Information Security Analyst
Founded in 2014, Even Financial is a B2B fintech company that is transforming the way financial institutions find and connect with consumers. As the leading search, comparison, and recommendation engine for financial services, Even seamlessly bridges financial institutions (including American Express, Goldman Sachs, and SoFi) and channel partners (such as TransUnion and MoneyLion) via its simple yet robust API and embeddable marketplaces. Even turns any consumer touchpoint into an ROI-driven, fully customizable, programmatic acquisition source with full compliance and security at scale. Even’s investors are leading financial services firms and VCs, including American Express Ventures, Canaan Partners, Citi Ventures, F-Prime Capital (Fidelity), Greatpoint Ventures, Goldman Sachs, LendingClub, and MassMutual Ventures. Even placed in the Top 50 of the 2020 Deloitte Technology Fast 500, awarded to the fastest growing tech companies in the world, and has originated over $3B in credit to date.
We are looking for an experienced and energetic Information Security Analyst to join our team and provide support to a fast-paced technology company, reporting to the Chief Information Security Officer. You will be part of the Governance, Risk and Compliance team, which also includes Compliance and Legal, is a collaborative group responsible for supporting all teams throughout the organization to ensure they have the resources they need to be successful while likewise protecting Even Financial’s core values and interests.
The person in this role will have experience with security testing, analysis, and architectural design for cloud networks, operating systems, applications, databases, and other information system components. This is an on the ground opportunity where you will have responsibility for establishing and growing our security infrastructure and operations. As a team player, you will be responsible for supporting all teams throughout the organization to ensure a successful security program. You will participate in projects to improve our infrastructure, work-flow, technology and processes.
Qualifications
- Information Security: 2 years (Preferred)
- Should possess at least one of the following certificates CompTIA Security+, CEH, CISSP or CCSP.
Job Requirements
- Experience with SIEM and networking security monitoring
- Experience with managing computer network penetration testing
- Understanding of firewalls, DLP, antivirus, and IDPS concepts
- Excellent written and oral communication skills
- Ability to identify security vulnerabilities
- Investigate and document security breaches and other cyber security incidents
- Create and maintain security policies and procedures
- Work with DevOps team to perform tests and uncover security issues
- Stay current on IT security trends and news
- Test and evaluate new security technology
- Experience in system hardening and creating configuration baseline
- Experience with database systems
Technical Skills
- Knowledge of common network infrastructure technologies, vulnerabilities, remediation and mitigation techniques, firewalls, etc.
- Experience with AWS, GitHub, jira, Confluence
Soft skills
- Willingness to learn, discover, experiment with new security technologies
- Ability to adapt to changing technology environments and requirements
- Willingness to be current on new software platforms
Full time employees are eligible for the following benefits:
Comprehensive medical/dental/vision packages + life and disability insurance
401K retirement plans
Stock options
Company paid holidays
Uncapped paid time off (PTO)
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.