Cybersecurity Analyst - Degreed None Bookmark Share Print 122 0 0

Listing Description

We are seeking an enthusiastic, responsive and organized individual contributor with an interest in growing their career in application vulnerability and identity and access management to help support the Information Security, Risk and Compliance team within a young and growing organization.  


Do you love the challenge of diving into the details and learning why and how things work? Do you want to learn to see the big picture, and find ways to collect and organize data to tell the story? Do you suffer from a compulsive need to document things and “get it down on paper”? 


Being a member of the Information Security, Risk and Compliance team is an excellent opportunity for an independent individual contributor to have a hand in elevating, tracking, and resolving application vulnerabilities as well as promoting a deeper understanding of risk management and process improvement throughout the business.


This role will communicate regularly with cross-functional teams inside the company, and occasionally with external consultants and auditors. Success in this role is tied to maintaining a positive impact on those relationships. Our ideal candidate takes an extremely pragmatic approach to vulnerabilities and identity and access management as part of a growing team and is able to balance the needs of a very dynamic culture with that of protecting the company and customer data.


This job is remote, U.S. based and open nationwide, however, semi-frequent travel (<10%) will be necessary for a remote worker.


Day in the Life



  • Represent the Company’s culture, values, principles, and spirit of partnership with both our internal and external partners as a key function of day-to-day work.

  • Monitor regular Database vulnerability scans.  Analyze and track vulnerabilities to resolution.

  • Manage the day-to-day operations of Degreed’s Dynamic Application Security Testing (DAST) scanning program, analyzing and tracking findings to resolution.

  • Monitor third-party vulnerability risk and tracking systems. Assess and rank findings, open tickets for resolution with proper priorities, and track vulnerabilities to resolution.

  • Monitor CISA alerts daily.  Perform initial investigation into potential threats and recommend further action.

  • Oversee the monitoring of employee/contractor information security compliance training.

  • Monitor alerts from identity and access management systems and take necessary actions.

  • Maintain proper separation of duties for access provisioning and management.

  • Be focused on continuous process improvement and efficiency for all areas of responsibility

  • Work closely with Information Security, Infrastructure, Technology and Engineering teams to prioritize and close findings in alignment with our service level agreements.

  • Participate in internal and external audits by collecting, organization and documenting information

  • Contribute to our enterprise policy and controls library


Who You Are



  • 2+ years prior work experience in information security program and/or project management, audit and/or compliance efforts. Experience with vulnerability management and/or identity and access management is a plus.

  • 2+ years prior work experience in software development and/or network administration

  • Cyber Security Certification preferred

  • Knowledge of both hardware and software systems

  • Proven skills at organizing complex work efforts and tracking details that may vary on a week-by-week basis

  • Strong skills in the areas of problem-solving critical thinking and attention to detail

  • Demonstrated ability to follow through on tasks and projects to deliver desired results

  • Demonstrated ability to create actionable KPIs and then deliver on those KPIs.

  • Demonstrated ability to adapt to and recommend adjustments to workflows and processes

  • Proven communication skills and ability to understand the value and drivers behind adjusting style and tone to the audience

  • Experience with collecting data with consistency and basic experience developing reporting or metrics to assess and report program performance using data analysis tools - Excel, Google Sheets, or a comparable tool

  • Experience in project management concepts and project management tools - Jira, Confluence, or other comparable tools


What Sets You Apart



  • Confident in the ability to say, "I don't know, but I will find out!" with a strong desire to learn

  • Drawn to team collaboration with a willingness to interact via video conference and a desire to dig into problems, answer questions, and assist colleagues both within the Information Security, Risk and Compliance team and across the company.

  • Empathetic of those you support and focused on consulting and collaboration to find creative solutions to difficult problems

  • Very comfortable working under ambiguous situations, with a natural drive to bring clarity using critical thinking, communication and the independent research of existing documentation and resources

  • Ability to function as a business to technology translator and help bridge the business view of compliance and risk management to technical engineering and operations staff and vice versa.


Total Rewards at Degreed


We believe your best work happens when you have a complete life balance, and Degreed gives you the support and flexibility to make that happen. Degreed is committed to delivering a comprehensive benefits program that provides the support you need. At the time of this posting, this role is eligible to participate in the following benefits:


  • Comprehensive health insurance for you and your family (both PPO and HDHP plans available)

  • Dental and vision plans for you and your family

  • Employer-paid life insurance, AD&D, short-term disability, and long-term disability

  • Company equity

  • 401(k) Retirement Savings Plan with up to 4% match

  • Company funded HSA and dependent care FSA (pending eligibility)

  • Generous Parental Leave

  • Unlimited Paid Time Off and 5 sick days per year

  • Education benefit: Up to $1,200 per year for anything you want to learn (and we mean anything)!

  • One-time Home Office Stipend to make your workspace more comfortable

  • Monthly internet and phone stipend

  • Monthly wellness stipend through Twic


*Degreed reserves the right to modify these benefits at any time, for any reason in accordance with applicable law. Please note the offerings vary based on location.


Listing Details

  • Citizenship: Not Provided
  • Incentives: Not Provided

 

  • Education: Not Provided
  • Travel: Not Provided
  • Telework: Not Provided



About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765