Senior Information Security Analyst

at  BCM One

BCM One is looking to add a new position to our growing security team! The ideal candidate for our new Senior Information Security Analyst position has a strong background in digital forensics and incident response (DFIR), with experience administering Office 365 and Active Directory, and security automation. The candidate should possess a deep understanding of security architectures across Windows, Mac, and Linux operating systems, ideally with experience using CrowdStrike for threat detection and response. Experience working with internal audit teams on SOC 2 and ISO 27001 compliance projects is a plus.
This is a great opportunity for someone looking to step into the next phase of their security career. The Senior Information Security Analyst will have the opportunity to get their hands dirty quickly by making recommendations and executing initiatives as the second-in-command to our VP of IT and Information Security. You will enjoy working in a challenging environment with a team of dedicated security professionals where security is a top company priority.

WHO WE ARE:

BCM One is a leading telecom provider of NextGen Communications and Managed Services that has been in business for 30 years with more than 18,000 business customers and 5,000 channel partners who rely on our products, services, and teams to support their critical underlying network infrastructure. BCM One is the parent company to our family of brands that includes SIP.US, SIPTRUNK, Flowroute, SkySwitch, and Pure IP.
Joining the BCM One team is a chance to be part of a financially strong company with an exciting growth story; over the past 4 years we’ve brought together leading companies in our space who have built products, services, and programs to innovate and disrupt our industry. Now, operating under one roof, we are taking BCM One to the next level and looking for talented individuals to help make that happen.
When you choose to work at BCM One, you get to work with a talented team and build experience with the leading technologies, suppliers, and partners in our industry. We don’t offer cookie-cutter solutions, so the opportunities are endless, and the work is always varied and interesting. We take our mission “to provide a world-class experience with every human interaction” seriously, which means everything you do makes a difference. And we’re committed to building and nurturing a diverse and inclusive workforce and environment that empowers you to do your best work, spread your wings and reach your full potential. At BCM One, we encourage our team to learn something new every day, so you don’t just become part of our growth story, we become part of yours.

• Lead digital forensics investigations and incident response efforts to mitigate threats and analyze breaches to improve security posture.
• Design, implement, and manage security automation workflows on our SOAR platform to streamline security operations and response processes.
• Collaborate with our IT team to administer and secure Office 365 and Active Directory environments, ensuring robust access control and identity management processes are in place.
• Develop and implement security measures across Windows, Mac, and Linux platforms to protect organizational assets.
• Use Crowdstrike to monitor, detect, and respond to threats, leveraging its capabilities for proactive threat hunting and incident analysis.
• Collaborate with the internal audit team to support SOC 2 and ISO 27001 compliance initiatives, including gap analysis, documentation, and implementation of required controls.
• Demonstrate presence and leadership during high-pressure incidents, effectively communicating with stakeholders across the organization.
• Conduct security assessments and audits to identify vulnerabilities and ensure adherence to security policies and standards.
• Participate in a partial on-call rotation to respond to security incidents and emergencies outside of normal business hours.
• Stay abreast of the latest security trends, threats, and technologies to continuously enhance the security posture of the organization.
• Other responsibilities as required.