Senior SOC Analyst

Who we are...

Verra Mobility is a global leader in smart mobility. We develop technology-enabled solutions that help the world move safely and easily. We are fostering the development of safe cities, working with police departments and municipalities to install over 4,000 red-light, speed, and school bus stop arm safety cameras across North America. We are also creating smart roadways, serving the world's largest commercial fleets and rental car companies to manage tolling transactions and violations for over 8.5 million vehicles. And we are a leading provider of connected systems, processing nearly 165 million transactions each year across 50+ individual tolling authorities. 

Culture 

Verra Mobility Corporation is a rapidly-growing, entrepreneurial company that operates with a people-first philosophy and approach. The company lives by its core values—Do What’s Right, Lead with Grace, Win Together, and Own It—in everything it does for its customers and team members. The company seeks to grow aggressively, both organically and through acquisition, to continue to be the undisputed market leader with these five core competencies: bias for action, customer focus, teamwork, drive for results, and commitment to excellence.

Position Overview

The Senior Information Security Analyst is an important member of the Information Security team and will support to the Verra Mobility security program by continuously monitoring the enterprise for suspicious or malicious activity. This includes investigating security events raised by the SIEM other and security monitoring tools. It also includes ongoing configuration and enhancement of tools, agents and infrastructure.

The Senior Information Security Analyst will establish and enhance security processes and procedures including the company’s security incident response plan. They will take a leadership role on security incidents and provide security related guidance to the enterprise. They will also contribute to risk-based analysis of trending and emerging threats.

Essential Responsibilities

• Improves the effectiveness and efficiency of the Security Operations Center (SOC) by leading initiatives that enhance security orchestration, automation, and response (SOAR).
• Monitors log and event output from multiple information security tools including but not limited to SIEMs, firewalls, intrusion prevention systems, secure web gateways, security email gateways, threat intelligence platforms, antivirus products, vulnerability scanners and user behavior analytics platforms.
• Performs routine but critical information security technology tasks including but not limited to IPS signature review and testing, firewall rule change requests, antivirus product exceptions and policy changes, SIEM rule tuning, secure web and email gateway configuration changes, and software approval assessments.
• Leads security investigations and responds according to established incident management procedures. This includes taking ownership and leadership in security incident response procedures and planning.
• Contributes to the information security policy changes as determined by information security team leadership.
• Researches trending threats and provides ongoing vulnerability reports with accompanying security tools impact analyses.
• Stays abreast of developments in the Information Technology industry specifically as they relate to Information Security and educates employees on best practices.
• Leads security related projects as determined by information security team leadership. This includes representing the information security team on cross functional initiatives as required.
• Acts as a technical resource during internal and external audit engagements and is responsible for gathering security related technical evidence as required

Qualifications

• A bachelor’s in computer science, information technology or a related program OR a High School Diploma/GED and appropriate on the job experience in information technology and/or information security.
• Information Security certifications, such as CISSP, GSEC, GCED, Security+, etc. are desired. Security analysts will be expected to obtain a security certification within 1 year of employment start date.
• Minimum of 3-year experience as an information security analyst or 5-year experience in a technical focused IT role including but not limited incident management, server administration, network administration, or other IT systems support role.
• Experience using and/or managing a commercial SIEM.
• Familiarity with common security technologies such as anti-virus, firewalls, DLP, web content filters, proxy servers, intrusion prevention systems, Windows event logging and syslog.
• Familiarity with networking fundamentals and application layer protocols such as TCP/IP, HTTP, DNS, SMTP and FTP.