Threat and Vulnerability Sr. Analyst

Job Description

Creative Artists Agency (CAA) is the leading entertainment and sports agency, with global expertise in filmed and live entertainment, digital media, publishing, sponsorship sales and endorsements, licensing, media finance, consumer investing, fashion, trademark licensing, and philanthropy. Distinguished by its culture of collaboration and exceptional client service, CAA's diverse workforce identifies, innovates, and amplifies opportunities for the people and organizations that shape culture and inspire the world. The trailblazer of the agency business, CAA was the first to build a sports business, create an investment bank, launch a venture fund, found technology start-up companies, establish a philanthropic arm, build a business in China, and form a brand marketing services division, among other innovations.

Position Summary

This is a hands-on security position working within the Information Security group and with the internal IT department at large. This position's core focus is to ensure consistent, measurable end-to-end delivery of security services. The successful candidate will work to develop and deploy capabilities ensuring enterprise systems and data are protected with expected security controls and tools to meet policy and compliance requirements. The candidate will have a solid conceptual understanding of modern infrastructure technology and security and can specialize in cloud and virtual application controls and configuration monitoring with the ability to leverage this knowledge to protect a wide variety of IT assets and data. The candidate will have demonstrated strong capabilities in threat and data flow modeling and has shown success using these models to actively manage information security risks.

We are looking for a Threat and Vulnerability Sr. Analyst who has a passion for cyber security, offensive security, threat detection, risk mitigation, and response. You will be a key part of our efforts to build and support a defensible environment where we are able to detect, contain, and respond quickly to threats and compromise in ways that serve to enable the business needs of a highly collaborative organization. The environment is fast-paced and commonly on the leading edge of technology, including early adoption of various cloud services along with the challenges of integrating those services into our security practices.

Responsibilities

Day-to-day work will include general security operations (as opposed to compliance) plus a more specialized focus on monitoring/validating that security controls are in place and effective in a cloud-first distributed network. Knowledge of automation, offensive security operations, vulnerability management, and/or threat intelligence preferred. This is a capable team, with good work/life balance, a cool mission, and the ability to shape your own role over time. An analyst who is self-starting, flexible, and curious will thrive in this environment.
• Responsible for the development of end-to-end security monitoring and reporting; ensuring expected controls are in place and performing as designed.
• Evaluate new and emerging threats against existing security controls; ensuring controls remain effective in changing business and threat landscapes
• Crafting searches and logic to detect anomalous behavior in user, network, host, and cloud activity.
• Create and develop scenarios to test control efficiency and further control and internal/ external offensive security capabilities.
• Create meaningful visualizations, reporting, and dashboards to help contextualize data.
• Support vulnerability management by identifying and tracking vulnerabilities across CAA's environment.
• Support 3rd party risk management and data security by automating and correlating risks identified from security questionnaires with controls and remediation efforts.

The preferred applicant will have roughly 5+ years' experience in some mix of the following skills:
• Highly proficient at cloud-based applications, containers, virtual machines, and with a particular emphasis on configuration, monitoring, and control validation.
• Proficiency in the Ethical Hacking lifecycle and ability to orchestrate Red Team and Penetration Testing activities.
• Professional working familiarity with security operations, including various IT platforms, applications, threat intelligence, and security in a distributed network environment.
• Interest in automating tasks, developing playbooks, and refining processes.
• Experience building scripts, tools, and methodologies to detect and respond to anomalous behavior.
• Experience data flow diagraming and common threat modeling frameworks (STRIDE, OCTAVE, PASTA)
• Knowledge of industry-recognized security and analysis frameworks (MITRE ATT&CK, NIST RMF/CIS, kill Chain, Crown Jewels Assessment, etc.).
• Experience with O365, Demisto, Tenable, Splunk, CrowdStrike Falcon, Azure, AWS, GitHub, Kubernetes, and VMWare.

Location

This role will be hybrid, based in Los Angeles or New York or fully remote.

Environment
• You can work on a hybrid schedule with occasional travel to company meetings and events.
• We have a service-oriented collaborative environment where teamwork, care, and helping others to succeed are highly valued.

Compensation

The annual base salary for this position is in the range of $103,000 - $131,000. This position also is eligible for benefits and discretionary bonus. Ultimately, the salary may vary based upon, but not limited to, relevant experience, time in role, business sector, and geographic location, among other criteria. Please talk with a CAA Recruiter to learn more.

Creative Artists Agency, LLC (the ''Company'') is committed to a policy of Equal Employment Opportunity and will not discriminate on the basis of race (inclusive of traits historically associated with race, including hair texture and protective hairstyles), color, religion, creed, gender or sex (including pregnancy, childbirth, breastfeeding or related medical conditions), national origin, ancestry, age, physical disability, mental disability, medical condition, genetic information, family and medical care leave status, military or veteran status, marital status, family status, sexual orientation, gender identity, gender expression, political affiliation, an employee's or their dependent's reproductive health decision making (e.g., the decision to use or access a particular drug, device or medical service), or any other characteristic protected by applicable law.

The Company also complies with the Americans with Disabilities Act and applicable state and local laws with regard to providing reasonable accommodation for qualified individuals with disabilities.

Jobcode: Reference SBJ-d2e4v5-18-218-60-55-42 in your application.