Job Specifications
Pittsburgh, PA
Founded in 2000, Ivalua is a leading global provider of cloud-based procurement solutions.
Company Overview
At Ivalua we are a global community of exceptional professionals, who believe that digital transformation revolutionizes supply chain sustainability and resiliency to unlock the power of supplier collaboration.
We achieve this through our leading cloud-based spend management platform that empowers hundreds of the world's most admired brands to effectively manage all categories of spend and all suppliers to increase profitability, improve ESG (environmental, social, and corporate governance) performance, lower risk, and improve productivity. Driven by our passions and fueled by our shared ambitions, we empower and challenge each other to create meaningful experiences for our colleagues, customers, partners, and communities.
Learn more at www.ivalua.com. Follow us on LinkedIn
THE OPPORTUNITY
Context
Our growing international IT department (EMEA, AMER, APAC) is composed of over sixty experts responsible for the deployment and operation of the Ivalua Cloud, which hosts environments for our clients around the world. It is also responsible for internal IT infrastructure, IT applications and data, as well as IT support for our users. In this context of growth, we are looking for an experienced Security Analyst (SOC) to strengthen our global SOC team.
Role
As part of the SOC (Security Operations Center) team, you will be responsible for developing and implementing the SOC strategy for our information systems. You will detect suspicious or malicious activities. You will contribute to the handling of confirmed security incidents in support of the InfoSec teams. Your experience will allow you to mentor more junior SOC analysts and act as a liaison between the SOC team and the company's IT and cybersecurity communities.
As the highest-level technical officer of the SOC, you will be responsible for:
The technical aspects of a SOC, ensuring that security measures are implemented and maintained to protect Ivalua's information assets
Day-to-day operations, ensuring that security incidents are identified, analyzed, and addressed quickly and efficiently
What You Will Do With Us
Be the technical point of contact for the SOC team, collaborating directly with the infrastructure, infosec, and cybersecurity solution management teams
Serve as the highest escalation point for other SOC analysts
Provide mentorship, share best practices, and lead security projects
Provide technical advice and support to team members
Be the driving force behind the continuous improvement of SOC processes and tools
Contribute to standard SOC activities, including monitoring, incident management, and vulnerability management
Participate in threat intelligence activities in direct collaboration with the infosec teams
Guard SOC communication with other teams (Security, Infrastructure, Business IT, R&D, etc.) as well as senior IT management
Participate in the studies, deployments, and development of cybersecurity solutions, particularly SOC tools
Implement the necessary processes and reports to analyze logs to detect abnormal user and software behavior, using our SIEM tool and other security consoles.
Define the event log collection strategy.
Performs regular vulnerability assessments, prioritizes remediation, and tracks closure of security gaps.
Manage the coordination, tracking, and remediation of incidents at the global level (EMEA, AMER, APAC).
Contributes to ongoing monitoring of threats, vulnerabilities, and attack methods.
Improve dashboards reporting on alert tracking and SOC KPIs.
Maintain SOC procedures and tools, as well as documentation and knowledge bases.
Ensures adherence to security policies, standards, and regulatory requirements (e.g., GDPR, HIPAA, SOC, FEDRAMP, etc.
YOUR PROFILE
If you have the below experience and strengths this role could be for you:
Skills And Experience
Bachelor’s degree in relevant field preferred with a minimum of 7 years of relevant professional experience, OR Master’s degree in relevant field with a minimum of 5 years of relevant professional experience, OR Equivalent combination of education and experience
Minimum of 7 years in the field of IT security, primarily in SOC (analyst, senior analyst, lead, etc.)
Solid knowledge of Systems and Networks
Knowledge of SIEM tools (MS Sentinel, ELK, Q-Radar, Splunk, AlienVault, etc.)
Knowledge of EDR tools (Microsoft Defender, CrowdStrike, etc.)
Knowledge of Rapid7 or other vulnerability scanning tools would be a plus
Relevant certifications (e.g., CSA, CySA+, CISSP, GCIA,CEH) a plus
Desired Qualities
Rigor, attention to detail, curiosity, autonomy, analytical thinking, adaptability, problem-solving
Leadership & mentorship, continuous learning, ethical judgment
Good communication and writing skills
Motivation to thrive in a scale-up, international, dynamic, and fast-growing environment
What Happens Next
If your application fits th