AVP, Information Security Analyst Job in Los Angeles Metropolitan Area

2201 IT & Software Developer jobs in the US

Company Size

500-1k

Company Type

Product

Exp Level

Senior

Job Type

Full-Time

Language

English

Visa sponsorship

Requirements

Must:

- A minimum of 5 years of experience in Information Security, with at least 3 years focused on vulnerability management, cloud security, and/or security operations. - Strong hands-on experience with cloud security (Azure preferred), involving policy enforcement, identity and access management, and secure configurations. - Proven experience with vulnerability scanning tools (e.g., Defender, Qualys, Tenable, Vipr) and the capability to drive remediation efforts across enterprise environments. - Hands-on knowledge of SIEM/SOC operations (Microsoft Sentinel preferred), including detection engineering and event analysis. - Background in EDR platforms, focusing on configuration, management, and optimization of endpoint security functionalities. - Familiarity with asset management platforms (e.g., Armis, Axonious, ServiceNow CMDB, or similar) and applying asset intelligence to bolster security operations. - A solid grasp of incident response methods, threat detection, and cloud-native attack vectors. - Strong analytical skills with the capacity to identify root problems and offer actionable, risk-based recommendations. - Excellent written and verbal communication abilities, especially in documenting investigations and their outcomes. - Capability to operate independently and collaboratively with both technical and non-technical stakeholders. - Comfortable managing multiple priorities in a fast-paced, rapidly evolving environment. - Bachelors degree in Information Security, Computer Science, Information Systems, or a similar field, or equivalent work experience. - Familiarity with threat modeling frameworks (e.g., MITRE ATT&CK). - Understanding of security frameworks (e.g., NIST, ISO, CSA). - Proficiency in scripting/querying languages (e.g., KQL, PowerShell, Python) for analysis and automation purposes. - Relevant certifications such as Security+, CySA+, CEH, GCIA, GSEC, AZ-500, SC-200, CISSP, CISM, GCIH, or similar.

Technologies

CMDB

Responsibilities

- Lead the comprehensive vulnerability management lifecycle, including scanning, assessment, prioritization, reporting, and remediation for both cloud and on-premises environments. - Enhance asset discovery and management through tools like Armis to achieve complete visibility across cloud, on-prem, and hybrid assets, which facilitates more effective vulnerability management, threat detection, and incident response. - Implement, monitor, and refine Azure-native security controls, covering identity, workload, and data protection, in addition to CSPM and CNAPP tools for managing cloud risks. - Investigate, validate, and escalate suspicious or anomalous activities using available tools and telemetry. - Provide robust support for incident response, which includes investigation, containment, remediation, and lessons learned throughout the lifecycle of security incidents. - Oversee and refine SIEM and SOC operations, focusing on detection engineering, correlation rules, alert management, and escalation protocols (Microsoft Sentinel preferred). - Configure, manage, and uphold EDR capabilities to guarantee effective endpoint visibility, protection, and response. - Conduct technical threat hunting in Azure and hybrid settings to proactively identify and mitigate risks. - Utilize basic scripting and querying skills (KQL, PowerShell, Python) to enhance investigations, analyses, and automation efforts. - Collaborate with infrastructure, application, and cloud teams to evaluate existing controls and implement security enhancements. - Take part in regular security operations reviews and recommend enhancements to processes, tools, and controls. - Stay updated on advancing cloud security risks, vulnerability trends, and attack techniques, with particular emphasis on Azure. - Carry out additional security-related responsibilities as necessary.

Description

We are seeking an AVP Security Analyst to join our Information Security team at TCW. This mid-level position centers on vulnerability management and cloud security, particularly within Azure environments. Our team is dedicated to maintaining the confidentiality, integrity, and availability of our organizations data and technological resources through proactive measures and continuous improvement of security controls. The AVP will play an essential role in bolstering our security posture, managing vulnerability activities, enhancing Azure security controls, and working collaboratively with technology and business units to mitigate risks across the organization. This role requires individuals to work from a TCW office at least four days a week, with one flexible remote workday depending on business needs. We offer a competitive compensation package, including a base salary between $135-150K for CA-based roles, eligibility for annual discretionary bonuses, and access to a comprehensive benefits package.

Something wrong or incorrect with this job? Tell us in the chat 💬 on the right ➡️

IT & Software developer jobs in the USSecurity Engineer jobs in the USSecurity Engineer jobs Los Angeles, CA

You can find Cyber Security Engineer salaries in the United States here.

How many Cyber Security Engineer jobs are in the United States?

Currently, there are 2201 Security openings. Check also: IAM jobs, SAML jobs, Cisco jobs, Splunk jobs - all with salary brackets.

Is the US a good place for Cyber Security Engineers?

The US is one of the best countries to work as a Cyber Security Engineer. It has a vibrant startup community, growing tech hubs and, most important: lots of interesting jobs for people who work in tech.

Which companies are hiring for Cyber Security Engineer jobs in the United States?

Jump, Sched LLC, Meitou Inc., D3 Security Management Systems, Snaplii, Airia Brands Inc, DataAnnotation among others, are currently hiring for Security roles in the United States.

The company with most openings is Jobot as they are hiring for 67 different Cyber Security Engineer jobs in the United States. They are probably quite committed to find good Cyber Security Engineers.