Do You Have What It Takes?
To Be Considered For Any Cymonix Position
A Candidate Must Have:
The highest ethical standards with no criminal background
The ability to manage day-to-day responsibilities with remote team and management structure
A commitment to advancing the Information Security community
Information Security Analyst
We are seeking an Information Security Analyst to join Cymonix's Data and Information Security Team. Our team strives to keep our networks and users safe from constantly emerging threats. As a critical part of this team, you will work with business leads, application developers, and system and network engineers to apply security best practices and solutions to protect proprietary information, sensitive customer data, and their overall network environment.
This position performs several core functions to support and monitor our customers Information Security Program.
Security impact assessments
assess tools, applications, systems and infrastructures to ensure compliance with the latest government regulations and security best practices, and that established baselines are maintained,
assist with the design and execution of vulnerability assessments on applications, system designs and infrastructure, and security compliance assessments,
improve enterprise security architecture, designing and implementing remediation technologies, techniques, and processes,
Auditing and monitoring
design, integrate monitoring tools/capabilities with and maintain the SIEM application,
monitor information security alerts and collaborate with other technical teams to respond, triage, and escalate as needed. Alerts include logs from firewalls, IDS, OS, Antivirus, databases, web application firewalls, and web servers.
audit the system environment and provide actionable information pertaining to risk discovery and create and maintain complex event alerts and summary reports
coordinate and assist with responses and evidence collection for external audits,
Other duties as assigned (not limited to:)
draft information security policies, processes, and procedures, using security best practices, compliance requirements, and contractual obligations,
Develop and report key security metrics.
promote security awareness and practices throughout the company and provide support and guidance to employees with security questions and concerns,
The ideal candidate will have 1-3 + years' experience in Information\Cyber Security, Data Governance, or equivalent experience in a distributed computing environment to include in-depth knowledge of applications and systems.
Senior Cybersecurity Engineer
Our work environment is friendly and fun, yet professional. You will find that we support learning and personal development no matter where you are in your career. We offer competitive compensation packages, exceptional benefits, and opportunities for growth and advancement.
Terrific opportunity for learning and professional growth, to have a voice and actively contribute to shaping a company, and to enjoy a refreshing approach to delivery of comprehensive Cybersecurity Services. We are looking for a creative, organized, and driven Senior Cybersecurity Engineer to help us continue to provide exceptional cybersecurity & compliance services to small and medium sized business.
The ideal candidate will have multiple years of experience in managing cloud infrastructure, deploying/maintaining security monitoring solutions, automation, vulnerability management and other SecOps skills in compliance driven environments. They will be eager to learn and learn and do more.
The Senior Cybersecurity Engineer is responsible for protecting our internal and external clients as a member of our high touch, customer centric team. This position is 100% remote but may require occasional travel and trips to our HQ location. You will be exposed to many different technologies, compliance frameworks, and cybersecurity methodologies. As such, you will not be expected to know everything, but expected to be resourceful in finding solutions.
Cybersecurity Red Team Operator
Cymonix has an immediate opening to join our Red Team and participate in a variety of engagements and projects that will target and holistically evaluate the security posture of our customers people, processes, and technology.
When you join our team, you’ll become part of a culture that welcomes differences, cares about our communities, and empowers each other to lead from where we are to make things better.
Bring your passion and we’ll provide challenging and purposeful careers in a variety of markets, with opportunities to grow and a wide range of benefits and perks that support your health and wealth. It’s all part of what makes Cymonix a great place to work!
What You Will Do
Collaborate in on-net operations during threat emulation assessments
Provide offensive security domain expertise in purple team exercises
Keep up to date with current and emerging exploits, TTPs, and offensive security tooling
Continuously grow your tradecraft and improve team capabilities
Brief executive stakeholders on enterprise risks identified through Red Team activities
Cloud Security Analyst
The Cloud Security Analyst will drive continuous improvement across all phases of the Incident Response Lifecycle within public cloud environments. In addition to responding to emerging Cybersecurity threats, the Cloud Security Analyst will collaborate with architecture, engineering, and threat intelligence teams to develop and implement comprehensive monitoring and response strategies aligned to Cymonix's customers. Candidates are expected to consistently question the status quo and are enabled to take action to ensure the effectiveness of a distributed security operations program operating within DevOps centric workflows.
What you'll do:
• Drive continuous improvement across all aspects of Security Operations in our Cloud environment
• Perform daily event and incident triage (e.g., malware triage, network analysis, live response, etc.)
• Develop and maintain security operations processes & documentation (e.g., runbooks, operating procedures, etc.)
• Enhance detection and prevention controls (e.g., logic updates, exclusions, etc.) • Collaborate on design, architecture, and threat models to incorporate detection and monitoring requirements
• Collaborate on response, containment, and remediation for confirmed security incidents
• Work with different operating systems and cloud hosting providers (e.g., AWS, GCP, Azure, OCI)
• Develop automation playbooks to improve the efficiency of operation processes
• Seek opportunities for continuous improvement and drive efficiency • Maintain working knowledge of attacker tactics, techniques, and procedures (TTPs)
• Maintain event collection environment through health monitoring
Compensation that let you share in Cymonix's long term success
401 (k) Plans
Employee perk programs
Comprehensive Medical coverage, including PPO, HSA, HMO options
Dental coverage, including orthodontia benefits
Travel Assistance to keep you safe will traveling
Paid maternity, paternity, and family caregiver leave
Parent-friendly arrangements for return to work
Short-term disability, long term disability, life insurance, and AD&D insurance