Security Analyst Security Operations Team

Job Description

Hi there!
We are Semrush a global IT company developing our own producta platform for digital marketers. New stars are born here so dont miss your chance.
This is our

Security Analyst role for those who strive to implement functional processes and drive them to full completion.

Tasks in the role

• Responding to security incidents investigating and analyzing them and coordinating with other teams such as IT network operations and management to ensure a timely and effective response to security incidents.
• Developing and refining SIEM correlation rules designing and maintaining playbooks configuring any necessary exceptions and documenting all changes and implementations for future reference.
• Conducting research on emerging threats vulnerabilities and security technologies preparing analytical research and potential risk assessments.
• Work with vulnerability analytics to identify potential vulnerabilities analyze their impact and prioritize actions.

Requirements

Who we are looking for

• Bachelors degree in Computer Science Information Technology Cybersecurity or a related field.
• Minimum one year of experience as an L1/L2 SOC Analyst or any other similar role with a focus on Security/IT operations and incident response.
• Understanding of the basic principles of security experience with the tactics and techniques used by attackers main attack vectors and methods to detect them (OWASP TOP10 CVE MITRE ATT&CK).
• Knowledge of essential security measures for web applications including setting appropriate cookie security flags to protect against attacks and understanding the SameOrigin Policy to restrict unauthorized interactions. Familiarity with XHR and CORS.
• Basic understanding of prevalent web security threats such as CrossSite Scripting (XSS) CrossSite Request Forgery (CSRF) and SQL injection. Ability to recognize them in applications logs/payloads.
• The ability to respond to and investigate moderately complex incidents with playbooks which require communication with other teams.
• Can perform complex analytical tasks requiring research from multiple unclear information data sources.
• Familiar with modern development workflows understanding terms like repository library and pipeline. Knows what Git Ansible and Docker are.
• Understands the basics of log collection and has experience in developing correlation rules (preferably in Splunk).
• It is crucial for an analyst to take initiative make decisions and solve problems without constant supervision. We expect that you can at least plan your day and prioritize tasks.
• As a SOC Analyst effective communication is key. You need to ask questions and sometimes explain complex security issues to colleagues employees and to people who may not be techsavvy.
• The cybersecurity landscape is continuously evolving with new threats and vulnerabilities emerging constantly. Therefore its essential to have a h2 ability to learn and process new information on a daily basis.

They say there are no perfect candidates but that might well be you if

• You have experience with vulnerability management which is greatly advantageous as it boosts your superhero powers to spot and squash potential security threats.
• Having experience in finding and exploiting vulnerabilities through penetration testing or code reviews is like being a detective in a mystery novel but instead of looking for the murderer youre looking for the bugger.
• If youve navigated through significant security incidents before thats a notable achievement! After all youve already danced with the flames and lived to tell the tale.
• Knowing Python and automation skills is like having a secret decoder ring for machine language. If you want to survive the upcoming AI revolution you better start speaking their language.
• Since were on the defense being familiar with Threat Intelligence (TI) is beneficial. Its like playing hide and seek but knowing all the hiding spots before the game even starts.
• You share our common values: Trust as we prefer to speak up and be our true selves; Sense of Ownership as its not worth wasting time on something you dont believe in; and enthusiasm for Constant Change as we are always looking to make things better.

A bit about the team

You can get to know the team better at one of the interviews but some brief information about future colleagues will be useful now.

We are an actively growing security team using modern security approaches and tools. We are proud of the high level of responsibility and results of our work. It motivates us to grow and contribute more to the companys success!

Semrush Security Department contains:

• Application Security Team
• Infrastructure Security Team
• Enterprise Security & Compliance Team
• Security Operations Team

As Semrush continues to grow so does our demand for simplifying and automating workflows to meet the needs of our internal teams partners and external users.

We will try to create all the right conditions for you to work and rest comfortably

• Its up to you to decide what work format works best for you. You can #wfo #wfh or mix both.
• Flexible working day start.
• Health insurance coverage.
• Working from a modern coworking space (or working from home).
• Corporate events.
• Unlimited PTO.
• Hobby benefit.
• Training courses conferences.
• English and Spanish courses.
• Gifts for employees.

Finally a little more about our company

Weve been developing our product for 15 years and have been awarded G2s Top 100 Software Products Global and US Search Awards 2021 Great Place to Work Certification Deloitte Technology Fast 500 and many more. In March 2021 Semrush went public and started trading on the NYSE with the SEMR ticker.

users in America Europe Asia and Australia have already tried Semrush and over 1000 people around the world are working on its development. The Semrush team is constantly growing.

Semrush is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate based on race religion creed color national origin sex pregnancy sexual orientation gender identity gender expression age ancestry physical or mental disability or medical condition including medical characteristics genetic identity marital status military service or any other classification protected by applicable local state or federal laws. All employment decisions are based on business needs job requirements merit and individual qualifications.