Technology Analyst, Information Security

Bounteous x Accolite makes the future faster for the world's most ambitious brands. Our services span Strategy, Analytics, Digital Engineering, Cloud, Data & AI, Experience Design, and Marketing. We are guided by Co-Innovation, our proven methodology of collaborative partnership.

Bounteous x Accolite brings together 5000+ employees spanning North America, APAC, and EMEA, and partnerships with leading technology providers. Through advanced digital engineering, technology solutions, and data-driven digital experiences, we create exceptional and efficient business impact and help our clients win. 

We are seeking an Information Security Engineer to work directly with our Bounteous x Accolite team members, lines of business, and clients to help protect data, products and infrastructure against security threats by designing and implementing security systems. This role will be working with the IT and Risk teams to meet security and compliance needs, including vulnerability management, security updates and upgrades, responding to intrusions, reviewing devices for strong security postures, and staying current with the latest Information Security trends and news. 

This role requires a CISM, CISSP, or CISA certification; please do not apply if you do not posses one of these certifications.

Information Security Responsibilities

• Awareness on information security measures such as acceptable use of information assets, malware protection, password security
• Understand and report security risks and how they impact the confidentiality, integrity, and availability of information assets
• Understand how data is stored, processed, or transmitted from a Data privacy and protection standpoint

Role and Responsibilities

• Partner with leads and architects to create security solutions for proof of concepts, new integrations, and other technical service offerings
• Exercise due care in increasing your knowledge of the security field, threat landscape, and security intelligence, moving proactively toward the prevention and detection of threats
• Continuously monitor the client organization's networks and systems for potential threats and vulnerabilities; analyze and assess the severity of security incidents
• Conduct regular vulnerability assessments and penetration testing to identify weaknesses and recommend remediation measures. Run daily, weekly, and monthly scans to assess systems risks and issues
• Assist with incident response efforts, including containment, analysis, recovery, and post-incident reporting; follow proper incident response procedures
• Ensure compliance with industry standards and regulations; stay up-to-date with evolving compliance requirements and maintain the organization's security posture
• Contribute to developing, implementing, and enforcing security policies, standards, and procedures
• Manage and maintain security tools and technologies, such as SIEM systems, IDS/IPS, and endpoint security.
• Stay current with the latest cyber threats and vulnerabilities and leverage threat intelligence to enhance security
• Prepare detailed reports on security incidents, vulnerabilities, and risk assessments
• Maintain accurate documentation of security policies and procedures
• Provide technical support and engage with clients on security incidents 

Preferred Qualifications

• CISM, CISSP, or CISA certification required; please do not apply if you do not posses one of these certifications
• Bachelor's degree in Computer Science or a related technical field, or equivalent practical experience 
• 6+ years of relevant industry experience in security 
• 2+ years of Cloudflare administration and configuration for enterprise clients; Cloudflare ACE certification preferred
• Experience in handling attack mitigation and thorough knowledge of various attacks (L3/4 and L7) 
• Skilled at working with modern internet protocols like UDP, TCP, etc. 
• Advanced understanding of iptables 
• Experienced in analyzing traffic for attack anomaly detection and creation of mitigation rules 
• Experience implementing security-related policies and procedures to support organizational scaling and growth projections 
• Expertise in computer networking fundamentals and command line/Bash shell 
• Sysadmin skills (Linux/Mac/Windows) and programming skills (Python, Ruby, PHP, C, C#, Java, Perl, Git, etc.) 
• Security skills and certifications such as GCIA GCIH, GCFA, GCFE, etc. preferred
• Efficient time management skills along with the ability to deliver results in the face of uncertainty
• Good communication skills and ability to remain calm and work under pressure

We invite you to stay connected with us by subscribing to our monthly job openings alert here.

Research shows that women and other underrepresented groups apply only if they meet 100% of the criteria of a job posting. If you have passion and intelligence, and possess a technical knack (even if you’re missing some of the above), we encourage you to apply.

Bounteous x Accolite is focused on promoting an inclusive environment and is proud to be an equal opportunity employer. We celebrate the different viewpoints and experiences our diverse group of team members bring to Bounteous x Accolite. Bounteous x Accolite does not discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, age, physical or mental disability, national origin, veteran status, or any other status protected under federal, state, or local law.

In addition, you have the opportunity to participate in several Team Member Networks, sometimes referred to as employee resource groups (ERGs), that host space with individuals with shared identities, interests, and passions. Our Team Member Networks celebrate communities of color, life as a working parent or caregiver, the 2SLGBTQIA+ community, wellbeing, and more. Regardless of your respective identity, there are various avenues we involve team members in the Bounteous x Accolite community.

Bounteous x Accolite is willing to sponsor eligible candidates for employment visas.