Information Security Analyst (Remote)

About Freenome 

Freenome is a high-growth biotech company on a mission since 2014 to create tools that empower everyone to prevent, detect, and treat their disease.  To achieve this mission, Freenome is developing next-generation blood tests to detect cancer in its earliest, most treatable stages using our multiomics platform and machine learning techniques. Our first blood test will detect early-stage colorectal cancer and advanced adenomas.

As an Information Security Analyst, you will help identify and reduce security risks in our office network and GCP cloud environment by implementing, maintaining and monitoring security related events and incidents. You will provide your expertise regarding collecting evidence and do forensic analysis. You will act as an Information Security representative with your peers across all lines of business and central teams.

Your contribution:

• Engineer, implement, and administer the SIEM platform, open-source or commercial.
• Analyze, design, build, tune, and support SIEM use cases across various business functions and security operational needs.
• Create, modify, and tune the SIEM rules to adjust the specifications of alerts and incidents.
• Develop log ingestion, aggregation, and retention strategies to meet policy, related standards, and operational requirements.
• Assist with onboarding new data sources into our SIEM, analyze the data for anomalies and trends, and build dashboards highlighting the key trends of the data.
• Analyze and investigate security events from various sources.
• Triage and validate security alerts and escalate incidents, as required. Ensure that incidents are correctly reported and documented in accordance with operational policies and procedures.
• Manage security events as part of security operations, responding to urgent alerts, which may include off-hours investigation activities.
• Troubleshoot system misconfigurations and recommend best practices for remediation.
• Provide high quality written and verbal status reports, briefings, recommendations, and findings as required.
• Maintain and support the operational integrity of SIEM/SOC toolsets.
• Helping to develop the SOC (Security Operation Center) roadmap by delivering SOC capabilities to the business and championing new ideas and initiatives to help improve new and existing capabilities.
• Ensure all relevant technical standards and policy documentation is reviewed and maintained throughout SOC technical capabilities.
• Maintain situational awareness of emerging cyber trends by reviewing open-source reports for recent vulnerabilities and other threats that have the potential to impact the services and incorporate this understanding into day-to-day security monitoring.
• Excellent knowledge of Endpoint protection.
• Good understanding of vulnerability assessment and management.
• Update SIEM/SOC documentation, processes and procedures and ensure currency, as required.
• Provide ideas and feedback to improve the overall SOC capabilities and maturity.
• Perform all other Information Security related duties as assigned and contribute to the success of the Information Security Team.

Your background, perspective and experience: 

• Bachelor's degree in Information Security, computer science, business, or a related field, or equivalent in experience and expertise.
• Excellent Google Cloud Platform knowledge
• At least 3 years' hands-on experience in SIEM tools implementing, operating and incident management in mission critical environments. 
• Industry Certifications such as CISSP, CCSP, CCAK, CCSK, CISM, GCIH, GCIA, GSEC (Cloud security certification preferred).

Nice to haves: 

• Proven experience with CASB and Cloud based logging and SIEM solutions.
• Understand threat analysis models like MITRE ATT&CK Framework.
• Knowledge and expertise in a myriad of Information Security Solutions across cloud and IT security.
• Experience with a variety of operating systems, Cloud Data Platforms (GCP, AWS, Azure) and Cloud Computing (SaaS, PaaS, IaaS).
• Monitoring non-traditional IT services such as SaaS and cloud services.
• Experience leveraging a development language to automate workflows, analysis, or integrations.
• Excellent analytical, interpersonal and communication skills both oral and written.
• Strong attention to detail.
• Self-directed / self-motivated.
• Result oriented with a hands-on mindset.
• Can-Do attitude.
• Ability to convey and explain complex technical information to non-technical staff.

COVID safety:

As a condition of employment, you agree to know and comply with our COVID-19 vaccination policy requiring all employees who work on-site and/or attend work-related events to be fully vaccinated and to receive a COVID-19 booster once eligible. Company employees working on-site are required to be fully vaccinated for COVID-19 and to receive a COVID-19 booster once eligible, unless a reasonable accommodation is approved or as otherwise required by law. Absent a reasonable accommodation or legal exception, you agree to provide proof of your vaccination status and to be fully vaccinated by your first day on-site, in accordance with our policy.  If you are currently eligible for a COVID-19 booster, you also agree to provide proof of having received a booster.  If you are not yet eligible for a COVID-19 booster, you must provide proof of receiving a booster within two weeks of becoming eligible.

Freenome is proud to be an equal opportunity employer and we value diversity. Freenome does not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law.

Funding

We have raised more than $1.1B from leading investors including Perceptive Advisors, RA Capital Management, Roche Venture Fund, Kaiser Permanente, Novartis and the American Cancer Society’s BrightEdge Ventures. 

Freenomers

A ‘Freenomer’ is a mission-driven employee who is fueled by the opportunity to make a positive impact on patients' lives, who thrives in a culture of respect and cross collaboration, and whose work makes a significant impact on the company and their career. 

Freenomers are technical, creative, visionary, grounded, empathetic and passionate. We build teams around divergent expertise, allowing us to solve problems and ascertain opportunities in unique ways. Freenomers are some of the most talented experts in their fields, joining together to advance healthcare, one breakthrough at a time. 

Benefits include but are not limited to:

• Competitive compensation 
• Pre-IPO equity
• Flexible PTO (exempt) and generous PTO (non-exempt) 
• Comprehensive health coverage, including medical, dental, and vision 
• Wellness and mental health resources, including Employee Assistance Programs (EAPs), Paid maternity and paternity leave
• 401(k) plan 
• $250.00 new hire stipend to enhance your home office experience
• Plus, a variety of other perks, including pre-tax commuter benefits, two paid volunteer days per year, pet insurance, and additional discounts 

# # # 

Applicants have rights under Federal Employment Laws.  

• Family & Medical Leave Act (FMLA)

• Equal Employment Opportunity (EEO)

• Employee Polygraph Protection Act (EPPA)

Notice to agencies:

Our in-house Talent Acquisition Team manages all employment opportunities at Freenome.  Agencies and independent recruiters must be approved as a vendor by Freenome’s Talent Acquisition team before submitting candidates to any Freenome employee. 

We do not accept unsolicited resumes or biographies from agencies under any circumstances. Any unsolicited resumes sent to Freenome, including those sent to a Freenome email address or directly to Freenome employees, will be considered Freenome property. Freenome will NOT pay a fee for any placement resulting from the receipt of an unsolicited resume. Freenome will consider any candidate for whom an Agency has submitted an unsolicited resume to have been referred by the Agency free of any charges or fees. 

Please do not contact Freenome employees directly. Compliance with this request will impact our decision to work with you. 

###

#LI-Remote, #LI-Onsite, #LI-Hybrid