InfoSec Analyst II

MongoDB’s mission is to empower innovators to create, transform, and disrupt industries by unleashing the power of software and data. We enable organizations of all sizes to easily build, scale, and run modern applications by helping them modernize legacy workloads, embrace innovation, and unleash AI. Our industry-leading developer data platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available in more than 115 regions across AWS, Google Cloud, and Microsoft Azure. Atlas allows customers to build anywhere—on the edge, on premises, or across cloud providers. With offices worldwide and over 175,000 developers joining MongoDB every month, it’s no wonder that leading organizations, like Samsung and Toyota, trust MongoDB to build next-generation, AI-powered applications.

The MongoDB Information Security team is seeking a motivated Information Security Analyst to join the team. The ideal candidate will have a vast background in security, including but not limited to, experience in corporate environments, incident response, systems, applications, and an understanding of cloud environments. 

This is an exciting opportunity to be a key member of our Information Security Operations team. You will be responsible for solving technical and administrative problems, reducing risk, and building trust. You will also be responsible for maintaining security solutions, tooling, alerting, and workflow automations. The team aims to seek challenges, analyze alerts, establish trust across the team and greater org. 

Location: Gurugram, India; onsite 5 days/week

Work Timings: Approximately 9 am to 6 pm IST

Candidate Profile

The right candidate for this role will have

• Experience in security operations and incident response disciplines
• Experience detection/incident tooling or workflow optimization
• Some experience working within cloud platforms, particularly AWS
• Experience working & maintaining with SIEM; developing queries & alerts
• Some Experience performing smaller investigations, analysis and communicating the events or incidents to proper stakeholders clearly
• Experience deploying tooling to advance investigation tactics and incident response across different environments ie; corporate environments and cloud environments 
• An understanding of Windows & MacOS, Linux is nice to have
• An understanding of various threats and how to investigate, detect and prevent them
• Love to learn; you are motivated to learn about security and tinkering
• Utilizing this knowledge in SecOps, or creatively using it in a response effort
• Experience interfacing with technical and non-technical individuals. Ability to adjust the level of technicality depending on the group
• GIAC, CEH, GSOC certificates

Position Expectations

• Leveraging automation workflows, and enriching discoveries and detections
• Assist with Incident Response and Investigation across different environments and platforms
• Utilizing analysis frameworks (ie; MITRE) to better understand gaps, and working towards closing those gaps 
• Maintain, improve, and configure Information Security Operations tooling and alerts
• Leverage threat intelligence for enrichment
• Develop well written documentation and playbooks
• Work cross functionally with multiple teams deploying tooling, establishing new processes, or improving existing processes
• Ability to quickly learn new Information Security concepts and adapt to a modern, fast-paced organization
• Help mentor and train others on the team
• Participate in weekly on-call rotations

Success Measures

The Information Security Analyst will be successful in this role when they can execute the following strategic tasks:

3 Months

• You will have familiarized yourself with much of the Information Security Operations documentation hub, and met everyone on the team. You will have the opportunity to identify any gaps and make improvements, leading to an understanding of the Security Operations departments process.

6 Months

• You will have familiarized yourself with much of the data and tooling the entire Information Security team uses. You would have fully scoped and executed a medium to small project by now, that has positively impacted the company security posture.

12 Months

• Fully understand our program, response process and operation of tooling., as well as learning more about workflow automation. You should be considered a subject matter expert in the realm of investigations for corporate security operations.

To drive the personal growth and business impact of our employees, we’re committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees’ wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it’s like to work at MongoDB, and help us make an impact on the world!

MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.

"MongoDB is an equal opportunities employer"