56 Cybersecurity Analyst jobs in San Jose

• Manages and establishes protocols to protect digital files and information systems against unauthorized access, modification, and/or destruction.
• Selects, supervises, trains, motivates, evaluates, counsels, and disciplines staff.
• Serves as the subject matter expert on cybersecurity programs.
• Supervises and ensures effective monitoring of networks, applications, email system, and server farm in real time to identify and combat security intrusions.
• Plans and implements cybersecurity, disaster recovery (DR), and business continuity (BC) measures and controls.
• Researches, implements, maintains, and leads periodic testing of systems and controls for cyber security, DR & BC, including software tools and countermeasures.
• Recommends and installs hardware and software programs to mitigate security risks.
• Researches, examines, aggregates, refines, and presents data sets based on keyword, email, and/or internet history searches.
• Ensures continuous monitoring of intrusion detection and prevention systems.
• Supervises and participates in network vulnerability testing, risk analyses, and cybersecurity assessments; resolves vulnerability issues.
• Manages, plans, and conducts internal and external cyber security audits; interprets and documents audit results; recommends and implements corrective actions.
• Defines, implements, and maintains agency cyber security policies.
• Ensures that firewall logs are reviewed and intrusion attempts are investigated.
• Investigates, analyzes, and plans the responses to security breaches to identify root causes.
• Coordinates cyber security plans, activities, and projects with other technology personnel and outside Contractors.
• Ensures continuous monitoring and evaluation of cybercrime bulletins from local, state, and federal law enforcement agencies and coordinates with law enforcement cybercrime teams.
• Supervises or provides training to employees on cyber security awareness and data security procedures; Plans the development and administration of assigned budget and capital planning for cyber security, DR & BC.
• Monitors cyber security, DR & BC project expenditures, recommending adjustments as necessary.
• Collaborates with other departments and management to improve cybersecurity, DR & BC, and manage risks.
• Reviews and prepares responses to audit reports and other documents prepared by others.
• Prepares technical reports, grant applications, memoranda, and other documents
• Makes presentations on findings/recommendations.
• Reviews, audits, and provides comments for corrective action on plans and procedures related to Sensitive Security Information (SSI), Cybersecurity, Disaster Recovery, and Business Continuity for facilities, equipment and systems designed and commissioned as part of the scope of the BSVII Program.
• Performs related duties as required.

• Bachelor's degree in Computer Science, Management Information Systems, or a related field
• Additional professional experience implementing cyber security measures and actively combatting security intrusions may be substituted for education on a year-for-year basis
• Four (4) years of increasingly responsible experience performing technical and analytical duties in coordinating and managing cybersecurity programs and initiatives
• Certifications, training, education, and experience, that demonstrate possession of the required knowledge, skills, and abilities
• Knowledge of the principles of supervision, training, motivation, performance evaluation, and discipline
• Advanced principles and practices of cybersecurity, digital access control, and intrusion detection and prevention
• Knowledge of operational characteristics of computer networks, server farms, and technology systems administration
• Knowledge of cybersecurity vulnerability testing and risk analysis
• Advanced methods and techniques for managing and mitigating cyber security, DR & BC risks
• Principles and practices of cyber security, DR & BC audit and audits documentation
• Knowledge of cyber security, DR & BC technology tools and countermeasures
• Principles of organization, administration, personnel, and fiscal management
• Laws and regulations pertaining to cyber security, DR & BC and confidential data
• Principles and practices of public sector procurement and grant funding
• Report writing and presentation
• Ability and experience to plan, organize, and coordinate a cybersecurity program
• Ability to supervise, train, motivate, evaluate, and discipline subordinate staff
• Experience managing overall planning and protocols to protect VTA's data against unauthorized
• access, modification, and/or destruction
• Ensure effective monitoring of technology infrastructure in real-time; effectively identify and combat security intrusions
• Research, recommend, and install cybersecurity software tools and countermeasures
• Ability to coordinate the development and implementation of agency-wide cyber security policies
• Experience supervising and participating in internal and external cyber security audits; interpret and document audit results; recommend and implement corrective actions.
• Evaluate the effectiveness of cyber security tools and countermeasures and develop cost-effective solutions
• Ability to prepare reports and recommendations; review reports prepared by others.
• Keep up to date on cyber security threats and stay current on intrusion detection and prevention hardware and software technologies
• Strong interpersonal communication skills
• Excellent verbal and written communication skills with the ability to present and communicate technical information to non-technical audiences

Cordoba Corporation, a leading engineering firm in California, is hiring a Senior Information Systems Analyst to lead our Cybersecurity and Cloud Systems Administration work including significant client project work. Under general supervision, this role involves planning, analyzing, designing, architecting, and implementing data infrastructure, information flows, and security measures. As a first-line subject matter expert, you will supervise and guide staff in cybersecurity activities, managing the most complex aspects of our security program. Responsibilities include overseeing cybersecurity measures, combating security intrusions, and protecting confidential data against unauthorized access. This role holds supervisory authority over assigned staff and consultants for Cybersecurity and Cloud-based systems. Join us in being at the forefront of our cybersecurity efforts.

1. Manages and establishes protocols to protect digital files and information systems against unauthorized access, modification, and/or destruction.
2. Selects, supervises, trains, motivates, evaluates, counsels, and disciplines staff.
3. Serves as the subject matter expert on cybersecurity programs.
4. Supervises and ensures effective monitoring of networks, applications, email system, and server farm in real time to identify and combat security intrusions.
5. Plans and implements cybersecurity, disaster recovery (DR), and business continuity (BC) measures and controls.
6. Researches, implements, maintains, and leads periodic testing of systems and controls for cyber security, DR & BC, including software tools and countermeasures.
7. Recommends and installs hardware and software programs to mitigate security risks.
8. Researches, examines, aggregates, refines, and presents data sets based on keyword, email, and/or internet history searches.
9. Ensures continuous monitoring of intrusion detection and prevention systems.
10. Supervises and participates in network vulnerability testing, risk analyses, and cybersecurity assessments; resolves vulnerability issues.
11. Manages, plans, and conducts internal and external cyber security audits; interprets and documents audit results; recommends and implements corrective actions.
12. Defines, implements, and maintains agency cyber security policies.
13. Ensures that firewall logs are reviewed and intrusion attempts are investigated.
14. Investigates, analyzes, and plans the responses to security breaches to identify root causes.
15. Coordinates cyber security plans, activities, and projects with other technology personnel and outside contractors.
16. Ensures continuous monitoring and evaluation of cybercrime bulletins from local, state, and federal law enforcement agencies and coordinates with law enforcement cybercrime teams.
17. Supervises or provides training to employees on cyber security awareness and data security procedures; plans the development and administration of assigned budget and capital planning for cyber security, DR & BC.
18. Monitors cyber security, DR & BC project expenditures, recommending adjustments as necessary.
19. Collaborates with other departments and management to improve cybersecurity, DR & BC, and manage risks.
20. Reviews and prepares responses to audit reports and other documents prepared by others.
21. Prepares technical reports, grant applications, memoranda, and other documents.
22. Makes presentations on findings/recommendations.
23. Reviews, audits, and provides comments for corrective action on plans and procedures related to Sensitive Security Information (SSI), Cybersecurity, Disaster Recovery, and Business Continuity for facilities, equipment, and systems designed and commissioned as part of the scope of the BSVII Program.
24. Performs related duties as required.

• Bachelor's degree in Computer Science, Management Information Systems, or a related field.
• Additional professional experience implementing cyber security measures and actively combatting security intrusions may be substituted for education on a year-for-year basis.
• Four (4) years of increasingly responsible experience performing technical and analytical duties in coordinating and managing cybersecurity programs and initiatives.
• Certifications, training, education, and experience, that demonstrate possession of the required knowledge, skills, and abilities.
• Knowledge of the principles of supervision, training, motivation, performance evaluation, and discipline.
• Advanced principles and practices of cybersecurity, digital access control, and intrusion detection and prevention.
• Knowledge of operational characteristics of computer networks, server farms, and technology systems administration.
• Knowledge of cybersecurity vulnerability testing and risk analysis.
• Advanced methods and techniques for managing and mitigating cyber security, DR & BC risks.
• Principles and practices of cyber security, DR & BC audit and audits documentation.
• Knowledge of cyber security, DR & BC technology tools and countermeasures.
• Principles of organization, administration, personnel, and fiscal management.
• Laws and regulations pertaining to cyber security, DR & BC and confidential data.
• Principles and practices of public sector procurement and grant funding.
• Report writing and presentation.
• Ability and experience to plan, organize, and coordinate a cybersecurity program.
• Ability to supervise, train, motivate, evaluate, and discipline subordinate staff.
• Experience managing overall planning and protocols to protect VTA's data against unauthorized access, modification, and/or destruction.
• Ensure effective monitoring of technology infrastructure in real-time; effectively identify and combat security intrusions.
• Research, recommend, and install cybersecurity software tools and countermeasures.
• Ability to coordinate the development and implementation of agency-wide cyber security policies.
• Experience supervising and participating in internal and external cyber security audits; interpret and document audit results; recommend and implement corrective actions.
• Evaluate the effectiveness of cyber security tools and countermeasures and develop cost-effective solutions.
• Ability to prepare reports and recommendations; review reports prepared by others.
• Keep up to date on cyber security threats and stay current on intrusion detection and prevention hardware and software technologies.
• Strong interpersonal communication skills.
• Excellent verbal and written communication skills with the ability to present and communicate technical information to non-technical audiences.

Salary Range: $175,000 - $205,000

Location: Santa Clara, CA project office

Work Environment: Onsite, work odd and unusual hours, including weekends and holidays, or on-call as assigned

Cordoba Corporation, Making a Difference

Cordoba Corporation is a leading civil engineering, construction management, program management, and planning firm. Our expertise spans diverse sectors, including education and facilities, transportation, water, and energy. Collaborating closely with our clients, we have successfully delivered complex and high-impact infrastructure projects across California.

National Recognition - Cordoba's efforts have garnered national acclaim. Engineering News-Record (ENR) has consistently ranked us as a "top 100 construction management firm" and a "top 50 program management firm." Additionally, ENR recognized Cordoba as a "top 100 design firm" in California in 2018. Our business model emphasizes efficiency, fostering a dynamic work environment. We approach projects with multifaceted strategies, ensuring successful outcomes.

Statewide Presence - With headquarters in Los Angeles, Cordoba maintains a strong statewide presence. Our offices extend to San Francisco, Sacramento, San Ramon, Chatsworth, Santa Ana, Ontario, and San Diego.

Enhancing Employee Well-Being

Benefits and Perks: We offer multiple medical and dental insurance plans, as well as vision insurance. Plans are subsidized for both employees and dependents with coverage effective the first month after hire. Additionally, Cordoba provides employees with paid AD&D and life insurance, 401k with an industry-leading employer match, generous vacation and sick leave accruals, 9 paid holidays, and other forms of paid time off. We also offer flexible spending accounts (FSA's), including medical care reimbursement, dependent care reimbursement, and commuter benefit plans. Employees are also eligible for our employee assistance program and well-being benefits that include stress management, nutrition, and financial well-being.

Cordoba Corporation provides equal employment opportunities, promoting diversity and inclusion. We welcome applicants regardless of race, color, religion, sex, national origin, age, disability, or genetics.

Harassment-Free Workplace: We strictly prohibit workplace harassment based on any factor, including race, gender, sexual orientation, or disability. Cordoba is committed to fostering a healthy and happy lifestyle for our employees, both within and beyond the workplace.

For inquiries or accommodations, please contact our HR Department at: (213) 8

Join Fortinet, a cybersecurity pioneer with over two decades of excellence, as we continue to shape the future of cybersecurity and redefine the intersection of networking and security. At Fortinet, our mission is to safeguard people, devices, and data everywhere. We are currently seeking a dynamic SOC Analyst to contribute to the success of our rapidly growing business.

You would act as a SOC Analyst for global Security Operations Center (SOC) team at our Sunnyvale HQ office. This highly technical role requires continuous security event monitoring, threat identification, risk assessment, incident response, and collaboration with regional leaders to advance Fortinet's security posture and compliance. As part of a 24x7x365 "follow the sun" SOC model, this role involves working five days per week (40 hours), which may include weekend shifts as part of the standard workweek.

As an SOC Analyst, your responsibilities will include:

• Actively monitor and analyze security events, alerts, and logs using SIEM, SOAR, EDR, DLP, Threat Intelligence and Cloud Security platforms.
• Investigate incidents to mitigate risks. Define and refine SOC automation workflows, including playbooks, alerts, reports, and dashboards, to improve threat detection and incident response.
• Analyze security logs to identify anomalies, policy violations, or potential attacks, and take appropriate action based on procedures.
• Provide support and guidance to system administrators, developers, and end-users on security best practices and control implementation.
• Contribute to the maintenance and enforcement of security policies, standards and procedures to ensure compliance.

We are looking for:

• Experience : Minimum of 5 years of hands-on experience in Information Technology, cybersecurity, or working in a Security Operations Center (SOC) or Network Operations Center (NOC).
• Technical Skills :
  
  • Solid understanding of the threat landscape, attacker tactics (e.g., phishing, malware, APTs, DoS attacks), and defensive strategies.
  • Proficiency in at least one scripting language (e.g., Python preferred).
  • Skilled in security technologies such as SIEM, SOAR, EDR, ID/IPS, access control, vulnerability management, cloud security, and External Attack Surface Management (EASM).
  • Experience with cloud security concepts, tools, and best practices across platforms like AWS, Azure, or GCP.
  
  
• Soft Skills :
  
  • Exceptional written, verbal, and interpersonal communication skills, with strong attention to detail.
  • Proven ability to collaborate across teams and foster a customer-focused and security-aware culture.
  
  

Educational & Certification Requirements:

• Education : Bachelor's degree in Computer Science, Information Security, or a related field.
• Certifications : Preferred certifications: CISSP, CCSP, CISA, CISM, CRISC, CCNA, GIAC GCFE, GCFA, GCIH.

About Our Team:

Join our team, known for its collaborative ethos, working seamlessly with global customers, internal engineering teams and product development groups. Our team culture emphasizes continuous learning, innovation, and a strong commitment to customer satisfaction. We embrace Fortinet's core values of openness, teamwork and innovation, fostering an environment where team members support each other, share knowledge, and leverage AI to solve complex technical challenges. Our inclusive and dynamic team thrives on collaboration and is driven by the shared goal of maintaining Fortinet's high standards of excellence in cybersecurity solutions.

Why Join Us:

We encourage candidates from all backgrounds and identities to apply. We offer a supportive work environment and a competitive Total Rewards package to support you with your overall health and financial well-being.

Embark on a challenging, enjoyable, and rewarding career journey with Fortinet. Join us in bringing solutions that make a meaningful and lasting impact to our 660,000+ customers around the globe.

The US base salary range for this full-time position is $160,000-$180,000. Fortinet offers employees a variety of benefits, including medical, dental, vision, life and disability insurance, 401(k), 11 paid holidays, vacation time, and sick time as well as a comprehensive leave program.

Wage ranges are based on various factors including the labor market, job type, and job level. Exact salary offers will be determined by factors such as the candidate's subject knowledge, skill level, qualifications, experience, and geographic location.

All roles are eligible to participate in the Fortinet equity program, Bonus eligibility is reviewed at time of hire and annually at the Company's discretion.

#GD

• The Analyst is responsible for Security Operations, including monitoring, analysis, and response to security events and potential security incidents
• The Analyst will also work on threat hunting, improvements to detection, integrating threat intelligence and incident response capabilities.
• Knowledgeable in multiple security tools and processes such as SIEM, IDS, EDR, DLP, WAF and similar.
• Collaborate with Information Security Engineering and Information technology teams in monitoring and alerting infrastructure, processes, and tools.
• Provide recommendations for improving our cybersecurity strategies and practices.
• Stay updated with the latest cybersecurity threats, technologies, and industry trends.
• Develop and maintain standard operating procedures (SOPs) and run books for incident detection, analysis, and response processes.

• Understanding of technology systems such as networks, applications, servers, cloud, authentication, and emerging technologies
• Experience with TCP/IP networking, Windows, Unix/Linux, and networking services such as SSL, DNS, SMTP, DHCP, etc.
• Proficiency in using SIEM tools (e.g., Splunk, ELK Stack) for log management, event correlation, and threat detection.
• Functional knowledge of MITRE ATT&CK framework and other cybersecurity methodologies.
• Understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion tactics, techniques and procedures.
• 5+ years of experience in a Security Operations Role.
• Experience working with information security teams and functions, such as security engineering, security operations centers, vulnerability assessment, vulnerability threat management, security incident management, threat intelligence, threat hunting, and cyber threat analytics
• Good communications skills (oral and written) with a history of successfully engaging with multiple levels of leadership
• Strong understanding of Cyber Security Standards (ISO27001, NIST CSF, CIS Benchmarks)
• Must be a self-starter, self-motivated, and able to work independently with little oversight
• Proficiency in scripting languages, would be an advantage.
• Ability to grasp new technologies quickly, prioritize and multitask on multiple responsibilities
• Bachelor's Degree or commensurate experience required.

WhiteDog is seeking an Information Security Analyst to join our Security Operations Center team. The Analyst will help coordinate and report on cyber incidents impacting SOC-as-a-Service customers. This position involves critical duties and responsibilities that must continue to be performed during crisis situations and contingency operations, which may necessitate extended hours of work.

• Onsite Location : Santa Clara, CA (no remote available)
• Employment Type : Full-Time, hourly
• Compensation : $24-$29/hour

• Responsible for working in a 24x7 Security Operation Center (SOC) in person. (Hours - 7:00pm-7:00am PT)
• Provide analysis and trending of security log data from a large number of heterogeneous security devices.
• Provide Incident Response (IR) support when analysis confirms actionable incident.
• Provide threat and vulnerability analysis as well as security advisory services.
• Analyze and respond to previously undisclosed software and hardware vulnerabilities.
• Investigate, document, and report on information security issues and emerging trends.
• Integrate and share information with other analysts and other teams.
• Ability to work and be available for on-call activities
• Other duties as assigned.

• Experience in security device management and SIEM.
• Knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
• Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix.
• Knowledge of applications, databases, middleware to address security threats against the same.
• Knowledge of various security methodologies and processes, and technical security solutions (firewall and intrusion detection systems).
• Knowledge of TCP/IP Protocols, network analysis, and network/security applications.
• Knowledge of common Internet protocols and applications.
• Ability to multi-task, prioritize, and manage time effectively.
• Strong attention to detail.
• Excellent interpersonal skills and professional demeanor.
• Excellent verbal and written communication skills.
• Excellent customer service skills.
• Proficient in Microsoft Office Applications.

• You must be a US Citizen
• 1-3 years' experience as a Security/Network Administrator or equivalent knowledge.
• Security Essentials Certification (GSEC)
• Certified Intrusion Analyst (GCIA)
• Certified Incident Handler (GCIH)
• Certified Ethical Hacker (CEH)
• Certified Penetration Tester (CWAPT)
• CompTIA Network+
• CompTIA Security+

• Security Configuration: Assist with establishing security configuration standards for systems and business applications.
• Policy Development: Create, maintain, and update security policies, processes, and procedures for systems and business applications.
• Team Collaboration: Serve as a key member of the cybersecurity and change management teams.
• Project Participation: Engage in both technical and non-technical projects requiring cybersecurity oversight, ensuring compliance with relevant policies, procedures, and standards.
• Incident Response: Act as an additional member of the security team, supporting incident response (IR) activities alongside the IR and security operations center (SOC) teams.
• Liaison Role: Serve as a liaison for the cybersecurity team, improving the organization's overall security posture.
• Security Solutions: Develop, evaluate, test, and document security solutions and controls, working closely with team members to mitigate risks while enabling business innovation.
• Continuous Learning: Stay ahead of cyber attackers by keeping up to date with the latest attack methods, continually learning and growing in the role.
• Collaboration: Work collaboratively with internal and external partners, technology management, and business stakeholders.
• Vendor Management: Maintain vendor management standards, questionnaires, and documentation to comply with regulatory requirements.
• Assessments: Interface with internal and external parties for various assessments.
• Security Recommendations: Recommend new security solutions and improve existing security controls without hindering business innovation.

• Experience: At least 5 years of experience in information/cybersecurity or IT system administration with a security focus.
• Technical Knowledge: Understanding of security requirements for implementing technical systems and monitoring them for unusual and suspicious activities.
• Incident Response: Expertise in incident response and system monitoring and analysis.
• Compliance Knowledge: Experience with compliance and framework requirements such as CCPA, GLBA, GDPR, HIPAA, SOX, CIS Controls, NIST CSF, COBIT, etc.
• Communication Skills: Ability to effectively communicate business risks related to cybersecurity.
• Assessment Experience: Experience conducting risk and other assessments to protect the business and comply with privacy laws.
• Platform Knowledge: Knowledge of multiple computing platforms, including Windows, OSX, Linux, Unix, networks, and endpoints.

• Vulnerability and penetration testing engagements.
• Change management and project management.
• Creating policies, standards, and guidelines.
• Cyber Threat Intelligence (CTI) analysis.
• Creating and maintaining report dashboards.
• Working with 3rd party vendor security reviews and assessments.

• (ISC)^2: CISSP, SSCP, CCSP, CGRC, ISSEP
• ISACA: CISA, CRISC, CGEIT, CSX-P
• CompTIA: Security+, CySA+

• Conduct comprehensive risk assessments and vulnerability analyses to identify potential security weaknesses.
• Design and implement security solutions, including firewalls, intrusion detection/prevention systems, and endpoint security.
• Develop and enforce security policies, standards, and guidelines in line with industry best practices and regulatory requirements.
• Monitor security alerts and incident response activities, performing in-depth analysis and remediation.
• Collaborate with IT and business units to integrate security into the system development lifecycle.
• Stay abreast of emerging threats and technologies, recommending and implementing proactive security measures.
• Manage security awareness training programs for employees.
• Conduct regular security audits and penetration testing.
• Oversee the secure configuration and management of cloud environments (AWS, Azure).
• Develop and maintain security documentation, including incident response plans and disaster recovery procedures.
• Mentor junior security analysts and contribute to the team's growth and knowledge sharing.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 5+ years of experience in information security, with a focus on risk management, incident response, and security architecture.
• Proven experience with security technologies such as SIEM, IDS/IPS, DLP, EDR, and firewalls.
• Strong understanding of network protocols, operating systems (Windows, Linux), and cloud security principles.
• Excellent analytical and problem-solving skills, with the ability to work under pressure.
• Proficiency in scripting languages (e.g., Python, PowerShell) is a plus.
• Relevant security certifications such as CISSP, CISM, or CompTIA Security+ are highly desirable.
• Exceptional communication and interpersonal skills, with the ability to explain technical concepts to non-technical audiences.
• Ability to work effectively in a hybrid environment, collaborating both remotely and in the office located in San Jose, California, US .

• Developing, implementing, and managing comprehensive information security programs and policies.
• Conducting regular vulnerability assessments, penetration testing, and risk analysis.
• Monitoring security alerts and logs, investigating security incidents, and coordinating incident response efforts.
• Designing and implementing security controls across networks, systems, and applications.
• Ensuring compliance with relevant industry regulations and standards (e.g., GDPR, CCPA, SOC 2).
• Managing security awareness training for employees and promoting a security-conscious culture.
• Evaluating and recommending new security technologies and solutions.
• Collaborating with IT and development teams to ensure secure software development lifecycle practices.
• Developing and maintaining incident response plans and business continuity strategies.
• Staying current with emerging cybersecurity threats and vulnerabilities.
• Mentoring junior security analysts and providing technical guidance.
• Generating regular security reports for management and stakeholders.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 7 years of experience in information security, cybersecurity operations, or risk management.
• Proven experience with security frameworks, threat modeling, and incident response.
• Strong understanding of network security, application security, and cloud security principles.
• Experience with security tools such as SIEM, IDS/IPS, firewalls, and endpoint protection.
• Relevant security certifications (e.g., CISSP, CISM, CEH) are highly desirable.
• Excellent analytical, problem-solving, and communication skills.
• Ability to work independently and manage multiple priorities in a remote setting.