Security Analyst

Security Analyst

About Us:

BlackSky is a real-time intelligence company. We own and operate the world's most advanced space-based intelligence platform and provide customers satellite imagery, automated analytics and high-frequency monitoring of strategic locations, economic assets and events from around the globe. BlackSky is trusted by the most demanding allied military and intelligence organizations and commercial companies to deliver foresight into critical matters that affect national security and the economy. BlackSky's data enables governments and businesses to see, understand and anticipate change as it happens, giving them the ultimate strategic advantage so they can act quickly. Our global team works with cutting-edge technology to make a difference around the world and prides itself on being people-first, customer-focused and fun.

You will perform continuous monitoring of network, operating system, cloud services, and application log traffic in support of BlackSky’s Security Operations Center (SOC). You will conduct analysis of these logs within an integrated Security Information and Event Management (SIEM) platform and work to develop novel searches, dashboards, and alerts to improve the SOC’s detection and response timelines. You will leverage cyber threat intelligence (CTI) reporting in conjunction with internal digital forensics and incident response (DFIR) activities to ensure BlackSky is properly positioned to defend against security threats to our enterprise networks. This is a remote position reporting to the Manager of Security Analysis.

While the locations listed in the job posting are ideal, we would love candidates near either our Herndon, VA or Seattle, WA offices. We may also consider remote candidates in certain states.

Responsibilities:

• Support daily operations of Security Operations Center (SOC).
• Analyze data within a Security Information and Event Management (SIEM) platform.
• Respond to alerts from a range of security tooling within an established timeframe.
• Document security incidents and findings and share widely within the appropriate security, IT, and software development teams.
• Other job-related duties as assigned.

Required Qualifications:

• At least 18 months of experience performing security analysis, DFIR, or general IT security work.
• At least one security certification from Global Information Assurance Certification (GIAC), Amazon Web Services (AWS), Microsoft, or other vendor specific tooling.
• Ability to document processes, procedures, and results of technical analysis for review by peers.
• Experience with implementing endpoint security mechanism in at least one of the following Operating Systems - Windows, MacOS, and/or Linux.
• Experience performing at least one of the following activities - Incident Response, Digital Forensics, Malware Analysis, Network Traffic Collection, or Reverse Engineering.
• Must be a U.S. Citizen.

Preferred Qualifications:

• Bachelor’s or higher degree in a technical or engineering field.
• Experience with enterprise endpoint detection and response (EDR) tooling.
• Experience with Cloud and Container security technologies and tooling.
• Experience with scripting languages to enable automation in a security context.

Life at BlackSky for full-time benefits eligible employees includes:

• Medical, dental, vision, disability, group term life and AD&D, voluntary life and AD&D insurance
• BlackSky pays 100% of employee-only premiums for medical, dental and vision and contributes $100/month for out-of-pocket expenses!
• 15 days of PTO, 11 Company holidays, four Floating Holidays (pro-rated based on hire date), one day of paid volunteerism leave per year, parental leave and more
• 401(k) pre-tax and Roth deferral options with employer match
• Flexible Spending Accounts
• Employee Assistance and Travel Assistance Programs
• Employer matching donations
• Professional development
• Mac or PC? Your choice!
• Awesome swag

BlackSky is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer All Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, sexual orientation, gender identity, disability, protected veteran status or any other characteristic protected by law.

To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.

EEO/AAP/ Pay Transparency Statements: https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf
https://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf