Your Impact
The Security Analyst is a foundational member of the Information Security team, responsible for executing daily security operations and contributing to the security posture of the environment. This role focuses on alert triage, initial incident response activities, and developing core security skills under regular supervision.
What You'll Do
- Security Operations: The analyst conducts day-to-day security monitoring, prioritizing, and classifying incoming alerts from SIEM, EDR, and other security tools. They perform initial triage to distinguish true incidents from false alarms, and conduct basic checks on agent and log status to ensure data continuity.
- Incident Response (Initial): The analyst is the first responder responsible for initiating the formal IR process, including incident ticket kickoff and stakeholder notification. They execute response actions according to approved playbooks and meticulously document all initial actions, observations, and evidence for seamless escalation to senior team members.
- Data Protection & Phishing: Conduct initial review and triage of Data Loss Prevention (DLP) alerts and assist with DLP investigations. They also manage the phishing email queue, verifying reported threats, blocking malicious content, and ensuring prompt, accurate escalation of novel or complex phishing campaigns.
- Systems Support: The analyst focuses on operational stability working directly with the system owner. They execute routine maintenance tasks (updates, deployments, clean-up) and assist senior team members with system enhancements.
- Project Contribution: Assist Security Architects and Engineers with system updates, selection and deployment of new security tooling. Implementation of security standards, compliance activities and other projects as required.
Who You Are
- 1+ year of dedicated Information Security experience required.
- 2-3 years working in enterprise IT roles such as System Administrator or HelpDesk. ● Familiarity with Incident Response Processes and Remediation Strategies.
- Experience managing and maintaining Security or Enterprise IT tools
- In-depth technical knowledge of network, PC, and platform operating systems, including Linux, macOS and Windows
- Strong TCP/IP networking, DNS, and HTTP knowledge
Even Better If You Have…
- Experience with Enterprise EDR solutions
- Experience with compliance frameworks such as HITRUST, ISO27001, SOC2 or FedRAMP
- Experience securing the public cloud environments (AWS, GCP, Azure)
Authorization to Work in the U.S.: Candidates must be legally authorized to work in the United States without sponsorship now or in the future. DISCO is not currently sponsoring visas, including, but not limited to, H-1B, TN, or EAD, and we are not accepting visa transfers.
Perks of DISCO
- Open, inclusive, and fun environment
- Benefits, including medical, dental and vision insurance, as well as 401(k)
- Competitive salary plus RSUs
- Flexible PTO
- Opportunity to be a part of a company that is revolutionizing the legal industry
- Growth opportunities throughout the company
About DISCO
DISCO provides a cloud-native, artificial intelligence-powered legal solution that simplifies ediscovery, legal document review and case management for enterprises, law firms, legal services providers and governments. Our scalable, integrated solution enables legal departments to easily collect, process and review enterprise data that is relevant or potentially relevant to legal matters. Are you ready to help us fulfill our mission to use technology to strengthen the rule of law? Join us! We are an equal opportunity employer and value diversity.
We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
