SecOps Analyst

2U partners with leading colleges and universities to deliver the world’s best online degree programs. Our Platform, a fusion services and technology, enables schools to attract, enroll, educate, support and graduate students around the world. Our company culture is united by our No Back Row® philosophy; the idea that when we each lean in and do our part, we are better individually and collectively.

We are searching for a passionate IT SecOps Analyst who is interested in working for a fast-paced, dynamic company that’s changing the landscape of higher education.

* Review threat activity and create automated logic for detection * Manual Threat Hunting and Incident Response * Provide expertise and logistical support for new threat scenarios * Performing vulnerability assessments of all internal and external services * Prioritizing remediation, recommending appropriate mitigation controls * Execute internal phishing assessments * Evaluate security postures for new vendors * Developing and implementing automated testing to facilitate security checks or internal policy compliance activities * Creating and maintaining technical security standards related to security * Working closely with internal teams to implement mitigation controls and improve 2U security posture * Evaluating and recommending new and emerging network and systems security products and technologies * Enthusiastically evangelizing security within 2U

* 18+ years of experience in a computer systems security role (JK, but a sense of humor won’t hurt) * Exposure to web security testing, vulnerability scanning (various products), dynamic code analysis, and building secure systems * Knowledge of OWASP top 10, and other security frameworks (ISO27001, NIST, etc.) * Coding/scripting experience (python, powershell, bash) * Thorough understanding of attack vectors, exploits, and hacking tools * Comprehensive knowledge of vulnerabilities in Linux and Windows environments * Passion for all aspects of information security * Propensity for navigating ambiguity and flourishing in a fast-paced environment * You hate CSI Cyber, but you can’t wait for the next season of Mr. Robot * SANS GCIH certification (any SANS certification is a plus) * You are a proponent of Sugarfree Redbull (regular Redbull fans need not apply) * You have read up on or practiced the concept threat-hunting OR are adept at hand-to-hand combat