Security Operations Analyst

United States (Remote)
Trust & Technology – Security /
Contract /
StrongDM lives by a very simple principle: Put People First. 

That means we do the right things by our colleagues, employees and customers. It also means developing products and solutions that improve the lives of our customers. Our commitment to People First is one of the reasons our year-over-year customer retention rate is an industry-leading 98%. Once a customer, forever a fan. That's our goal. 

When you work at StrongDM, you work with people who care, technology that works, and customers who are obsessed with both the product and the support they receive. 

If you ask any employee of StrongDM, you’ll find that our values truly are our guiding principles in everything we do–from how we make decisions to how we treat each other. That’s because these values represent the foundation for our culture and who we are as a company. It sounds cliche, we know. But trust us—we’re onto something good. G2 can confirm. ✔️

1. We embrace the mission
2. We pursue mastery
3. We are people first
4. We are smarter together

These are the values we seek to cultivate as an organization. They inform not just how we behave as individuals and teams, but also the unspoken traits of the candidates we hire and perspectives we take when helping and supporting customers. Speaking of candidates, we’re so glad you’re here! If this sounds like an environment you’d thrive in, read on.

So you love looking at logs, seeing strange things, and……get to your happy place by figuring out just what happened there? This is your chance to make a difference at a security company that is making a difference. You’ll be responsible for monitoring our security operations processes and workflows, continuous monitoring of events, and testing our employees to make sure they know what to do when nefarious things happen.   

What You’ll Do:

    • Work within Splunk, Wiz, Tenable, and all our other security platforms to monitor activities, set up alerting, respond to events, and report up to management on trends and risks
    • Support security incident handling, IR drills & tests, and other investigations
    • Manage day to day ops of our internal phishing program, including investigating reported phish, providing periodic reports, and setting up training campaigns to test your fellow users
    • Apply your knowledge of security and compliance frameworks to StrongDM’s set of controls
    • Write playbooks, scripts, and automations for as many of your tasks as possible. The more you automate, the more time you’ll have to work on other cool shit
    • Raise any security gaps or risks you find when you’re working your daily operations to the Trust Department leader
    • Team up with the rest of the Trust Department to educate your fellow employees on current security threats

Baseline Expectations:

    • You're interested in kickstarting your career in cybersecurity at a high growth startup, facing really interesting security problems
    • You’re familiar with cloud-based environments (AWS, GCP, Azure), are comfortable with macOS, Windows, and *nix systems, and have some proficiency with a scripting language (which one isn’t as important as being proficient)
    • You can help investigate a security incident without freaking out or pointing fingers at anyone. We don’t place blame, we seek to understand and improve
    • You document the things you do. No one can be a lynchpin and everyone needs to share knowledge here
    • You know that we are here to support and serve the business, not the other way around 
    • Have a “Yes, and…” attitude, be willing to own failure, and speak up when you see room for improvement 
    • Ability to partner with teammates at all levels from individual contributors to executives, and across all lines of business
    • Alphabet soup of certs you may have but are in no way required: E|CIH, GCIH, GCFA, CySA+, CASP+
$57 - $69 an hour