Capital One
Capital One is seeking a dedicated Cyber Security Analyst to become a vital part of our Log Management team. This team plays a crucial role in ensuring comprehensive cyber monitoring across the organization. Your primary goal will be to support our threat defenders by setting a robust security logging strategy and influencing enterprise technology teams to achieve the highest visibility for investigations and alerts.
Key Responsibilities:
Lead and communicate the enterprise security logging strategy in collaboration with engineering, architecture, and Cyber Operations teams.
Establish best practices for security logging across cloud, network, databases, hosts, endpoints, and applications.
Conduct gap analyses to prioritize security log improvements, guiding engineering teams to address identified gaps.
Maintain strong relationships with Cyber Operations teams to ensure effective event capture and logging.
Drive adherence to logging requirements, ensuring compliance with established schemas, designs, and validation processes.
Review security logging implementations to measure compliance with requirements and standards, escalating non-compliance issues to leadership.
Participate in the execution and oversight of critical team processes, ensuring consistent adherence to established playbooks.
About You:
You possess strong analytical skills in the security logging domain.
You have advanced judgment skills to understand and apply security policies effectively.
Your experience includes logging requirements across various infrastructures including cloud and on-premises.
You have a deep understanding of security logging and monitoring needs for Cyber Operations teams, along with hands-on design experience.
You have successfully executed high-impact cybersecurity projects with cross-functional teams, from planning to escalation of non-compliance.
You foster collaborative relationships with stakeholders to promote the benefits of security logging.
You are passionate about security operations, log analysis, cloud security, and network and application security.
Basic Qualifications:
High School Diploma, GED, or equivalent certification.
At least 3 years of experience in cybersecurity or information technology.
A minimum of 2 years working in a Security Operations Center (SOC).
Preferred Qualifications:
Bachelor's Degree in Information Technology, Cyber Security, or Computer Science.
4+ years administering or investigating Mac OS or Linux OS.
4+ years working with SIEM Security Tools.
4+ years experience with JIRA.
One or more relevant certifications (CISSP, CISM, CCSP, Security+, CEH, SANS, GIAC 503 or 504, AWS Security).
At this time, Capital One will not sponsor a new applicant for employment authorization, or offer any immigration-related support for this position. This role will be located in the following address:
Chicago, IL: $144,200 - $164,600 for Prin Assoc, Cyber Technical
McLean, VA: $158,600 - $181,000 for Prin Assoc, Cyber Technical
New York, NY: $173,000 - $197,400 for Prin Assoc, Cyber Technical
Richmond, VA: $144,200 - $164,600 for Prin Assoc, Cyber Technical
Capital One is an equal opportunity employer committed to diversity and inclusion in the workplace.