Security Analyst

Security Analyst Opportunity At Serve Robotics

At Serve Robotics, we're reimagining how things move in cities. Our personable sidewalk robot is our vision for the future. It's designed to take deliveries away from congested streets, make deliveries available to more people, and benefit local businesses.

The Serve fleet has been delighting merchants, customers, and pedestrians along the way in Los Angeles, Miami, Dallas, Atlanta and Chicago while doing commercial deliveries. We're looking for talented individuals who will grow robotic deliveries from surprising novelty to efficient ubiquity.

Who We Are

We are tech industry veterans in software, hardware, and design who are pooling our skills to build the future we want to live in. We are solving real-world problems leveraging robotics, machine learning and computer vision, among other disciplines, with a mindful eye towards the end-to-end user experience. Our team is agile, diverse, and driven. We believe that the best way to solve complicated dynamic problems is collaboratively and respectfully.

As a Security Analyst you will help build a culture of continuous improvement, raising awareness and understanding of important security practices and considerations throughout Serve's IT System and Software lifecycles and delivery operations.

Responsibilities

• Assist in the implementation of technical security requirements defined by Serve's Cyber Security Program.
• Implement security hardening standards and continuous assessment criteria for Serve's IT and product infrastructure stack.
• Work with IT Service Engineering and Product Engineering teams to further develop and maintain a secure architecture framework within Google cloud environment.
• Assist in the implementation and monitoring of build and runtime security measures for Google cloud infrastructure.
• Implement or further tune existing security tooling to prevent or detect hardware and software vulnerabilities and common security misconfigurations.
• Assist with managing enterprise EDR Platforms as an administrator, creating detection rules, automating response workflows, conducting event correlation and performing incident root cause analysis.
• Conduct research on emerging vulnerabilities, threats, IOCs, IOAs, TTPs working to develop controls and build countermeasures as a response.
• Perform security reviews on Serve products and services to assess the adoption and implementation of secure design principles.
• Conduct comprehensive vulnerability assessments on cloud infrastructure and enterprise business systems, providing clear recommendations and guidance on remediation and providing support for implementation of mitigating actions as required.
• Partner with cross-functional technology teams to strengthen enterprise-wide detection, security orchestration, automation, and response capabilities.
• Contribute to Serve's Security Awareness Program by building out content, conducting phishing simulation exercises and providing follow up actions to strengthen org-wide security awareness.
• Participate in Cyber Security on-call rotation as a security subject matter expert as required.

Qualifications

• 4+ years of experience as a security analyst or engineer working on a team responsible for maintaining a hotseat or security operations rotation such as a SOC or NOC.
• Bachelor's degree in computer science, Information Systems or related field or equivalent work experience.
• Strong experience with security tools and services within Google or AWS cloud.
• Deep expertise in Cloud Computing, Windows, Linux security.
• Experience with deploying or supporting an enterprise EDR/XDR platform, conducting log correlation, or building proactive threat detection and response dashboards via advanced threat analytics.
• Strong knowledge of networking and internet protocols (TCP/IP, DNS, SMTP, etc.).
• Strong knowledge of secure authentication protocols (OAuth, SAML 2.0).
• Knowledge of cryptographic key management best practices.
• Scripting & Programming experience required (Python, bash, Java, PowerShell).
• Experience with supporting security incident response.
• Experience with assessing or implementing controls to comply with security and compliance frameworks and standards such as SOC2, ISO27001, PCI DSS, NIST CSF.

What Makes You Stand Out

• Excellent time-management skills
• Critical thinking and problem-solving skills
• Working with a sense of urgency, ownership and pride in your performance and its impact on the company's success.
• Interpersonal and communication skills