Today, there's more data and users outside the enterprise than inside, causing the network perimeter as we know it to dissolve. We realized a new perimeter was needed, one that is built in the cloud and follows and protects data wherever it goes, so we started Netskope to redefine Cloud, Network and Data Security.
Since 2012, we have built the market-leading cloud security company and an award-winning culture powered by hundreds of employees spread across offices in Santa Clara, St. Louis, Bangalore, London, Melbourne, Taipei, and Tokyo. Our core values are openness, honesty, and transparency, and we purposely developed our open desk layouts and large meeting spaces to support and promote partnerships, collaboration, and teamwork. From catered lunches and office celebrations to employee recognition events (pre and hopefully post-Covid) and social professional groups such as the Awesome Women of Netskope (AWON), we strive to keep work fun, supportive and interactive. Visit us at Netskope Careers. Please follow us on LinkedIn and Twitter@Netskope.
Netskope Global Information Security organization is looking for a senior security analyst to be part of the application security team. This position will be responsible for implementing and automating security controls in different phases of the software development process and be a SME for DevSecOps functions.
Roles & Responsibilities
- Collaborate with SOC, engineering, and security teams (PSIRT) to detect, respond, recover and investigate security incidents to determine the impact, exposure and risk
- Perform compromise assessments to identify potential compromises and their scope
- Collect and built Threat Intelligence (IOCs and TTPs)
- Implement monitoring and alerting capabilities to detect security incidents and act on the alerts in a timely manner to investigate.
- Build forensics and digital investigation (DFIR) setup to perform cyber forensics on the devices and assets.
- Conducting forensic and digital investigations and analysis in support of cyber incidents that are reported into the CSIRT team
- Conducting investigation on possible data exfiltration by malicious insiders and reporting back to management team with detailed reports
- Conducting investigation into possible data exposures and data loss due to any issue or events and reporting back to management with detailed reports
- Creating Root cause analysis, Lessoned Learned for the incidents investigated to build more defensive solutions and controls.
- Run independent incident investigations and projects by working with a cross functional team.
- Creating SOP/Guidance documents for running different investigations
Qualifications/Requirements
- Minimum 5+ years experience in Incident Response in a global corporate enterprise
- Fundamental knowledge on basic security concepts and how to defend and respond to those
- Must have knowledge on security fundamentals such as CIA, Cryptography and controls
- Proven experience in Forensics tools such as FTK, Autopsy, Cellebrite, SIFT etc
- Proven knowledge of security monitoring tools SIEM preferable Sumo
- Proven ability to perform event analysis and correlation
- Strong understanding of Windows, Mac, and Linux operating systems
- Excellent written and verbal communication skills
- Self-motivated, curious, knowledgeable pertaining to latest threats and threat actors
#LI-SC3
Netskope is committed to implementing equal employment opportunities for all employees and applicants for employment. Netskope does not discriminate in employment opportunities or practices based on religion, race, color, sex, marital or veteran statues, age, national origin, ancestry, physical or mental disability, medical condition, sexual orientation, gender identity/expression, genetic information, pregnancy (including childbirth, lactation and related medical conditions), or any other characteristic protected by the laws or regulations of any jurisdiction in which we operate.
Netskope respects your privacy and is committed to protecting the personal information you share with us, please refer to Netskope's Privacy Policy for more details.
What We Do
Netskope, the SASE leader, safely and quickly connects users directly to the internet, any application, and their infrastructure from any device, on or off the network. With CASB, SWG, and ZTNA built natively in a single platform, the Netskope Security Cloud provides the most granular context, via patented technology, to enable conditional access and user awareness while enforcing zero trust principles across data protection and threat prevention everywhere. Unlike others who force tradeoffs between security and networking, Netskope’s global security private cloud provides full compute capabilities at the edge.
Netskope is fast everywhere, data-centric, and cloud-smart, all while enabling good digital citizenship and providing a lower total-cost-of-ownership.