Lead Security Analyst
Full TimeBookmark Details
who we are
lululemon is an innovative performance apparel company for yoga, running, training, and other athletic pursuits. Setting the bar in technical fabrics and functional design, we create transformational products and experiences that support people in moving, growing, connecting, and being well. We owe our success to our innovative product, emphasis on stores, commitment to our people, and the incredible connections we make in every community we’re in. As a company, we focus on creating positive change to build a healthier, thriving future. In particular, that includes creating an equitable, inclusive and growth-focused environment for our people.
About this team
The lululemon cybersecurity team enables lululemon to conduct its global operations in a secure manner and safeguard the trusted information of its guest and users. This is accomplished by understanding business risk as manifested through cybersecurity and compliance risk, and by maintain a high degree of employee awareness of all security and compliance topics. To further enhance our team, we are looking for an experienced Cyber Security Senior Analyst.
A day in the life:
The Lead Security Senior Analyst will help the team to perform Security Operations Center (SOC) duties, which include incident response, malware analysis, monitoring, and threat hunting. This role will work with the team and become our technical leader to implement and apply technologies, processes, and practices designed to protect networks, devices, and data from malicious attack, damage, or unauthorized access.
- Lead technical investigations across security and other technology teams
- Conduct threat analysis, assessment, and malware triage in support of security investigations and incident response process
- Provide technical leadership and coaching to security operations personnel
- Aid in the creation of a scalable, holistic Triage and Analysis program
- Conduct regular investigations reviews on team/analystsโ investigations for potential areas of improvement.
- Recognize and research attacker tools, tactics, and procedures (TTP) in indicators of compromise (IOCs) that can be applied to current and future investigations
- Build internal scripts, tools and automation processes to enhance detection and response capabilities
- Collaborates with technical and business teams to drive SOC initiatives acting as the SME
- Provide after-hour support as needed and participate in on-call rotation
Qualifications:
- Strong knowledge of cloud security in Azure and/or AWS
- Bachelorโs Degree in Computer Science or Computer Crime Investigations preferred
- 5+ years of demonstrated experience in computer security- related disciplines such as incident response, host forensics, malware analysis, network traffic analysis, Insider Threat, alerts tuning and trend analysis
- Understanding of security threats, vulnerabilities, controls and remediation strategies in customer data environments.
- Strong security concepts of threat categories (such as malware, phishing attacks, Defense-inDepth, MITRE ATT&CK framework, etc.)
- Extensive experience working with security tools such as SIEM, EDR, firewalls, IDS/IPS, antispam, content management, server and network device hardening, etc.
- Strong knowledge of Windows, Linux and/or Mac OS and comfortable with looking at, understanding, and investigating Security Event logs.
Experience with query languages and scripting languages - Experience in using security orchestration, automation, and response tools
must haves
- Acknowledge the presence of choice in every moment and take personal responsibility for your life.
- Possess an entrepreneurial spirit and continuously innovate to achieve great results.
- Communicate with honesty and kindness and create the space for others to do the same.
- Lead with courage, knowing the possibility of greatness is bigger than the fear of failure.
- Foster connection by putting people first and building trusting relationships.
- Integrate fun and joy as a way of being and working, aka doesnโt take yourself too seriously.
Compensation and Benefits Package
lululemonโs compensation offerings are grounded in a pay-for-performance philosophy that recognizes exceptional individual and teamโฏperformance. Theโฏtypical hiring range for this position is fromโฏ$123,500-$162,100 USDโฏannually; the base pay offered is based on market location and may vary depending on job-related knowledge, skills, experience, and internal equity. As part of our total rewards offering, permanent employees in this position may be eligible for our competitive annual bonus program, subject to program eligibility requirements.
At lululemon, investing in our people is a top priority. We believe that when life works, work works. We strive to be the place where inclusive leaders come to develop and enable all to be well. Recognizing our teams for their performance and dedication, other components of our total rewards offerings include support of career development, wellbeing, and personal growth:
- Extended health and dental benefits, and mental health plans
- Paid time off
- Savings and retirement plan matching
- Generous employee discount
- Fitness & yoga classes
- Parenthood top-up
- Extensive catalog of development course offerings
- People networks, mentorship programs, and leadership series (to name a few)
Note:ย ย
The incentive programs, benefits, and perks have certain eligibility requirements. The Company reserves the right to alter these incentive programs, benefits, and perks in whole or in part at any time without advance notice.
workplace arrangement
This role is classified as Hybrid under our SSC Workplace Policy:
Hybrid
In-person collaboration is important, and much of the role can be performed remotely. Work is performed onsite at least 3 days per week
Share
Facebook
X
LinkedIn
Telegram
Tumblr
WhatsApp
VK
Mail