Enterprise Security Analyst

Blueboard is an employee recognition and incentives platform powered by hand-curated experiences. Our platform makes it easy for companies to give meaningful rewards, incentives, and gifts—from one-of-a-kind to once-in-a-lifetime experiences. From a luxurious spa day to a trip around the world to see the Northern Lights to a family adventure behind-the-scenes at a local aquarium, we make it simple for companies to give their top performers memorable, meaningful, and personalized experiences. With Blueboard, employees enjoy incredible experiential rewards, and our clients increase employee engagement and elevate their team cultures.

Born and raised in San Francisco, Blueboard launched in 2014 and now serves hundreds of clients across the world. Our global team is over 100 Blueboarders strong, and we are thrilled to be a Great Place to Work, as well as one of Fortune’s Top 100 Workplaces. We are venture-backed by Greycroft, Origin Ventures, Bullpen Capital and others, with offices in San Francisco, San Diego, and Europe. Learn more at Blueboard.com.

We are building a team rich in diverse talents and experiences, and we welcome all applicants. If you’re not sure whether you’re qualified, but you’re passionate about Blueboard, we encourage you to apply!

Your Responsibilities will Include:

• Performs dynamic application security testing (DAST) and reviews using Veracode, Burp Suite, or Qualys
• Proficient with authentication security protocols e.g., MFA, SSO, IAM, SAML, OAuth, LDAP, Kerberos
• Participates in project design to ensure security requirements are gathered and implemented within various cloud platforms and service providers, such as IaaS, SaaS, and PaaS running on AWS, Google Cloud Platform, or Microsoft Azure
• Gathers metrics and compiles security reports for various business partners and Head of Information Security
• Keeps current with security industry standards and appropriate governmental regulations, such as GDPR and CCPA
• Assists in the administration of cloud-based security platforms, such as Checkpoint, Cisco, Palo Alto firewalls, or SASE solutions
• Administrate and perform signature tuning for Intrusion Detection Systems, such as Snort, Sourcefire, or Bro
• Automates security integration using Python, YAML, PowerShell, or other scripting languages
• Performs cybersecurity risk assessments using threat models, such as ATT&CKPerforms administration and management of web proxies, such as Bluecoat
• Performs administration and tuning of endpoint protection platforms, such as CrowdStirke, or Carbon Black
• Performs security event monitoring and investigations on various platforms, including macOS, Windows OS,  and Linux

Your Skills and Qualifications Include:

• At least 3 years of experience in Information Security
• Proficient with scripting languages, such as Python, PowerShell, or Bash
• In-depth knowledge of cloud technologies, host-level security technologies, and products such as HIPS, Firewalls, DLP, and Vulnerability Scanners
• Knowledge of compliance standards and security frameworks, including CCPA, GDPR, NIST, and OWASP
• Strong understanding of networking communication protocols e.g., IP, TCP, UDP, TLS, DNS
• Pursuing or holding security-related certifications, e.g., CISSP, CCSP, CCSK, SANS GPEN
• Working knowledge of common office applications, such as Google Suite and Microsoft Visio
• Must have strong written and oral communication skills
• Ability to work in a team environment

If you are passionate about information security, enjoy learning and growing as a cyber security professional, and want to be part of a great company with a growing security program, then we want to talk to you! Read more about the Blueboard security program at: https://www.blueboard.com/security-program