Job Closed
This listing is no longer active.
NVIDIA is widely considered to be one of the technology world’s most desirable employers. We have some of the most forward-thinking and hardworking people in the world working for us. If you're creative and autonomous, we want to hear from you! Applications for this job will be accepted at least until June 15, 2026. This posting is for an existing vacancy. NVIDIA uses AI tools in its recruiting processes. NVIDIA is committed to fostering an inclusive work environment and proud to be an equal opportunity employer. As we highly value diversity in our current and future employees, we do not discriminate (including in our hiring and promotion practices) on the basis of race, religion, color, national origin, gender, gender expression, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by law.
Cyber Security Analyst
Location
California + 3 moreAll locations: California | Nevada | Oregon | Washington
Posted
107 days ago
Salary
$160K - $258.8K / year
Seniority
Lead
Job Description
Cyber Security Analyst
NVIDIA
• Lead Incident Response efforts for corporate, cloud, and product environments, including investigation, containment, eradication, and recovery. • Perform threat hunting across endpoints, networks, and cloud workloads to proactively identify indicators of compromise, emerging threats, and control gaps. • Conduct cloud incident response for AWS, Azure, and GCP, and other cloud environments including Kubernetes and containerized workloads, performing log analysis, identity compromise investigations, and workload forensics. • Drive product security incident response, collaborating with engineering teams to analyze potential exposure to vulnerabilities, exploits, and security flaws in NVIDIA products. • Perform digital forensics and malware analysis to support investigations and root cause analysis. • Develop and optimize security orchestration and automation playbooks in partnership with Security Engineering to accelerate detection and response. • Build and refine detections and defense strategies based on threat models and attacker behaviors across cloud, identity, endpoint, and product telemetry, using frameworks such as MITRE ATT&CK to map adversary tactics and enhance detection coverage. • Provide guidance to engineering and business teams on secure design and incident handling standards and contribute to security policies, standards, and metrics to continuously improve NVIDIA’s security posture.
Job Requirements
- Bachelor’s degree in Computer Science or related field, or equivalent experience.
- 8+ years of hands-on experience in incident response and threat hunting, including cloud environments.
- Strong knowledge of cloud security principles, identity and access management, and workload protection.
- Experience with product security investigations, vulnerability analysis, and secure coding practices.
- Proficiency in forensic analysis, intrusion detection, and threat intelligence.
- Advanced knowledge of network analysis, OS internals (Windows/Linux/macOS), and web application security, including the ability to detect abnormal behaviors and assess exploit paths.
- Ability to work independently and collaborate effectively across global teams.
Benefits
- Equity
- Benefits
Related Guides
Related Categories
Related Job Pages
More Security Analyst Jobs
Security Compliance Analyst, Ukrainian
SupportYourAppSupport-as-a-Service that helps companies scale faster by taking care of their customers’ needs.
• Проведення перевірок безпеки постачальників; • Пошук та збір інформації з відкритих джерел (OSINT); • Ведення та актуалізація реєстрів оцінки ризиків. • Заповнення та обробка клієнтських анкет з інформаційної безпеки відповідно до міжнародних стандартів (ISO 27001, SOC 2, NIST); • Первинний перегляд договорів із клієнтами (DPA/MSA) для виявлення розбіжностей між внутрішніми процесами компанії та вимогами клієнтів; • Опрацювання запитів від інших підрозділів. • Моніторинг, аналіз та перевірка доказів (логи, скріншоти) для підтвердження відповідності пристроїв співробітників вимогам безпеки; • Комунікація з користувачами для усунення невідповідностей вимогам безпеки; • Ведення реєстру затверджених пристроїв. • Створення та оновлення внутрішніх інструкцій, процедур і матеріалів бази знань з інформаційної безпеки. • Участь у фішингових симуляціях; • Допомога у підготовці матеріалів та листів з інформаційної безпеки для співробітників. • Первинна обробка інцидентів безпеки: збір доказів, базове розслідування та координація комунікації між залученими сторонами.
Role Description We are looking for a motivated CyberSecurity Analyst ready to take us to the next level! If you have cyber risk management experience and are looking for your next career move, apply now. The Cybersecurity Analyst will be responsible for helping execute the Maritime Cybersecurity strategy and program initiatives relating to dry dock operations. The role will serve as a coordinator and subject matter expert to peers and leaders across the client shipboard lines of business regarding maritime cyber risks. This position will be full-time and remote. The role will be an individual contributor providing cyber risk management and assurance expertise to protect and maintain systems located within or connected to the client shipboard environments, adhering to maritime cybersecurity guidelines and corporate information security standards. - Key contributor to the upgrade of shipboard IT and OT systems and processes to reduce existing and emerging risks to the client maritime assets. - Leverage information security activities and technologies to raise cyber situational awareness and protection. - Ensure maritime cybersecurity technology is configured and operating per established standards. - Update technical standards, architectural/engineering diagrams, and procedures for shipboard and newbuild I.T. and marine operations units. - Define and track assigned remediation tasks to mitigate shipboard IT, ET, and OT vulnerabilities and defects. - Partner with team members within Information Security, I.T., and business units to implement compensating controls for identified system weaknesses. - Review, interpret, and explain complex maritime cyber guidelines and future regulations to peers and non-technical team members. - Establish and manage relationships with engineering and operational staff to assess their cyber assurance program. - Contribute with a high degree of self-sufficiency and resourcefulness to departmental performance objectives. - Demonstrate motivation to maintain technical skills and cybersecurity knowledge through self-development opportunities. - Actively engage in liaison activities with maritime industry associations and regulatory agencies. Qualifications - Bachelor’s degree in computer science, information systems, or a related field. - Degree in Scrum & Agile Software development Methodology. - Internship in a similar role in a medium-sized organization. Requirements - Proficiency in Rapid7 and Fortinet (FortiAnalyzer) for data extraction and visualization. - Proficiency in analytic tools like Power Bi and Tableau. - Ability to prioritize effectively. - Excellent oral and written communication skills. - Ability to work with large teams. - Meticulous attention to detail. Benefits - Remote work flexibility. - Standard work week: 9 am - 6 pm EST M-F. - Travel required: Yes, up to 25% to visit ships.
• Fine-tuning Upwind’s detection and response mechanisms • Conduct in-depth security investigations • Translating security findings into actionable recommendations • Staying up to date with emerging threats and best practices in cloud security
• Assist the FSO & AFSO with day-to-day security operations through the following tasks: • Provide initial security indoctrination briefings, debriefings, and annual refresher briefings. • Assist with preparing/maintaining manuals, Standard Operating Procedures (SOPs), System Security Plans (SSPs), Insider Threat Program Manual, and other required documents as well as ensuring full compliance to National Industrial Security Program Operating Manual (NISPOM) and other government and company policies. • Ensure compliance with government regulations and company policies regarding security clearances and classified information handling. • Maintain employee security files. • Security Team Liaison to Board Managers • Conduct New Hire Orientation • Support and participate in annual security self-assessments as well as DCSA Security Reviews. • Assist the Information Security team with day-to-day security operations such as: • Evaluate and validate identified vulnerabilities, distinguishing true positives from false positives and assessing potential business impact. • Prioritize remediation efforts based on risk severity, exploitability, asset criticality, and threat intelligence. • Collaborate with system owners and IT teams to communicate findings, recommend remediation actions, and track progress through closure. • Monitor threat intelligence sources to stay informed about emerging vulnerabilities, zero‑day exploits, and industry security trends. • Maintain and enhance vulnerability management processes, including scanning schedules, reporting workflows, and remediation SLAs. • Develop and deliver clear reporting, dashboards, and metrics for leadership, compliance teams, and technical stakeholders. • Support compliance and audit activities, ensuring vulnerability management practices align with frameworks such as NIST, CIS, ISO 27001, or regulatory requirements. • Stay informed about changes in security regulations and industry best practices. • Other security-related duties as assigned.
