Principal Security Operations Analyst

Job Title

Job Description

Meredith Operations Corporation has an opening for a Principal Security Operations Analyst in Des Moines, IA.

The position duties are as follows: Serves as a critical member of the security team, responsible for safeguarding the organization's digital assets. Leverage advanced technical expertise and experience as a subject matter expert for security operations and work with other subject matter experts not only within security but across product development, infrastructure architecture and business teams to ensure the abilities to efficiently and effectively monitor, detect, analyze, and respond to security threats. Play a key role in supporting and implementing security policies, procedures, and technologies to improve the organization's overall security posture. Work closely with the manager and other team members to ensure the confidentiality, integrity, and availability of the organization's information assets. Responsible for helping set and support the technical direction of security, leading in multiple complex technical projects, and partnering with other groups within the organization to deliver tools and services that align with our security roadmaps. Daily duties include: Lead security event monitoring, analysis, and triage activities. Design and implement security measures to enhance the security posture and capabilities for preventing, detecting and responding to security risks. Perform in-depth investigations, respond to security incident activities and coordinate with internal and external parties and services. Conduct forensic investigations to identify the root cause of security incidents and oversee the remediation measures. Develop and refine incident response plans to minimize the impact of security incidents.Participate in on-call rotation for incident response. Monitor security logs and alerts for signs of suspicious activity. Create, manage and solve tickets, ensuring completion within departmental SLAs. Conduct assessments and coordinate penetration tests to identify and mitigate security risks. Analyze security trends and threat intelligence to proactively identify and address emerging threats. Develop and maintain security automation scripts and playbooks to improve the efficiency and effectiveness of security operations. Design, develop and maintain security monitoring dashboards, alerts and reports. Evaluate, recommend and implement security tooling and technical controls for detection, prevention and response for various threats. Implement and oversee the security operations tooling (e.g. SIEM, IDS/IPS, EDR, etc.) to monitor and analyze security events. Proactively identify and analyze emerging threats and vulnerabilities. Provide technical guidance and mentorship to other security analysts. Work closely with IT, engineering, operations and other stakeholders to ensure effective collaboration. Communicate security risks and recommendations to management and stakeholders. Assist in the development and delivery of security awareness training programs. Collaborate with other teams to ensure security is integrated into all aspects of the organization. Develop and maintain security documentation and procedures. Develop and implement security policies, procedures, and standards. Conduct security awareness training for employees.

The position requires a Bachelor's degree in Computer Science, Information Security, Applied Information Technology, a related field or foreign equivalent, plus 5 years of experience in any occupation where cybersecurity experience with a focus on security operations and incident response was gained. Experience must include: 3 years of experience with security principles, vulnerabilities, threats, and cloud security (AWS, GCP, or Azure); 4 years of experience with Security Operations; 4 years of experience with security tools including SIEM, IDS/IPS, and EDR; 4 years of experience with incident response and forensic investigations; 3 years of experience with OS (Linux, Windows, Mac) Security and Compliance; 3 years of experience with G-Suite, GWS Administration, MITRE ATT&CK,NIST CSF, SOX, and PCI-DSS; 2 years of experience with scripting using Python, Powershell, and Bash; and 2 years of experience with automation of incident investigation and response (SOAR).

This role offers remote work flexibility; however, employees residing within commutable distance of our New York, Des Moines, Birmingham, Los Angeles, Chicago, or Seattle offices are expected to work onsite 3 times per week.

Offered Wage: $131,206

It is the policy of People Inc. to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, the Company will provide reasonable accommodations for qualified individuals with disabilities.Accommodation requests can be made by emailing hr@people.inc.

The Company participates in the federal E-Verify program to confirm the identity and employment authorization of all newly hired employees. For further information about the E-Verify program, please click here: https://www.e-verify.gov/employees