conduct vulnerability assessments
- Data Analysis
- Design security training
- Develop incident response protocols
- Develop security policies
- Ensure compliance
- Evaluate security risks
- Monitor security alerts
- Stay current on security threats
Analysis Analytical Cloud Security Communication Cybersecurity Data analysis EDR Firewall Management Flexibility HR IDS Incident Response IPS Operations Organization Policy Development Problem-solving Python Risk Assessment Scripting Security Awareness Training Security orchestration Security tools management SIEM Training Vulnerability Management Vulnerability scanners
Experience5 years
EducationBachelor's degree Computer Science Degree Equivalent Information Security Related Field
CertificationsCEH CISM CISSP CompTIA Security+
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9