An Am Law 100 firm. Advancing our clients’ success. Simplifying their most complex challenges.
Cybersecurity Analyst
Location
California + 4 moreAll locations: California | District Of Columbia | New York | Oregon | Washington
Posted
4 days ago
Salary
$108K - $126K / year
Seniority
Mid Level
Job Description
Cybersecurity Analyst
Davis Wright Tremaine LLP
• Patrol the firm’s networks, review security audits and logs, and regularly verify the cybersecurity controls in place as part of the firm’s Information Security Management System • Participate in assessing the cybersecurity of the firm’s vendors and contractors as well as respond to client reviews of the firm’s cybersecurity posture • Be prepared to respond nimbly and effectively to possible cyber incidents • Provide incident investigation, handling and documentation; and ensure remediation steps timelines are understood • Remain abreast of the latest cybersecurity news, including assessing the implications for the firm’s systems of newly-identified vulnerabilities • Maintain expertise on the evolving tactics, techniques, and procedures of sophisticated malicious cyber actors • Supports cybersecurity awareness program by explaining policies and best practices, developing training materials, and advising users on secure solutions to business problems
Job Requirements
- 2+ years’ experience in a similar technology-based role
- Demonstrated hands-on experience with network and computer technologies
- GED or High School Diploma
- Advanced education in cybersecurity, computer science, or engineering a plus
- Ability to communicate and collaborate effectively and professionally with all levels of a professional services organization
- Strong interpersonal skills, ability to work in a fast-paced environment and in both team and independent settings
- High degree of sensitivity to confidential matters
- Must pass background investigation
- Familiarity with risk management principles
- Triage, investigate, respond to, and escalate security anomalies and alerts
- Understanding of network protocols and the basics of TCP/IP
- Rudimentary computer programming and scripting skills
- Demonstrated abilities in problem-solving and analysis: identifies issues, analyzes information to assess root cause and relationships, risks, and potential risk responses; proven ability to synthesize and summarize complex data into concise recommendations and reports
- Ability to successfully facilitate collaboration across multiple functions, departments and levels
- Consistently delivers on commitments, deadlines and objectives while remaining in scope and leveraging appropriate tools, methods, frameworks, and professional standards
- Ability to build trust and credibility with business partners and leadership while recommending initiatives, and identifying gaps and potential issues
- Ability to work independently while representing the services of the department with the highest level of professionalism.
Benefits
- Choice of health and vision insurance plans
- 2 paid volunteer days for qualifying community service work
- Dental plan
- Fertility and adoption benefit
- Paid sabbatical after 13 years of service
- Tuition reimbursement
- Commuter benefits
- Retirement contribution
- Bonuses available for full-time employees
Related Guides
Related Categories
Related Job Pages
More Security Analyst Jobs
• Run external/internal vulnerability and application/software scans; analyze, deduplicate, and publish prioritized remediation backlogs. • Correlate findings with threat intelligence, KEV/exploit data, and asset criticality; track SLAs and risk reduction. • Coordinate fixes with Infra/Identity/App teams; validate remediation, capture evidence, and report on closure. • Support formal penetration tests and external posture monitoring (e.g., BitSight); manage findings through closure. • Design, build, and operate AI-driven workflows (Claude and/or ChatGPT) that automate recurring work across security operations, identity, GRC, and reporting — prioritized by the Sr. Director. • Translate leadership priorities into production automations: report generation, evidence collection, alert summarization, audit prep, vuln triage drafting, ticket workflow assistance. • Maintain human-in-the-loop governance and audit trails for all AI outputs; document prompts, approvals, and edge cases. • Continuously benchmark AI tooling effectiveness; report time saved, accuracy, and adoption across the department. • Participate in an on-call rotation.
Mid-level Information Security Analyst – Vulnerability and Identity Management
PortobelloExciting New Fashion Game - forward Thinking in a Changing World
• Execute the Vulnerability Management lifecycle: analyze scan results, prioritize based on risk, and coordinate and track remediation with the responsible teams (Infrastructure, Systems, etc.). • Maintain, update and improve operational indicators and remediation workbooks (agent coverage, severity, monitoring of remediation SLAs). • Operate Identity and Access Management (IAM) processes: provisioning, deprovisioning, privilege granting, periodic access reviews and support for MFA mechanisms. • Actively support corporate access review campaigns and validation of segregation of duties (SoD). • Monitor, classify and investigate alerts generated by the security tools within your scope. • Perform initial triage and analysis of security incidents, escalating to a Specialist when necessary. • Produce periodic operational reports and security metrics for your area of responsibility. • Prepare and keep technical documentation and Standard Operating Procedures (SOPs) up to date.
Mid-level Information Security Analyst – Detection, SIEM, Perimeter, NGFW
PortobelloExciting New Fashion Game - forward Thinking in a Changing World
• Operate and support the maintenance of the SIEM platform, ensuring correct collection of log sources, and the integrity and quality of received data. • Support the creation, review and fine-tuning of detection rules and use cases to reduce false positives and optimize alerts. • Operate and administer Next-Generation Firewalls (NGFW): controlled implementation of access rules, NAT, VPNs, justification documentation, and periodic review of orphaned rules. • Actively support network segmentation activities, traffic rules, and perimeter hardening. • Monitor, classify and investigate security alerts generated by the SIEM, firewalls and other perimeter tools. • Perform triage and initial analysis of perimeter security incidents, carrying out structured escalation to a Specialist when necessary. • Produce operational reports, traffic maps and indicators of security incidents/blocks. • Create and keep up-to-date technical documentation of topologies, network flows and operational procedures (SOPs).
Security Analyst – Mid-Atlantic region
GuidePoint SecurityWe help organizations make smarter cybersecurity decisions that minimize risk.
• GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. • Seeking a Security Analyst with a proactive mindset to prevent incidents rather than just respond. • Collaborating as a team player and willingness to learn from constructive criticism to stay ahead of emerging threats and innovative threat actors. • Looking for a candidate currently living in the eastern time zone (EST)



