TheSenior
(Tier2)CTOCAnalystisakeyplayerinmonitoring,analyzing,andrespondingtosecurityeventsacrosstheorganization.Thisroleinvolveshandlingcomplexincidents,conductingthreathunts,andsupportingallphasesoftheincidentresponselifecycle.TheSenior Analystwillalsomentorjunioranalysts,providingday-to-dayguidanceonanalysistechniques, toolutilization,andbestpracticesforincidentresponsetobuildastronger,moreresilientCTOC team.Additionally,thisroleincludesmanagingmoderatelylargeprojects,withminimal supervision,andemployingcreativeproblem-solvingtoaddressawidevarietyofsecurity challenges.ReportingtotheCTOCManager,youwillcollaboratewithcross-functionalteams andexternalpartners,ensuringalignmentwithindustrystandardssuchasNIST,MITRE ATT&CK,andCISControls.
What you do
- 24/7SecurityEventMonitoring:Activelymonitorandrespondtosecurityalertsandincidents,conductingbothinitialtriageandadvancedanalysistoassessescalationneeds.Participateina24/7responserotation.
- IncidentResponseandThreatHunting:Executecontainment,eradication,andrecoveryactionsforincidents,andconductproactivethreathuntingbasedonthreatintelligenceanddarkwebinsightstoidentifypotentialthreatsacrosstheenvironment.
- MentorshipofJuniorAnalysts:Provideday-to-daymentorshiptojunioranalysts,enhancingtheirtechnicalskills,analysistechniques,andunderstandingofthreatlandscapes.Conducttrainingsessions,reviewtheirwork,andprovideactionablefeedbacktoboostteameffectiveness.
- AdvancedAnalysisandDocumentation:Performin-depthrootcauseanalysisonsecurityincidents,documentfindingscomprehensively,andofferactionableinsightstosupportcross-functionalteamsindecision-making.
- ToolOptimizationandAutomation:LeverageandoptimizeSIEM,EDR,andsecurityorchestrationtoolstoimprovedetectionandresponseefficiency.Identifyandimplementautomationopportunitiestostreamlineroutinetasks,enhancingoverallCTOCproductivity.
- ThreatIntelligenceIntegration:Analyzeandintegratethreatactortactics,techniques,andprocedures(TTPs)intoCTOCprocesses,focusingonhigh-prioritythreatssuchasransomware,insiderthreats,andadvancedpersistentthreats(APTs).EngagewithMISP,ISACs,andthreatintelligencesourcestostayinformedonevolvingthreats.
- CollaborationandInformationSharing:Participateininformation-sharinginitiativeswithpeers,ISACs,andotherpartnerstoenhancesituationalawareness,improveresponsestrategies,andstrengthencollaboration.
- PlaybookDevelopmentandSOPEnhancement:AssistincreatingandrefiningincidentresponseplaybooksandSOPs,ensuringalignmentwithNISTCSF,CISControls,andotherframeworkstobolsterCTOCresilienceandeffectiveness.
- ProjectLeadershipandAutonomy:Managemoderatelylargeprojectsindependently,fromplanningtoexecution,ensuringtimelydeliveryofoutcomes.Operateeffectivelywithminimalsupervision,demonstratinginitiativeandaccountability.
- Post-IncidentReviewandContinuousImprovement:Leadpost-incidentreviewstoidentifylessonslearned,suggestprocessimprovements,anddrivechangesthatcapabilities.responsefutureenhance
Why you're a fit
- Experience:3-5yearsininformationsecurity,preferablywithina24/7CTOCorsimilarenvironment,monitoringcloud-nativeinfrastructure.
- TechnicalSkills:ProficiencywithoperationalsecuritycontrolssuchasSIEMplatforms,EDR,IDS/IPS,DLP,anddataanalysis.Experiencewiththreatintelligenceplatformsandsecurityorchestrationtoolspreferred.
- KnowledgeBase:Comprehensiveunderstandingofcybersecurityprinciples,networkprotocols,andregulatorycompliance(e.g.,PCI,FTCSafeguards).FamiliaritywithframeworkssuchasMITREATT&CK,CISControls,andNISTCSF.
- MentorshipandLeadershipSkills:Provenexperiencementoringjunioranalysts,focusingontechnicalskilldevelopmentandenhancinganalyticalthinking.
- Certifications:GCED,GCIH,GCIA,CISSP,orequivalentcertification(s)ispreferred.
Nice to haves
- Abilitytocommunicatecomplexsecurityconceptsclearlytostakeholdersatalllevels.
- Strongorganizationalskills,adaptability,andtheabilitytomakesounddecisionsunderpressure.
- Demonstratedintegrity,commitmenttocontinuousimprovement,andtheabilitytohandleawidevarietyofissuescreativelyandindependently.
Education
- Bachelor'sdegreeinInformationSecurity,ComputerScience,orarelatedfield,orequivalentworkexperience.
- Thisroleofferstheopportunitytoapplyadvancedcybersecurityexpertise,mentorjuniortalent,leadprojectsindependently,andcontributetothestrengthandadaptabilityoftheCTOCinarapidlychangingthreatenvironment.
Check out our Avant Blog!
We believe that a diverse set of backgrounds and experiences helps us create the most innovative solutions for our customers. We invite you to apply to our positions even if you do not meet 100% of the qualifications listed in the description. If you’re passionate about our mission and aligned to our values, we hope you’ll come contribute to our awesome culture.
Why Avant is the place for you:
At Avant, we believe our values make a difference:Authenticity. We show up to work as our whole selves and make sure others can too.Collaboration. We can only succeed when we do so as a team.Problem-Solving. The harder the problem, the more satisfying the solution.Customer. We are all owners of the customer experience.Initiative. Plan. Adapt. Get Sh!t Done.
We believe that great ideas come from anyone and anywhere, that everyone is an owner who drives change, and that we have more fun when we work together. We're problem solvers who love collaborating with intelligent and highly-motivated people to reshape the face of digital banking. Avant offers terrific perks and benefits, fun social events with employees who actually like hanging out together, and a flexible growth environment where trying your hand at new projects and being the active owner of your career path is encouraged and supported.
Some of our benefits include:
Choice of great Medical, Dental, and Vision Insurance Plan options
401(k) Match
Flexible Paid Time Off
Flexible Work Environment
Generous Paid Parental Leave
Lunch Allowance (Fooda) and In-office Snacks
WFH Stipends for our Remote Employees
Access to LinkedIn Learning for Professional Development
No Meeting Wednesdays - (a.k.a. planned time to Get Sh!t Done)
Summer Fridays
Fun In-Office and Virtual Social Events
And who doesn’t love the swag
