IT Security Operations Analyst

A bit about us 

Trek is an awesome place to work, with amazing benefits for all employees. We build only products we love, provide incredible hospitality to our customers, and change the world by getting more people on bikes. When you’re on our team, you’re taken care of, encouraged to learn and grow, and given lots of opportunities to do so. Give us your best, and we’ll give it right back. Sound pretty sweet? Then come join us!
 

Job Description

IT Security Operations Analyst

Position Summary:
Help us secure the Awesome Bus! We are looking for someone to join our global cybersecurity team. We are a highly effective team that works to protect and defend against intrusions into Trek’s systems.

The candidate must be self-motivated with in-depth technical IT skills and a clear understanding of how changes impact enterprise IT systems worldwide. The individual needs to have a solid understanding of how a variety of information technologies work and how to gather information on and troubleshoot them.

If you enjoy being a first responder to events and incidents; implementing, running, tuning, and troubleshooting platforms and tools; and continually improving your security skillset, this position will provide you with a unique and challenging opportunity to defend Trek against an increasingly sophisticated threat landscape. Travel is at a minimum but since this is a global company, some travel may be required.

Responsibilities:

• Tuning, running, and improving technologies and configurations across all security domains to inform cyber risk decisions

• Identifying events of interest and investigating them for signs of abuse or misuse

• Relentlessly resolving security issues by gathering and analyzing event information and conducting root-cause analysis

• Supplying technical guidance, leadership, and assistance to other teams

• Creating, communicating, and maintaining incident documentation, reports, and playbooks

• Orchestrating and automating work

• Evangelizing information security within Trek worldwide

• Other duties as assigned

Requirements:

• At least five years’ experience in IT systems administration/engineering, network administration/engineering, and/or DevOps

• At least two years’ experience in information security, including but not limited to incident response, vulnerability assessment, and alerting/monitoring

• Strong understanding of cloud technologies up and down the stack

• Strong understanding of Windows and *nix systems as well as network architecture and protocols, including TCP/IP, DNS, and HTTPS.

• Experience with anti-malware/XDR/advanced threat detection (Windows Defender, CrowdStrike Falcon, SentinelOne), network monitoring (Zscaler, Palo

• Alto Networks, Cisco Meraki, Suricata

• , Bro), identity service providers (Microsoft Entra ID), and log analysis tools (Splunk, Microsoft Sentinel, Graylog, ELK)

• Ability to troubleshoot

• Ability to communicate proficiently with technical and non-technical people around the world

• Become SANS GIAC certified within six months or hold a current and valid certification in any of the following: (ISC)2: CISSP, CCSP, SSCP, CAP; SANS GIAC: GCIH, GREM, GCIA, GCFA, GCFE, GPEN, GCED; CompTIA: Security+; EC Council: CEH; other IT certifications considered.

Preferred:

• Experience using Splunk

• Experience building solutions in Python, PowerShell, zsh, and bash

• Bachelors' degree in Computer Science, Electrical/Computer Engineering, Information Security, Management Information Systems, or equivalent experience

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!