Senior Infrastructure & Cybersecurity Operations Analyst

The Celito Team

The Celito Team architects the buildout of simplified, integrated, and compliant technology stacks. With both consulting and products, our expertise can help our customers save time and money as they move from strategic Clinical & Quality management all the way to widespread and profitable commercialization.

Job Overview

As a Senior Infrastructure & Cybersecurity Operations analyst, your primary responsibility will be to oversee, execute and manage the day-to-day operations and the periodic infrastructure and cybersecurity processes of our clients and organization.

You will ensure that operational practices, controls, and standards are effectively implemented to mitigate risks and enhance operational efficiency.

Your role will involve hands-on management of infrastructure and cybersecurity resources, proactive monitoring, and swift responses to security incidents.

You will help guide the team with developing operational processes and implementing best practices and continually improving the overall efficiency and effectiveness of internal and client operations.

Additionally, you will spearhead operational initiatives aimed at improving the overall security posture while aligning with regulatory requirements and company standards.

Collaboration with cross-functional teams will be essential to seamlessly integrate security processes and technologies into on-going operational processes, ultimately safeguarding assets and enhancing business continuity.

Responsibilities and Duties

Cybersecurity Standards and Processes :

• Develop, implement, and manage operational processes and standards, enforce policies, and ensure the effectiveness of implemented cybersecurity controls for clients and the organization.
• Continuously assess and enhance security practices.
• Align security operations with overall cybersecurity strategy and business objectives.
• Act as a technical subject matter expert, collaborating with other organizational stake holders to advance cybersecurity processes.
• Ensure operational activities are conducted in compliance with regulatory and company standards.
• Collaborate with and support the engineering team on project execution to implement new processes for clients as projects move from an implementation to an operational state.

Cybersecurity Operations :

• Execute the daily and periodic operational activities such as patching, vulnerability reporting and remediation, privileged access reviews, delivering security awareness trainings, and others as required for clients.
• Define and report on operational metrics to measure the effectiveness of operational processes and to ensure defined SLAs are met.
• Maintain security tools and technologies and ensure any issues are addressed to prevent gaps in protection and visibility.

Monitoring and Incident Response :

• Conduct and oversee cybersecurity monitoring activities including the defining and managing of alerts from security technologies and alert handling for clients.
• Perform in depth investigations, log analysis, and determine root cause of incidents.
• Prepare incident reports and present findings in an organized manner.
• Assess gaps in visibility, make recommendations, and assist in improving monitoring operations.
• Provide expertise in incident response and investigations related to policy violations, security breaches, threats, and attacks.
• Perform threat hunting activities as required to identify potential compromise or strengthen detection and prevention capabilities.

Infrastructure Operations :

• Continuously monitor and help manage client infrastructure, including tools, technologies, and services.
• Maintain and optimize the technology infrastructure to ensure operational efficiency.
• Ensure data backups are executing daily and errors are resolved in a timely manner.

Team Mentoring and Knowledge Management

• Develop, manage, and maintain comprehensive operational process documentation and runbooks to ensure best practices, operational standards and guidelines are documented communicated to the operations team.
• Provide mentorship, and guidance to other team members to develop skills, build core competencies, and ensure a high quality of work for our clients.

Qualifications

• Minimum of 7+ years of experience in cybersecurity and infrastructure operations.
• Strong background in cybersecurity operations, performing investigations and analytics.
• Experience working with Security Incident and Event Management (SIEM) tools (Rapid7 Insight IDR, Alienvault), endpoint detection and response tools (Crowdstrike, Sentinel One), vulnerability management suites (Rapid7 InsightVM), Email Security (Mimecast, Proofpoint, Darktrace), MDM (Intune, Workspace One), DLP (Zscaler, Netskope), Identity and SSO (Okta), and various security solutions (KnowBe4, Druva, Microsoft Office security and compliance).
• Knowledge of information security frameworks, best practices, standards, and administrative, physical, and technical safeguards (experience with common security frameworks such as NIST, MITRE preferred)
• Strong technical background and knowledge of network and systems security, system and network configuration, and application security.
• Experience with incident response management, next gen firewalls, web application firewalls, multi-factor authentication, data loss prevention, disaster recovery.
• Ability to collaborate with other team members to integrate security into operational processes.
• Excellent communication and interpersonal skills.
• Knowledge of regulatory requirements such as California Consumer Privacy Act (CCPA), Sarbanes-Oxley (SOX), and quality guidelines (GxP) a plus.
• Time Zone Flexibility : Working Pacific Standard Time (PST) hours are mandatory, as these are core business hours for clients in this time zone.

Compensation

The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets;

experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled.

At Celito, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case.

A reasonable estimate of the current range is $110,000 to $130,000 per annum.