Security Operations Center Tier 2 Analyst

About SHEIN 

SHEIN is a global online fashion and lifestyle retailer, offering SHEIN branded apparel and products from a global network of vendors, all at affordable prices. Headquartered in Singapore, with more than 15,000 employees operating from offices around the world, SHEIN is committed to making the beauty of fashion accessible to all, promoting its industry-leading, on-demand production methodology, for a smarter, future-ready industry. 

 

Position Summary

SHEIN Global Security and Risk Management (GSRM) is a global security organization that oversees security infrastructure, risk management, data privacy, governance and regulatory compliance across SHEIN’s global footprint. It is composed of a team of security professionals, innovators and thought leaders that have had decades of global security experience, led large scale transformations, and served in Fortune 500 executive roles.

Here, innovation isn’t simply about protecting and defending our company. We develop solutions that are practical today and scalable tomorrow; and we create collaborative teams dedicated to innovation across each of our businesses to share our common values and vision.

We're seeking a full-time Security Operations Center Tier 2 Analyst (Official title: SOC Analyst I) for our San Diego-based office hub, who will be responsible for the monitoring of security telemetry and analysis/triage security events in our Global Security Operations Center (GSOC).  This Tier 2 analyst will ensure all reported cyber security events are properly investigated, remediated, and escalated as appropriate.

The Tier 2 analyst should have a strong fundamental technical understanding of application, host and network security practices, as well as all incident response protocols and practices. Must be familiar with security industry standards and best practices, and must be able to effectively work in a high paced alert triage environment. This Tier 2 analyst should have prior experience in a security operations center. 

 

Job Responsibilities

• Assess security information, triage and respond to security events, identify false positives, and conduct correlation analysis across numerous internal and external data sources while prioritizing information security incidents.
• Identify, triage and remediate threats based on threat intelligence as well as active analysis of system log data
• Sustain high-availability service levels and ensure fulfillment of business-wide service levels and operational support objectives.
• Demonstrates continuous effort to improve operational performance, streamline work processes and work cooperatively and provide quality seamless customer service.

 

Job Requirements

• A minimum of 2 years of experience in security operations and incident response with experience in e-commerce or technology industry is preferred
• A Bachelor’s degree or higher in the field of engineering, computer science or equivalent advance technology field of study or equivalent work experience is highly desired
• Relevant cyber security certifications, such as CompTIA or GIAC are highly desired
• Analytical mind with strong attention to detail and a commitment to quality
• Demonstrated proficiency in network security concepts, such as security event correlation, TCP/IP concepts, DNS, firewall technologies, IPS/IDS, Endpoint protection, routers, switches, perimeter security, authentication, encryption, and VPN solutions
• Demonstrated ability to effectively interact professionally with a diverse group of people at all levels of the organization
• Experience using enterprise cybersecurity technologies such as EDR, SOAR, SIEM, etc.
• Ability to work in an operational environment with flexible working hours and ability to be on call, including nights and weekends
• Strong working and practical knowledge of security monitoring, threat hunting, log management, SIEM and data analytics
• High level of personal integrity, with the ability to professionally handle confidential matters and exudes the appropriate level of judgment and maturity
• Must be able to support on-call, escalation and high-paced/ fast tempo operating environments. Applicants will be moved to 4 day / 10 hour shift based coverage after training.
• Experience analyzing security information and events in AWS, CrowdStrike Falcon, Palo Alto Cortex is highly desired

 

Benefits and Perks 

• Bonus & RSU eligible
• Healthcare (medical, dental, vision, prescription drugs) 
• Health Savings Account with Employer Funding 
• Flexible Spending Accounts (Healthcare and Dependent care) 
• Company-Paid Basic Life/AD&D insurance 
• Company-Paid Short-Term and Long-Term Disability 
• Voluntary Benefit Offerings (Voluntary Life/AD&D, Hospital Indemnity, Critical Illness, and Accident) 
• Employee Assistance Program 
• Business Travel Accident Insurance 
• 401(k) Savings Plan with discretionary company match and access to a financial advisor  
• Vacation, paid holidays, floating holiday and sick days   
• Employee discounts 
• Free weekly catered lunch 
• Dog-friendly office (available at select locations) 
• Free gym access (available at select locations) 
• Free swag giveaways 
• Annual Holiday Party 
• Invitations to pop-ups and other company events 
• Complimentary daily office snacks and beverages

 

#LI-CR1