The MongoDB Information Security team is seeking a motivated Information Security Analyst to join the team. The ideal candidate will have a vast background in security, including but not limited to, experience in corporate environments, incident response, systems, applications, and an understanding of cloud environments. 

This is an exciting opportunity to be a key member of our Information Security Operations team. You will be responsible for solving technical and administrative problems, reducing risk, and building trust. You will also be responsible for maintaining security solutions, tooling, alerting, and workflow automations. The team aims to seek challenges, analyze alerts, establish trust across the team and greater org. 

We are looking to speak to candidates who are based in Melbourne for our hybrid working model.

The right candidate for this role will have:

• Experience in security operations and incident response disciplines
• Experience detection/incident tooling or workflow optimization
• Security experience working within cloud platforms, particularly AWS
• Experience working & maintaining with SIEM; developing queries & alerts
• Experience working in both corporate and production environments 
• Experience deploying tooling to advance investigation tactics and incident response across different environments ie; corporate environments and cloud environment 
• An understanding of Windows & MacOS, Linux and how to secure them
• An understanding of various threats and how to investigate, detect and prevent them
• Love to learn; you are motivated to learn about security and tinkering
• Utilizing this knowledge in SecOps, or creatively using it in a response effort
• Experience interfacing with technical and non-technical individuals. Ability to adjust the level of technicality depending on the group
• GIAC, CEH, GSOC or relevant certificates

Position Expectations:

• Leverage and develop automation workflows, and enriching discoveries and detections
• Assist with Incident Response and Investigation across different environments and platforms
• Utilizing analysis frameworks (ie; MITRE) to better understand gaps, and working towards closing those gaps
• Maintain, improve, and configure Information Security Operations tooling and alerts
• Accustomed to performing investigations, analysis and communicating the events or incidents to proper stakeholders clearly
• Experience deploying security tools to advance investigation tactics and incident response across different environments ie; corporate environments and cloud environments
• Leverage threat intelligence for enrichment
• Develop and maintain well written documentation and playbooks
• Work cross functionally with multiple teams deploying tooling, establishing new processes, or improving existing processes
• Ability to quickly learn new Information Security concepts and adapt to a modern, fast-paced organization
• Help mentor and train others on the team
• Participate in weekly on-call rotations