Senior Cloud Security Operations Analyst

Meet Our Team: Pega is a leader in customer engagement and digital process automation offering a commercial SaaS version of our industry-leading platform to our global clients. In fact, we were recently recognized as one of the "Top 10 Tech Winners For The AI Revolution" by industry analysts. On the frontlines of this success is the Pega Cloud Security Operations Center (CSOC). Our team of information security professionals is charged to protect Pega's commercial cloud assets and offerings.

We accomplish this by creatively deterring, detecting, denying, delaying, and defending against internal and external security threats. The CSOC provides detection, monitoring, and incident response services for Pega Cloud.

Picture Yourself at Pega: As a Senior Cloud Security Operations Analyst, you will play a critical role in ensuring the confidentiality, integrity, and availability of Pega's commercial cloud infrastructure and assets. You will be key in the continuous monitoring and protection of all global cloud security operations at Pega as well as an active participant in incident response efforts.

You will accomplish this by collaborating with cross-functional teams - including other security analysts, threat detection engineers, vulnerability analysts, security engineers, system administrators, and developers - to proactively identify potential security risks and vulnerabilities within our cloud environment.

What You'll Do at Pega:

• Perform security monitoring of Pega Cloud commercial environments using multiple security tools/dashboards including our SIEM platform
• Perform security investigations to identify indicators of compromise (IOCs) and better protect Pega Cloud and our clients from unauthorized or malicious activity
• Actively contribute to incident response activities as we identify, contain, eradicate, and recover
• Contribute to standard operating procedures (SOPs) and policy development for CSOC detection and analysis tools and methodologies
• Assist in the development of playbooks for use by analysts to investigate both high confidence and anomalous activity

Occasionally:

• Perform threat hunts for adversarial activities within Pega Cloud to identify evidence of attacker presence that may have not been identified by existing detection mechanisms
• Assist the threat detection team in developing high confidence Splunk notables focused on use cases for known and emerging threats, based on hypotheses derived from the Pega threat landscape
• Assist in the development of dashboards, reports, and other non-alert based content to maintain and improve situational awareness of Pega Cloud's security posture
• Assist in enhancing security incident response plans (IRPs), conducting thorough investigations, and recommending remediation measures to prevent future incidents.

Who You Are: You have an insatiable curiosity with an inborn tenacity for finding creative ways to deter, detect, deny, delay, and defend against bad actors of all shapes and sizes. You have been in the "security trenches" and you know what an efficient security operations center looks like.

What You've Accomplished: Your background and competencies include:

• 4+ years of industry-relevant experience, with a demonstrated working knowledge of cloud architecture, infrastructure, and resources, along with the associated services, threats, and mitigations.
• 3+ years in operational SIEM (Security Information and Event Management) roles, focusing on analysis, investigations, and incident response, particularly with Splunk Enterprise Security (ES) and Google Chronicle/SecOps.
• 3+ years of operational experience with EDR/XDR platforms and related analysis and response techniques
• 2+ years of operational cloud security experience - preferably AWS and/or GCP - including knowledge and analysis of various cloud logs such as CloudTrail, Cloud Audit, GuardDuty, Security Command Center, VPCFlow, and WAF logs.
• A solid foundational understanding of computer, OS (Linux/Windows), and network architecture concepts, and various related exploits/attacks
• Excellent verbal and written communication skills, including poise in high pressure situations
• A demonstrated ability to work in a team environment and foster a healthy, productive team culture

Pega Offers You: A robust global benefits program including a competitive pay + bonus incentive and Employee Equity in the company. An innovative, inclusive, agile, flexible, and fun work environment full of opportunities to learn and grow.

Pega is an Equal Opportunity employer, and we will not discriminate in our employment practices due to an applicant's race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, veteran or disability status, or any other category protected by law.