Job Description


Senior Security Operations Analyst

Category:
Corporate Office
Location:
5501 Headquarters Dr
Plano Texas 75024
Job ID:
324781
Job Description:

JOB PURPOSE:

Provide technical analysis, guidance, mitigation, and remediation of logical security related threats to Rent-A-Center infrastructure and data security. This Information Technology professional will work with various teams to conduct evidence-based reviews by means of collection and correlation of system logs, events and processes for risks, threats, and indicators of compromise (IOC). Providing detailed analysis and applying defense-in-depth methodology to address risk and logical security threats with the specific goal of protecting sensitive and confidential data of both customers and coworkers. This role will provide Information Security “blue team” threat intelligence, vulnerability remediation and logical security to prevent business interruptions in a fast-paced retail environment.

 

KEY RESPONSIBILITIES:

  • Work with managed service providers, security tools, log sources and various teams to identify threats to Rent-A-Center and provide effective mitigations to avoid business interruptions
  • Review and analyze access, network, and system logs and alerts in a hybrid-cloud environment for inappropriate or unauthorized access
  • Support business initiatives by enhancing and supporting information security requirements, standards and principles
  • Conduct regular system tests and ensure continuous monitoring of network, system, and application security
  • Promptly respond to all security incidents and provide thorough post-event analysis utilizing associated runbooks and incident response plans
  • Interact with internal and external auditors as needed to ensure regulatory and policy compliance.
  • Identify and determine root causes of security violations. Verify and document the corrective actions to ensure application, data, and infrastructure security
  • Provide technical guidance and recommendations to co-workers about the risks and control measures associated with new and emerging information system technologies
  • Communicate with key groups (i.e. various lines of business and other technical teams) regarding potential threats, remediation efforts and all logical implementation steps
  • Keep pace with emerging security threats, technologies, and systems
  • Track, analyze and mitigate Advanced Persistent Threats (APT), phishing and social engineering other security related threats.
  • Detect, respond, and mitigate logical and cyber threats on a per event basis
  • Monitor, review, and provide security guidance for Network security tools and associated access mediums such as Network access controllers (NAC), gateway anti-malware and enhanced authentication
  • Create analytical reports for Leadership on complex criminal activity
  • Identity and access management principles
  • Application security and encryption technologies
  • Assist in the preparation and periodic update of information security policies, architectures, standards, and other technical requirements documents needed to enhance security.
  • Knowledgeable on cyber threats relative to the retail and fintech industries
  • Keep up to date on the latest security standards and best practices

 

JOB REQUIREMENTS:

  • Basic functional knowledge of Sarbanes-Oxley (SOX) and Payment Card Industry Data Security Standards (PCI-DSS) in order to monitor and enforce related controls
  • 3 or more years of Security information and event management correlation (SIEM) experience.
  • 3 or more years of information security tools administration or cyber threat research/analysis experience
  • 2 or more years of hands-on Cloud security experience (AWS – Azure) and security related tools.
  • In-depth knowledge of network and web related protocols (TCP/IP, UDP, IPSEC, DNS, HTTP, HTTPS, routing protocols, etc.)
  • Demonstrated by means of experience or technical Certification for security business controls, strategies, methodologies as well as knowledge and experience with all of the following technologies; firewalls; intrusion detection; directory services; web access controls; advanced authentication methods; public key infrastructure (PKI); VPN, TCP/IP; anti-malware, single sign on; audit; diagnostics, Log Rhythm, and forensic tools.
  • Experience with change management and related ticketing systems
  • Demonstrated ability to create technical documentation utilizing industry recognized tools.
  • Must be familiar with the current regulatory environment such as Sarbanes-Oxley, GLBA, etc.
  • Must have the ability to effectively communicate to all levels of individuals clearly at their level.

 

PREFERANCE:

  • Bachelor’s degree in related field preferred
  • Relevant technical security certifications (example: CISSP, GCIH, Security+, CEH, AWS Security).
  • 5 or more years relevant Information security work experience.
  • Functional knowledge working with some or all of the following:
  • Sentinel One
  • Web Application Firewalls (WAFs)
  • Security Controls for Cloud Environments (Microsoft Azure, Amazon Web Services)
  • Okta Identity Management
  • Rapid 7 IDR/InsightVM, LogRhythm, Splunk or Similar SIEM.
  • Intermediate to Advanced Knowledge of Microsoft PowerShell
  • Familiarity with programming or scripting language
  • Experience in managing web application security
  • Prior Security Operations Center (SOC) or Network Operations Center (NOC) experience
  • Background in Security Incident Response

Throughout the COVID pandemic, we have remained unwavering in terms of our commitment to the health of our coworkers and customers. To further maintain a safe work environment, new coworkers should be vaccinated by their start date. RAC is an equal opportunity employer, and will provide reasonable accommodation to those unable to be vaccinated where it is not an undue hardship to the company to do so as provided under federal, state, and local law.

Not what you’re looking for?

Try a new search!