Who We Are Join a team that puts its People First! Since 1889, First American (NYSE: FAF) has held an unwavering belief in its people. They are passionate about what they do, and we are equally passionate about fostering an environment where all feel welcome, supported, and empowered to be innovative and reach their full potential. Our inclusive, people-first culture has earned our company numerous accolades, including being named to the Fortune 100 Best Companies to Work For® list for nine consecutive years. We have also earned awards as a best place to work for women, diversity and LGBTQ+ employees, and have been included on more than 50 regional best places to work lists. First American will always strive to be a great place to work, for all. For more information, please visit What We Do This role would work alongside security engineers and SOC managers. They are responsible for ensuring the protection of digital assets from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, or destruction both online and on-premise. The Security Analyst’s primary responsibility is to identify, secure, and weed out the threats as front-line defense personnel. They should alert and apply aggressive filter to quickly identify suspicious activity and mitigate risks before any incident occur. They work in coordination with other departments in identifying and correcting flaws in existing processes, systems, programs, and solutions while recommending measures to improve the overall security posture. The SOC is also responsible for operating and supporting enterprise security tools. For local candidates, this role is hybrid 2 days per week onsite in Santa Ana, CA. For out of area candidates who are located in the PST, MST, or CST time zones, we are open to remote. What You’ll Do: Monitor security access and report suspicious activity to a higher level or team members Conduct security assessments regularly to identify vulnerabilities and performing risk analysis. Analyze the breach to reach the root cause. Generate reports for IT administrators, business managers, and security leaders. These reports serve as an input to evaluate the efficacy of the security policies. Advise and implement necessary changes required to counter the attack or improvise security posture. Perform operational activities on security tools and contribute to tuning and security strategies. Document incidents to contribute to incident response and disaster recovery plans. Perform internal and external security audits. Conduct risk assessments, interviewing internal and external customers, to gain technical knowledge of security/compliance requirements. Maintain firewall access control policies Provide technical support/troubleshooting for security services Fulfill security service requests including but not limited to firewall rule changes, web filtering exceptions and encryption/decryption policy updates Is part of an on-call rotation schedule to provide incident response and project support. What You’ll Bring: Network security: IPS/IDS, traditional and next-gen firewalls, cloud security group, decryption Experience with security incident response handling Logging and monitoring: SIEM and Cloud Access Security Broker (CASB) Endpoint security: AntiVirus, DLP and host compliance scan Data Protection: encryption/decryption, HSM, KMS, DLP Windows and Unix operating systems Cloud Security, infrastructure and cloud native services Networking, network protocols and network services Bachelor’s Degree, Information Systems, Computer Science, Information Security, Telecommunications or equivalent work experience required. Must have minimum 2+ years information security experience. Should have minimum 1-2 years of experience with networking technologies Experience in implementing Information Security technologies and/or processes required. Experience in defining Information Security strategy and integrating security technologies into corporate frameworks. Relevant, industry recognized security certification such as CCNA, CompTIA Network+, CompTIA Security+, Azure Fundamentals and PCNSA preferred Pay Range: 69,895 – 97,075 Annually This hiring range is a reasonable estimate of the base pay range for this position at the time of posting. Pay is based on a number of factors which may include job-related knowledge, skills, experience, business requirements and geographic location. What We Offer By choice, we don’t simply accept individuality – we embrace it, we support it, and we thrive on it! Our People First Culture celebrates diversity, equity and inclusion not simply because it’s the right thing to do, but also because it’s the key to our success. We are proud to foster an authentic and inclusive workplace For All. You are free and encouraged to bring your entire, unique self to work. First American is an equal opportunity employer in every sense of the term. Based on eligibility, First American offers a comprehensive benefits package including medical, dental, vision, 401k, PTO/paid sick leave and other great benefits like an employee stock purchase plan.
Intrusion Detection System (IDS) Unix Information Security Analyst Cisco Certified Network Associate SIEM network-security network-protocols encryption Intrusion Prevention System (IPS) CompTIA Security+ Networking cloud-security logging Windows hsm monitoring antivirus Firewalls amazon-kms