Jul 17, 2022
The Information Security Analyst III is a member of TuSimple’s Security Operations Center (SOC) who monitors the organization’s entry channels to ensure the business is safeguarded against internal and external threats. They function both reactively and proactively and help bolster security processes, procedures, and policies. Additionally, the Information Security Analyst III assists with/conducts routine audits, performs risk assessments, and plays a key role in incident response situations. The Information Security Analyst III is an active collaborator and an effective communicator. They find gaps, solve problems, thrive under pressure, and have an unrelenting drive to achieve and maintain optimal levels of security. We offer H1B work visa sponsorship.
Role Responsibilities
Helps Entry/Junior analysts with security events from the various Security Operations Center (SOC) entry channels (SIEM, Tickets, Email, and Phone) and runs the incident if necessary. Collaborates with other seniors / TLM if necessary to perform further investigation and resolution.
Recommends enhancements to SOC security process, procedures, and policies.
Performs network security monitoring and incident response; maintains records of security monitoring and incident response activities
Conducts security assessments of IT infrastructure, enterprise applications, and production systems.
Performs vulnerability scans, analysis, reporting and subsequent remediation actions.
Performs weekly auditing/monitoring activities for anomalous or security relevant events.
Assists with monitoring and testing the deployment of security infrastructure to ensure it’s full deployment and effectiveness.
Investigates, triages and assists in the containment of all potential cybersecurity incidents.
Conducts 3rd-party vendor risks assessments.
Monitors and analyzes Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), and Security Information and Event Management (SIEM).
Creates, modifies, and updates IDS, IPS, and SIEM rules.
Recognizes potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information.
Efficiently and effectively evaluates and deconstructs malware.
Consolidates and analyzes large sets of data in order to discover indications of compromise (Threat Hunting).
Assists with implementation of counter-measures or mitigating controls.
Creates and maintains Playbooks, and undertakes automation building (XSOAR).
Establishes and maintains strong working relationships across the organization.
Experience & Skills Required
3-5 years previous Security Operations Center experience (preferred) or 2-3 years Security Engineering experience with previous SOC experience.
Experience in conducting security investigations
Working knowledge of multiple operating systems and system administration skills (Windows, OSX, Linux)
Strong knowledge of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, EDR
Demonstrated understanding of security incident management, malware management and vulnerability management processes
Experience with web content filtering technology, policy engineering, and troubleshooting
Strong working knowledge of operating systems and network security principles (i.e. TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP)
Prior experience working with vulnerability scanning tools.
Past experience using industry standard or open source vulnerability scanning or security patching tools.
Strong working knowledge and experience with access control systems like Single Sign On (SSO), Active Directory and other IAM systems.
Demonstrated experience using Security Orchestration, Automation, and Response (SOAR) tools (Dimesto, Phantom, InsightConnect)
Well developed skills that enable effective risk and issue detection, assessment and resolution.
TuSimple Benefits
100% employer-paid healthcare premiums for you and your family
Work visa sponsorship available
Breakfast, lunch, and dinner served every day
Full kitchens on every floor with unlimited snacks, drinks, special treats, fruits, meals, and more
Gym membership reimbursement
Learning/education budget
Employer-paid life insurance
Employer-paid long and short disability
Company Overview
We are TuSimple - a highly ambitious team with deep technical expertise and audacious vision. We are building products that will change the world. Our mission is to develop the world’s most advanced self-driving technologies specifically designed to meet the unique demands of heavy-duty trucks.
And we deliver. As the first AV to market, we are commercializing autonomous freight capacity that is safer, more efficient, and on-demand. In pursuit of our goals, we are looking for the best and brightest to join us on this exciting journey and be part of a fast-moving, highly execution-oriented team.
As a multi-national Artificial Intelligence Technology Company, we are at the epicenter of the Autonomous Vehicle Universe. Our breakthroughs are leading the industry in autonomous trucking.
While inventing the framework of Autonomous Driving, our current fleet of autonomous Trucks are helping communities receive much-needed supplies and medical equipment around the clock. Our people are some of the most talented engineers and contributors who are leaving behind a historic legacy.
TuSimple was founded half a decade ago with the goal of bringing the top minds in the world together to achieve the dream of a driverless truck solution. With a foundation in computer vision, algorithms, mapping, and Artificial Intelligence, TuSimple is working to create the first global commercially viable autonomous truck driving platform!