Job description
Job Description:
SUMMARY:
Rakuten Rewards is looking to hire an experience Security Analyst to analyze telemetry from security and other various relevant sources to identify and resolve security issues. This position will include the appropriate security analysis, remediation and countermeasures at the application, host and network layers. The challenge at Rakuten Rewards is to maintain high security while still providing a low friction experience. You need to possess the ability to work with other offices to collaborate on found security issues and follow up with remediation steps that will eventually become playbooks. The ability to audit new and existing architectures for vulnerabilities will also play into this position.
Responsibilities:
  • Provide analysis and investigation of security related data from a wide range of security devices and customer environments
  • Will actively participate in researching trends and current countermeasures for cyber security vulnerabilities, exploits, and other malicious activity
  • Provide Incident Response (IR) support as needed
  • Provide analysis based on threat and vulnerability reports
  • Analyze and respond to previously undisclosed software and hardware vulnerabilities
  • Create and/or manipulate SIEM alerts and playbooks from prior vulnerability analysis
  • Work with multiple security technologies including SIEM, IDS/IPS, WAF, AWS, etc.
  • Collaborate with Security Engineering/Architecture, Software Engineering, Compliance and DevOps teams to build and maintain a strong security stance.
Qualifications:
  • 2-3 years of prior experience as a Security Analyst
  • 3-5 years or prior experience as a Security/System/Network Administrator or equivalent knowledge
  • 2-3 years of hands on experience securing/auditing production AWS cloud-based solutions
  • 2-3 years of hands on experience with production Linux based systems
  • At least 1 year of exposure to production Windows based systems
  • Exposure to DevOps/SecDevOps processes and procedures would be very helpful
  • Ability to create and manipulate complex SIEM search and alert queries
  • Deep knowledge of various security methodologies and processes, and technical security solutions (SIEM, IDS/IPS, firewalls, anti-viral/malware and offensive security tools)
  • Knowledge of TCP/IP Protocols, network analysis, and network/security applications
  • Knowledge of common Internet protocols and applications
  • Knowledge of the HTTP protocol and production, public facing web services
  • Solid understanding of at least one scripting language (EX: python, perl, bash, powershell, etc.. )
  • Excellent verbal and written communication skills
  • Excellent customer service skills
  • Prior experience with AWS based security controls and mitigations would be helpful (EX: Config, GuardDuty, SecurityGroups, WAF, CloudTrail, etc.)
  • Prior experience with containers, automation and orchestration would be helpful
  • Bachelor's degree in a related field or equivalent demonstrated experience and knowledge
  • Relevant certifications are helpful (EX: GIAC, ISC2, Offensive Security or the like)
RAKUTEN SHUGI PRINCIPLES
Our worldwide practices describe specific behaviors that make Rakuten unique and united across the world. We expect Rakuten employees to model these 5 Shugi Principles of Success.
  • Always improve, always advance. Only be satisfied with complete success - Kaizen.
  • Be passionately professional. Take an uncompromising approach to your work and be determined to be the best.
  • Hypothesize - Practice - Validate - Shikumika. Use the Rakuten Cycle to success in unknown territory.
  • Maximize Customer Satisfaction. The greatest satisfaction for workers in a service industry is to see their customers smile.
  • Speed!! Speed!! Speed!! Always be conscious of time. Take charge, set clear goals, and engage your team.


Apply Job
Job Security Analyst in Toronto

Rakuten Kobo Inc.

Toronto