IT Security - Sr. Analyst

POSITION SUMMARY

The Sr. Analyst - IT Security designs, implements, and supports enterprise security technologies and processes that protect information assets in hybrid (cloud + on-premises) environments. Primary duties include engineering and hardening security platforms, integrating security controls into CI/CD pipelines, automating detection and response workflows, conducting risk and vulnerability assessments, and serving as a technical lead during cybersecurity incidents. The role collaborates with infrastructure, DevOps, application, and operations teams to ensure systems are securely configured, monitored, and compliant with applicable frameworks and business requirements.

ESSENTIAL FUNCTIONS

May perform any or all of the following duties:

• Design, deploy, and manage security solutions (firewalls, Cloudflare WAF/bot mitigation, SIEM, EDR/AV, IDS/IPS, DLP, vulnerability-management platforms).
• Harden Linux (Ubuntu), Windows, network, and cloud services in alignment with CIS, NIST, and vendor best practices.
• Integrate security tooling into cloud (AWS/Azure/GCP) and on-prem environments, ensuring continuous logging and monitoring.
• Develop scripts to automate security tasks, orchestration workflows, and reporting.
• Build automated detection and response playbooks within SOAR/SIEM or equivalent platforms.
• Maintain high-fidelity alerts, dashboards, and security metrics in SIEM and related logging platforms.
• Monitor Cloudflare traffic for DDoS, bot, and application-layer attacks, tuning rules and rate-limiting policies as needed.
• Gather and disseminate threat-intelligence indicators to stakeholders.
• Serve as a key member of the Cybersecurity Incident Response Team (CIRT/IRT), leading forensic investigations, root-cause analysis, containment, and recovery.
• Optimize SIEM use-cases and maintain runbooks for both automated and manual response procedures.
• Participate in a rotating on-call schedule for after-hours security events.
• Conduct secure source-code reviews and perform SAST, DAST, and software-composition analysis for new and existing applications.
• Integrate security checks into CI/CD pipelines; enforce secure configuration in infrastructure-as-code and deployment workflows.
• Provide secure-coding guidance to development and digital-integration teams.
• Perform risk assessments on business applications, cloud resources, and data-center systems, document findings and track remediation.
• Engineer and document controls that satisfy PCI-DSS, SOX, NIST, GDPR, and related requirements.
• Create and maintain key cybersecurity metrics and compliance dashboards.
• Contribute to security-architecture decisions for network, endpoint, and cloud solutions.
• Evaluate emerging security technologies and recommend adoption or configuration changes based on threat landscape and business needs.
• Act as a subject-matter expert (SME) for security best practices across infrastructure, DevOps, and application teams.
• Partner with stakeholders to design secure solutions and support vulnerability remediation initiatives.
• Maintain current knowledge of evolving threats, tools, and mitigation strategies.
• Produce executive-level security reports and assist with other cybersecurity tasks as assigned.

POSITION QUALIFICATIONS/CORE COMPETENCIES

• Bachelor’s degree in Computer Science, Information Security, Engineering, or related field (or equivalent experience).
• 5+ years of hands-on experience in cybersecurity engineering or infrastructure security roles.
• Preferred certifications: CISSP, OSCP, GIAC (GSEC, GCIA, GCIH), or equivalent.
• Deep technical knowledge of:
• Network protocols, firewalls, proxies, IDS/IPS
• Cloud platforms (e.g., AWS, Azure, GCP) and securing cloud-native services
• Endpoint protection and EDR tools
• Security monitoring and SIEM solutions (e.g., Elastic, Splunk, Sentinel)
• Vulnerability scanning tools (e.g., Tenable, Burp Suite)
• Identity and access management (IAM), MFA, and SSO
• Strong scripting or automation skills (e.g., Python, PowerShell, Bash).
• Knowledge of secure software development and DevSecOps practices is a plus.
• Experience engineering controls for compliance with security standards and frameworks (PCI, NIST, GDPR, CCPA).
• Excellent communication skills and ability to translate technical risk into business impact.

WORK ENVIRONMENT

• Restaurant Support Center that is a fast-paced setting with high volume of activity and a deadline-driven environment.

PHYSICAL DEMANDS

• Sitting for extended periods of time, using telephone, typing and/or operating a computer and/or mouse.
• Travel as needed: approximately five (5)%.