Security Operations Analyst

The RoleJoin a growing team that is enthusiastic, dedicated and work-life balance-focused at Ziff Davis.Reporting to the Security Operations Manager, this role is suitable for entry- to mid-level cybersecurity professionals with a strong hands-on technical background with tools, strategies and best practices for managing risk mitigation through vulnerability management, as well as typical Security Operations (SOC) functions including incident management, experience with common SOC software, intelligence gathering, light project tracking, assisting with investigations where needed and business line consultation/guidance.The role will be responsible for general Security Operations duties in addition to “owning” the function of vulnerability management, including maintaining metrics and documentation for assigned stakeholder teams. The Security Operations Analyst will work with existing vulnerability management tools, patching processes and business initiatives to support hands-on management of proactive security measures for all of Ziff Davis’s brands.**Qualifications**:- Bachelor’s degree in the field of Computer Science, Information Systems, Engineering, Business or related field and a minimum of 2 years work experience; or a master's degree and 1 year of related work experience; or 3+ years experience in a technical role if a non-technical degree; or equivalent experience.- Familiarity with SOC operations, strategies and best practices, in general.- Previous experience in hands-on SOC analyst roles of any kind. Experience with any “typical” SOC duties, including tasks under the remit of a Tier 1, Tier 2, or Tier 3 analyst.- Hands-on operational experience with at least one vulnerability management tool, including an understanding of how to configure, deploy, operate and support the tool.- Owning and maturing vulnerability management programs in on-prem and cloud environments focused on businesses, people and assets in the region where you operate.- Familiarity with security and risk standards including ISO 27001-2, PCI-DSS, NIST, ITIL, COBIT.- Ability to operate with a proven track record of integrity, honesty and confidentiality.- A bias toward execution. Self-starter and self-directed mentality.- Ability to take program requirements and execute them on time with mínimal supervision.- Ability to work with stakeholders to remediate vulnerabilities / areas of weaknesses and make progress towards overall objectives.- This is a fully remote position.**Responsibilities**:- Drive planning, implementation and maintenance of vulnerability management.- Deploy, manage and support Security Operations tools such as, Endpoint Protection, SIEM, Vulnerability Management.- Provide incident response support as needed using common EDR and security tools.- Review, investigate, respond to and manage incoming security alerts and detections for the Security Operations Team.- Manage the Security Operations ticket queue and respond to support requests for the Security Operations team, as appropriate.- Work with an external vendor to review firewall configurations and ensure adherence to policy.- Develop, establish, and manage strong relationships throughout Ziff Davis businesses to help drive critical vulnerability management initiatives.- Provide technical direction to line-of-business technologists on appropriate and time-sensitive mitigation of vulnerabilities.- Manage and help build robust reporting of vulnerability initiatives to multiple stakeholders, including technical stakeholders in engineering and operations, and non-technical partners in Business Operations, Finance or Legal.- Help provide actionable interpretations of vulnerability data for diverse stakeholders with varying degrees of technical expertise.- Collaborate with company stakeholders to drive patch management initiatives.- Work with some autonomy to build regional relationships in the spirit of a “follow-the-sun” model of security.- Implement service directives of the Director of Security Operations and other stakeholders on operational and tactical levels, with a particular focus on asset management initiatives.- Work hand-in-hand with the Chief Information Security Office to provide reporting and remediation planning that incorporates aspects of privacy risk management, compliance and regulatory matters, including PCI, GDPR, and SOX.About Ziff DavisFounded in 1995, Ziff Davis, Inc. (NASDAQ: ZD) is the result of a marriage of a revolutionary patented suite of services and a financially strong and disciplined organization.Ziff Davis has achieved 25 consecutive fiscal years of revenue growth and is an active acquirer of businesses, having deployed over $3 billion of acquisition capital since its founding. ZD has nearly 5,000 employees around the world in more than 50 offices.Equal Opportunity Employer:We celebrate diversity and are committed to creating an inclusive and equitable environment fo