Security Analyst

Sumologic Splunk ELK SIEM ISO 27001 OWASP NIST Nessus Nexpose Metaploit Qualys nmap Burp Retina IDS/IPS PCI DSS SOC1/2 CISSP GSEC GCIA GCIH GCFA OSCP Threats Python Bash Ruby Perl
Full Time
Depends On Experience
Telecommuting not available Travel not required

Job Description

FRIENDFINDER NETWORKS OVERVIEW

FriendFinder Networks Inc. is a leading Internet-based social networking and technology company operating several of the most heavily-trafficked websites in the world. We provide our customers with a wide variety of online products and services, appealing to members of diverse cultures and interest groups, so they can interact with each other and enjoy our content. Our sites’ services include social networking, online personals, live and recorded video, online chat rooms, instant messaging, photo and video sharing, blogs, message boards, email and premium content websites.

 

We’re looking for talented Security Analyst who is driven by the challenges to support and secure our network for the next-generation social media platform to join our team. We enable our security team to collaborate with other teams to build, secure, and deploy lightweight web and mobile apps for social networking and live-streaming videos used by millions of users every day. You will work closely with teams who have a profound and immediate impact on our vision with real-time social media in the global community. We connect people fast, anywhere in the world, in real-time 24 hours a day.

 

WHY JOIN US?

Our mission is to bring people with shared interest together through social media in a safe, enjoyable, and friendly environment. We want to hire people who share our global vision of connecting people through social media, to join our collaborative team. People who thrive on being challenged, enjoy collaborating with others, and want to engineer solutions for people with common interests to connect. Are you ready to take on the challenge and work on exciting projects?

 

WHAT WE WANT

FriendFinder Networks is looking for a Security Analyst to be responsible for monitoring, detecting, and responding to security events, incidents and threats.  He/she will ensure security risks are analyzed and triaged. They will help improve the security posture of the organization by implementing best practices and controls to prevent or mitigate security risks and exposures.  They will report on compliance levels, identifying non-compliance issues and security vulnerabilities, and manage remediation activities. Your contributions ensure FriendFinder Networks will continue to provide our customers with a secure and enjoyable user experience.

 

WHAT YOU WILL DO

  • Will be first-line responder for detecting and investigating security events, incidents, or other anomalous activities
  • Triage security related alerts and anomalies
  • Improve efficiency and effectiveness of the SOC to monitor and respond to security events
  • Provide input on current security threats, tools, and detection techniques
  • Improve the overall Information Security Program by contributing your deep understanding of cyber security
  • Assist others with understanding and implementing security policy objectives in ways that are cost effective, and align with business objectives
  • Support Incident Response activities, including, but not limited to: managing response tasks and updating of Incident Management tracking system, providing timely and accurate status updates of ongoing activities to incident response stakeholders
  • Maintain and improve documentation for Information Security standards and procedures
  • Analyze a variety of network and host-based logs to assist with security investigations.
  • Will proactively hunt the network to identify security risks
  • Recommend and/or implement security controls and countermeasures to prevent or mitigate various security risks
  • Maintain dashboards and collect metrics and reports on vulnerability findings and remediation compliance

 

WHAT YOU MUST HAVE

  • BA/BS in Computer Science or equivalent experience
  • Minimum 3 years’ of experience in information security
  • Expert level proficiency in Machine Data Analytics using Sumologic, Splunk or ELK
  • System administration experience (Windows and Unix), network administration experience, and/or application development experience
  • Experience with intrusion detection/prevention systems
  • Deep knowledge of SIEM solutions, including daily use and writing alert rules
  • Experience working in a security operations center capacity, which includes computer security incident monitoring and response activities
  • Experience with generally accepted information security practices, such as ISO 27001, OWASP, NIST
  • You must be at least 21 years old or older
  • You must be comfortable with adult content

 

WHAT YOU SHOULD BE ABLE TO DEMONSTRATE

  • In-depth experience with vulnerability assessment tools (Nessus, Nexpose, Metasploit, Qualys, nmap, Burp Suite, Retina, etc.) as well as manual techniques
  • Hands-on experience in tools and processes used in security event and incident detection and protection (i.e. antivirus, IDS/IPS, SIEM, etc.)
  • Thorough understanding of well-known protocols (HTTP, SSH, FTP, LDAP, etc)
  • In-depth network analysis (pcap), core forensic familiarity, and incident response skills
  • Knowledge of information security industry and regulatory obligations (PCI DSS, SOC1/2, ISO 27000-series, NIST Framework, etc.)
  • Able to work on an as needed basis during critical times
  • Ability to protect all forms of highly confidential and proprietary business information and ability to maintain the highest standards of privacy and security
  • Ability to follow and abide by all information and security policies and practices
  • One or more information security certifications (i.e. CISSP, GSEC, GCIA, GCIH, GCFA, OSCP, etc.)
  • Demonstrated proficiency in one or more coding languages (i.e. Python, Ruby, Perl, Bash etc.)

 

WHAT IS PREFERABLE TO HAVE

  • Exceptional communication and advocacy skills, both verbal and written, with the ability to express complex technical issues in an easily understood manner
  • Solid track record of ownership of projects and adept at working independently with little supervision
  • High degree of honesty and integrity
  • Demonstrated organizational skills; the ability to handle multiple projects simultaneously and meet strict deadlines
  • Team-player, positive attitude and flexible

 

REPORTING TO THIS POSITION: No direct reports

 

PERKS

FriendFinder Networks Inc. and its subsidiaries offer a business casual work environment, flexible work hours, and a competitive salary.  The benefits package includes:

  • 401(k) with a 5% match on eligible earnings with no vesting period
  • Medical (Kaiser HMO, Aetna PPO), Dental, and Vision
  • Flexible Spending Account for Healthcare and Dependent Care
  • Life Insurance, AD&D, LTD and Short and Long Term Disability
  • Paid Time Off (20 days PTO) and Holiday Pay (12 company paid holidays off)
  • Employee Assistance Program
  • Commuter Benefits
  • 529 Education Plan
  • Tuition Reimbursement
  • Health Club Reimbursement 

 

ABOUT US

FriendFinder Networks is an international leader in social media founded in 1996 by Andrew Conru.  Originally started as a main-stream social networking site, the company quickly adapted to consumer preferences, and branched out into different social media verticals. Andrew Conru is still directing FriendFinder Networks’ vision for pioneering new development of innovative and social media technology connecting people every day all over the world.

Posted By

Kevin Schmidt

910 E. Hamilton Ave Sixth Fl Campbell, CA, 95008

Contact
Dice Id : 10500076
Position Id : 303100
Have a Job? Post it

Similar Positions

Cyber Security Analyst
  • ASRC Federal
  • Moffett Field, CA
Senior Security Engineer
  • Infometry Inc.
  • Palo Alto, CA
Security Analyst
  • Softsol Resources Inc
  • Pleasanton, CA
Information Security Manager
  • Dew Software
  • Sunnyvale, CA
Information Security Analyst
  • Buxton Consulting
  • Pleasanton, CA
Information Security Analyst
  • Apeiro Technologies
  • Pleasanton, CA
Security Engineer
  • Talbridge Corporation
  • Mountain View, CA
Secuity Analyst
  • Quinnox Inc
  • Pleasanton, CA
Information Security Analyst
  • Ertino Inc
  • Pleasanton, CA
Security Analyst, Vulnerability Management (#1461-MH2444)
  • Moorecroft Systems Inc.
  • Menlo Park, CA
Security Engineer
  • Srisys
  • Santa Clara, CA
Lead Security Engineer
  • Brookfield Global
  • Pleasanton, CA
IT Security Analyst (5241)
  • Embedded Resource Group, Inc
  • Sunnyvale, CA
System Security Consultant
  • IT-SCIENT
  • San Jose, CA