• Design implement and maintain security tools and technologies, such as SIEM (Security Information and Event Management) systems, IDS/IPS (Intrusion Detection and Prevention Systems), web proxy, email filtering, and endpoint detection platforms. This includes creating scripts and processes for parsing incoming logs and optimizing them for effective searching.
• Design scripts, integrations, and other automated which are launched when an attack has been detected responses (Security Orchestration, Automation and Response – SOAR).
• Actively participate in the investigation of cyber security incidents. This includes investigating alerts, escalating incidents to stakeholders, implementing containment measures, and identifying the root cause.
• Fine-tune the existing security monitoring systems and reduce false positives/negatives to ensure they are accurate and that useful information is being actioned. This includes analyzing logs, network traffic, and other recorded information to identify attacks that currently do not have detections.
• Stay informed about current cybersecurity threats, vulnerabilities, and trends to enhance detection and response capabilities.
• Work with Business Applications Programmers, Systems Programmers, and other stakeholders who are building and modifying software and hardware, to ensure they integrate security standards, logging requirements and safeguards.
• Review the configuration of our information systems and networks, and recommend configuration changes, system setting changes, network topology changes, and other modifications that would enhance the overall level of security
• Participate in product evaluations for information security tools that are being considered for use within Achieve.

Required Qualifications:

• The desire to LEARN and GROW
• 3+ years of cyber security engineering experience
• Experience with Security Information and Event Management (SIEM) tuning and reporting.
• Experience analyzing log files and event data for suspicious activity, and performing cyber incident response.
• Understanding of Vulnerability Management, including the process and activities required in vulnerability scanning, identification, reporting and remediation efforts.
• Knowledge of penetration testing, red teaming, or offensive security methods.
• Knowledge of frameworks, standards, and best practices (i.e. NIST, OWASP, PCI, ISO, COBIT,)

Preferred Qualifications:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field preferred. Relevant certifications (e.g., CISSP, CISA, SANS GIAC) may be considered in place of formal education.
• Relevant certifications such as CompTIA Security+, Cybersecurity Analyst CySA+, or Certified Ethical Hacker (CEH) are a plus.

Achieve well-being with:

• Hybrid work opportunities
• 401 (k) with employer match
• Medical, dental, and vision with HSA and FSA
• Sick time off
• Access to wellness support through Employee Assistance Program, Talkspace, and fitness discounts
• Pet care discounts for your furry family members
• Financial support in times of hardship with our Achieve Care Fund
• A safe place to connect with other employees through our six employee resource groups

Join Achieve, change the future.

At Achieve, we’re changing millions of lives.

From the single parent trying to catch up on bills to the entrepreneur needing a loan for the next phase of growth, you’ll get to be a part of their journey to a better financial future. We’re proud to have over 3,000 employees in mostly hybrid and 100% remote roles across the United States with hubs in Arizona, California, and Texas. We are strategically growing our teams with more remote, work-from-home opportunities every day to better serve our members. A career at Achieve is more than a job—it’s a place where you can make a true impact, have a sense of belonging, establish a fulfilling career, and put your well-being first.

Attention Agencies & Search Firms: We do not accept unsolicited candidate resumes or profiles. Please do not reach out to anyone within Achieve to market your services or candidates. All inquiries should be directed to Talent Acquisition only. We reserve the right to hire any candidates sent unsolicited and will not pay any fees without a contract signed by Achieve’s Talent Acquisition leader.