Security Analyst
Vimo · Mountain View, CA · 2 wk ago
RemoteRemoteEngineeringFull-time
About the role
Vimo is a national leader in state-based health insurance exchanges and safety-net transformations. We partner with state agencies across the country to expand access to affordable health coverage and modernize the delivery of essential human services, including Medicaid, SNAP, TANF, child-care, child support, child welfare, and unemployment insurance. Our enterprise-grade SaaS platforms power mission-critical systems that serve millions of people every day. By combining cutting-edge technology with process optimization, we help states deliver vital public benefits efficiently, securely, and at scale.
Responsibilities
- Set up monitoring tools as needed.
- Maintain and monitor security alerts and events using SIEM tools (SPLUNK, WAZUH) and other security monitoring systems.
- Conduct initial triage and investigation of potential security incidents.
- Analyze logs from various sources (e.g., firewalls, IDS/IPS, endpoint protection systems).
- Escalate incidents as needed, working with senior analysts and other teams to coordinate response efforts.
- Assist in the development and implementation of security policies, standards, and procedures.
- Perform vulnerability assessments and collaborate on remediation efforts.
- Contribute to the continuous improvement of SOC processes and tools.
Qualifications
- 6+ years of experience working with security-monitoring tools (security monitoring tools (e.g., SIEM, IDS/IPS))
- Strong understanding of fundamental security concepts, including threat vectors, attack methods, and mitigation strategies.
- Familiarity with the MITRE ATT&CK framework for understanding and responding to adversary tactics and techniques.
- Expertise in AWS Security – working with IaC, IAM, Security Groups, Guard Duty.
- Familiarity with incident response procedures and best practices.
- Knowledge of network protocols and infrastructure.
- Basic experience with log analysis and correlating security events.
- Strong analytical and problem-solving skills.
- Excellent communication skills, both written and verbal.
- Ability to work in a fast-paced environment and manage multiple priorities.
Bonus Skills
- Knowledge of cloud security principles and best practices (e.g., AWS, Azure, GCP).
- Experience with cloud security tools and technologies.
- Experience in vulnerability management, including performing vulnerability assessments and coordinating remediation efforts.
- Certifications such as CompTIA Security+, AWS Certified Security – Specialty, or similar.
- Familiarity with regulatory requirements and compliance frameworks (e.g., GDPR, HIPAA, PCI-DSS).