Senior Security Analyst
US-Remote
Who we are
Are you passionate about innovating at the intersection of technology and personal security? At Pindrop, we recognize that the human voice is a unique personal identifier, increasingly susceptible to sophisticated fraud, including the threat of deepfakes. We're leading the way in developing cutting-edge authentication, fraud prevention, and deepfake detection. Our mission is to provide seamless and secure digital experiences, safeguarding the most personal aspect of our identity: our voice. Here, you'll be part of a team driven by values of Innovation, Customer Advocacy, Excellence, and Impact.
We're not just creating a safer digital landscape by fortifying trust and integrity with those we serve, we’re also building a dynamic, supportive workplace where your contributions make a real difference.Headquartered in Atlanta, GA, Pindrop is backed by world-class investors such as Andreessen-Horowitz, IVP, and CapitalG.
What you’ll do
- Represent security in internal and external meetings to discuss security analysis, findings and security/compliance responses.
- Review past incidents and identify attack trends. Finetune and reconfigure alerts based on prior incidents to improve detection.
- Actively participate in the development, documentation, and implementation of new processes to expand and mature capabilities for the organization.
- Identify and track internal and external assets to identify potential risks. Communicate these risks to internal and external stakeholders and build a plan of action.
- Develop, update, and maintain a repository of cybersecurity threat information that may be used in conducting risk assessments and reports on cyber risk trends.
- Build and maintain tools for automation of security events and reporting. Optimize and reconfigure tools to improve security processes.
- Implement, maintain and monitor IDS/IPS rule sets, alerts and reports.
- Perform investigations and improve detection processes on a wide variety of security events from various sources to determine whether they pose a threat to Pindrop
- Identify, research and develop internal and open source tools used to improve security and threat intelligence workflows to support Pindrop's unique environment
- Collaborate with internal and external teams to answer customer questionnaires, compliance audits.
Who you are
- You are, hands-on problem solver that excels in dynamic fast paced environments, curious and always looking to learn., highly interested in how things work and gets excited by threat modeling and new exploits
- You are resilient in the face of challenges, change, and ambiguity
- You are optimistic and believe that you can make a problem into a solution
- You are resourceful, excited to uncover innovative solutions and teach yourself something new when needed
- You take accountability, do the things you say you’ll do, under-promise and over-deliver
- You are nimble and adaptable when priorities change and continue to see the “forest through the trees”
Your skill-set:
- 2+ years of security monitoring and incident response experience
- Must have experience with Linux, Mac, and knowledge of Windows
- Experience in configuration and maintenance of endpoint security solutions, eg. Crowdstrike, SentinelOne, Carbon Black.
- Experience with security tools including SIEM, Metasploit, Splunk, Wireshark
- In-depth knowledge of SIEM log ingestion and alert creation.
- Hands-on experience with TCP/IP and networking
- Ability to write scripts/code using Python or other scripting languages for automation
- Knowledge of incident response and investigation tools and techniques
- Experience with security operations in cloud platforms such as AWS, GCP, Azure etc.
- Experience responding to security questionnaires and customer questions
Nice to have:
- Experience with forensic analysis tools (commercial and open-source) and procedures desired
- Experience with threat feeds and threat intelligence (e.g., STIX, TAXII, IOCs) desired
- Experience with cloud logging applications, AWS Cloudtrail, VPC Flow Logs, Lambda, etc.
What’s in it for you:
As a Pindropper, you join a rapidly growing company making technology more human with the power of voice. You will work alongside some of the best and brightest. We’re a passionate group committed to excellence - but that doesn’t stop us from enjoying the journey as a team with chess and poker tournaments, catered lunches and happy hours, wellness programming, and more. Because we take our jobs seriously, we add in time for rest with Unlimited PTO, Focus Thursday, and Company-wide Rest Days.
Within 30 days:
- You’ll focus on training and learning the basics of the company. This includes the company’s systems, procedures that should be adhered to, products and services, software, vendors, and/or clients.
- You’ll have been introduced to your team, colleagues and have 1:1’s to assimilate into the company culture.
- You will have the opportunity to learn the product in and out through training and a variety of resources. This then means that the majority of the things-to-do should fall along the lines of attending training sessions, gaining and mastering product knowledge, learning major corporate systems, meeting the members of your team, and getting the necessary access.
Within 60 days:
- You’ll have a good grasp of your working environment and you can now move onto more advanced tasks.
- You will start studying the best practices in the industry, create goals, meet up with your supervisor and get feedback on your performance, and build meaningful relationships with your co-workers along with taking on proper job responsibilities.
Within 90 days
- You’ll demonstrate a firm grasp of the company and confidence in your job function. Thus, you should be preparing to make breakthrough contributions to your team or department.
- The contributions may include finding new ways to improve security or coming up with ideas to save the company money. Instead of only identifying problems in the company, you should be at the forefront of brainstorming possible solutions.
- You will be able to spearhead new initiatives and collaborate with other teams for the good of the company.
What we offer
As a part of Pindrop, you’ll have a direct impact on our growing list of products and the future of security in the voice-driven economy. We hire great people and take care of them. Here’s a snapshot of the benefits we offer:
- Competitive compensation, including equity for all employees
- Unlimited Paid Time Off (PTO)
- 4 company-wide rest days in 2024 where the entire company rests and recharges!
- Generous health and welfare plans to choose from - including one employer-paid “employee-only” plan!
- Best-in-class Health Savings Account (HSA) employer contribution
- Affordable vision and dental plans for you and your family
- Employer-provided life and disability coverage with additional supplemental options
- Paid Parental Leave - Equal for all parents, including birth, adoptive & foster parents
- One year of diaper delivery for your newest addition to the family! It’s our way of welcoming new Pindroplets to the family!
- Identity protection through Norton LifeLock
- Remote-first culture with opportunities for in-person team events
- Recurring monthly home office allowance
- When we need a break, we keep it fun with happy hours, ping pong and foosball, drinks and snacks, and monthly massages!
- Remote and in-person team activities (think cheese tastings, chess tournaments, talent shows, murder mysteries, and more!)
- Company holidays
- Annual professional development and learning benefit
- Pick your own Apple MacBook Pro
- Retirement plan with competitive 401(k) match
- Wellness Program including Employee Assistance Program, 24/7 Telemedicine
What we live by
At Pindrop, our Core Values are fundamental beliefs at the center of all we do. They are our guiding principles that dictate our actions and behaviors. Our Values are deeply embedded into our culture in big and small ways and even help us decide right from wrong when the path forward is unclear. At Pindrop, we believe in taking accountability to make decisions and act in a way that reflects who we are. We truly believe making decisions and acting with our Core Values in mind will help us to achieve our goals and keep Pindrop a great place to work:
- Audaciously Innovate - We continue to change the world, and the way people safely engage and interact with technology. As first principle thinkers, we challenge standards, take risks and learn from our mistakes in order to make positive change and continuous improvement. We believe nothing is impossible.
- Evangelical Customers for Life - We delight, inspire and empower customers from day one and for life. We create a partnership and experience that results in a shared passion. We are champions for our customers, and our customers become our champions, creating a universal commitment to one another.
- Execution Excellence - We do what we say and say what we do. We are accountable for making the tough decisions and necessary tradeoffs to deliver quality and effective solutions on time.
- Win as a Company - Every time we win, we win as a company. Every time we lose, we lose as a company. We break down silos, support one another, embrace diversity and celebrate our successes. We are better together.
- Make a Difference - Every day we have the opportunity to make a positive impact. We operate with dedication, passion, and uncompromising integrity, creating a safer, more secure world.
Not sure if this is you?
We want a diverse, global team, with a broad range of experience and perspectives. If this job sounds great, but you’re not sure if you qualify, apply anyway! We carefully consider every application and will either move forward with you, find another team that might be a better fit, keep in touch for future opportunities, or thank you for your time.
Pindrop is an Equal Opportunity Employer
Here at Pindrop, it is our mission to create and maintain a diverse and inclusive work environment. As an equal opportunity employer, all qualified applicants receive consideration for employment without regard to race, color, age, religion, sex, gender, gender identity or expression, sexual orientation, national origin, genetic information, disability, marital and/or veteran status.#LI-Remote