This job might no longer be available.

Security Analyst

SECURITY ANALYST

Location: Novato or Montreal

Who We Are:

2K Games is filled with some of the brightest minds in the game creation and publishing arena having delivered NBA2K, WWWE2K, Civilization, Borderlands, and Evolve among other titles. In the quest to protect the integrity of our games and simultaneously creating a safe and fair gaming experience for our gamers, only the best security talent can get the job done.

The 2K Information Security team consists of top-notch security specialists that help protect our games on multiple platforms such as Windows, Mac, Android, iOS and living-room consoles and ensure a secure and reliable experience for our gamers across the planet.

In addition to providing game-related security, privacy, online safety, anti-cheating and anti-fraud controls we pride ourselves in our understanding on how these concepts dovetail with game development and operations and industry trends at large.

If you’re a top-tier security expert with a focus on security penetration testing raring to join a world-class protect, detect and response team in a highly dynamic business environment, we welcome you to join us and make a landmark difference in the gaming universe.

What We Need:

2K Security is looking for a Security Operations expert that can contribute to the design of a global Security Operations program and help bring it to life with cutting-edge security monitoring technologies and techniques.

You will need expertise with enterprise security tools like SIEM, Next-Gen Firewalls, Web Application Firewalls, Vulnerability Scanning Solutions and Security Automation/Orchestration. You will also possess the knowledge and experience to be able to monitor and maintain a robust Security Operations program for a geographically distributed and diverse infrastructure.

What You Will Do:

• Monitor, audit and maintain 2K’s Security Operation Center systems
• Monitor, track, and analyze networks/systems for potential security violations and respond to all such incidents
• Act as subject matter expert for information security events and or incidents
• Ensure security event SLA’s are met
• Report security trends and or problems to management
• Participate in on-call rotation for security incidents. Act as Level 1 SECOPS support during business hours.
• Research emerging threats that apply to 2K and the gaming industry in general
• Participate in security root cause analysis and follow-up
• Research novel approaches to complex problems and deploy solutions to solve those problems
• Maintain and run Security Operations reports and alerts
• Develop correlation rules, tuning policies, automation and application logic for Security Operations systems
• Assist in developing the Computer Security Incident Response Team (CSIRT) and appropriate policies, standards and plans
• Identify and suggest process improvements for Security Operations
• Understand and apply existing playbooks. Modify & maintain playbooks under the direction of the Senior Security Analyst and SECOPS Manager
• Engage in threat hunting exercises under the direction of the Senior Security Analyst and Security Director

Who We Think Will Be A Great Fit:

• 3+ years of Information Security experience in a hands-on Analyst/Engineer role
• Previous experience with creating, tuning and monitoring SIEM systems including technologies such as: Splunk, QRadar, Nitro, etc.
• Hands-on experience with Next Generation Firewall Threat Platforms
• Previous Security Analyst / engineering experience working in a global enterprise environment
• Hands-on experience with anti-virus, intrusion detection systems, firewalls, Active Directory, web proxies, vulnerability scanning solutions and other security tools found in large enterprise network environments
• Experience with DDoS mitigation strategies and solutions
• Excellent written and verbal skills and the ability to present complex, technical information to both technical and non-technical audiences
• Knowledge of Linux and Windows operating systems, TCP/IP, packet analysis tools (Wireshark, etc.), databases and web applications /servers
• Working knowledge of web application security standards (OWASP)
• Knowledge of generally accepted forensic practices and tools
• Previous experience with pen-testing / vulnerability scanning and remediation
• Knowledge of standard frameworks for incident handling e.g. NIST 800-61
• Strong interpersonal and communication skills
• Demonstrable success working within a diverse team environment
• Ability to participate in on-call rotations and work off hours as needed
• Scripting & automation abilities (Javascript, Python, PowerShell, Bash)
• Experience with SAAS, PAAS, IAAS, public and private cloud technologies, Docker, Kubernetes, etc
• Excellent negotiation skills and the ability to analyze problems and engineer solutions that keep 2K secure without over encumbering the business
• Travel occasionally

#LI-2K