Senior Information Security Analyst



Blue Bell, PA, USA
Posted on Thursday, March 21, 2024

BCM One is looking to add a new position to our growing security team! The ideal candidate for our new Senior Information Security Analyst position has a strong background in digital forensics and incident response (DFIR), with experience administering Office 365 and Active Directory, and security automation. The candidate should possess a deep understanding of security architectures across Windows, Mac, and Linux operating systems, ideally with experience using CrowdStrike for threat detection and response. Experience working with internal audit teams on SOC 2 and ISO 27001 compliance projects is a plus.

This is a great opportunity for someone looking to step into the next phase of their security career. The Senior Information Security Analyst will have the opportunity to get their hands dirty quickly by making recommendations and executing initiatives as the second-in-command to our VP of IT and Information Security. You will enjoy working in a challenging environment with a team of dedicated security professionals where security is a top company priority.

Work Locations:

Fully remote within the United States. This position is not eligible for visa sponsorship or relocation. We have several office locations that would offer someone the benefit of a hybrid-optional work environment.

Hours & Travel:

Typically traditional business hours based on geographic location. Partial on-call requirement to ensure our systems and data are protected around the clock. Should an incident occur, you will play a lead role in our IRP and be required to flex hours accordingly.

What You Will Do:

  • Lead digital forensics investigations and incident response efforts to mitigate threats and analyze breaches to improve security posture.
  • Design, implement, and manage security automation workflows on our SOAR platform to streamline security operations and response processes.
  • Collaborate with our IT team to administer and secure Office 365 and Active Directory environments, ensuring robust access control and identity management processes are in place.
  • Develop and implement security measures across Windows, Mac, and Linux platforms to protect organizational assets.
  • Use Crowdstrike to monitor, detect, and respond to threats, leveraging its capabilities for proactive threat hunting and incident analysis.
  • Collaborate with the internal audit team to support SOC 2 and ISO 27001 compliance initiatives, including gap analysis, documentation, and implementation of required controls.
  • Demonstrate presence and leadership during high-pressure incidents, effectively communicating with stakeholders across the organization.
  • Conduct security assessments and audits to identify vulnerabilities and ensure adherence to security policies and standards.
  • Participate in a partial on-call rotation to respond to security incidents and emergencies outside of normal business hours.
  • Stay abreast of the latest security trends, threats, and technologies to continuously enhance the security posture of the organization.
  • Other responsibilities as required.

What You Will Need:

  • Bachelor’s degree in Information Security, Computer Science, or related field.
  • 5+ years of experience in information security, specifically in roles involving DFIR and security automation.
  • Strong technical proficiency across Windows, Mac, and Linux operating systems.
  • Experience with CrowdStrike or similar endpoint detection and response (EDR) tools.
  • Knowledge of SOC 2 and ISO 27001 standards, with experience supporting audit and compliance projects highly desirable.
  • Professional certifications such as CISSP, CISM, GCIH, or GCFA are not required, but are a plus.
  • Excellent analytical and problem-solving skills, with the ability to think strategically about security.
  • Strong communication and interpersonal skills, capable of working effectively with technical and non-technical teams.
  • Demonstrated ability to lead effectively during critical incidents, maintaining poise and providing clear, calm, and consistent movement toward a resolution.
  • Ability to participate in an on-call rotation, providing timely responses to critical security incidents outside of standard work hours.

Who We Are:

BCM One is a leading telecom provider of NextGen Communications and Managed Services that has been in business for 30 years with more than 18,000 business customers and 5,000 channel partners who rely on our products, services, and teams to support their critical underlying network infrastructure. BCM One is the parent company to our family of brands that includes SIP.US, SIPTRUNK, Flowroute, SkySwitch, and Pure IP.

Joining the BCM One team is a chance to be part of a financially strong company with an exciting growth story; over the past 4 years we’ve brought together leading companies in our space who have built products, services, and programs to innovate and disrupt our industry. Now, operating under one roof, we are taking BCM One to the next level and looking for talented individuals to help make that happen.

When you choose to work at BCM One, you get to work with a talented team and build experience with the leading technologies, suppliers, and partners in our industry. We don’t offer cookie-cutter solutions, so the opportunities are endless, and the work is always varied and interesting. We take our mission “to provide a world-class experience with every human interaction” seriously, which means everything you do makes a difference. And we’re committed to building and nurturing a diverse and inclusive workforce and environment that empowers you to do your best work, spread your wings and reach your full potential. At BCM One, we encourage our team to learn something new every day, so you don’t just become part of our growth story, we become part of yours.

Why BCM One:

We are committed to creating an environment that fosters teamwork, accountability, innovation, and teamwork. Many BCM One employees have been with the company for 10+ years, which we think says a lot about our culture.

We Are a Team

  • We pride ourselves on our team-based approach to providing quality solutions for our clients. BCM One encourages a culture of collaboration, exposing employees to different areas of the business and fostering career growth.
  • We support employee involvement and provide opportunities to be responsible stewards via our BCM One Gives Back Program and our Emergency Fund to help our team members who are going through difficult times.

Hard Work is Recognized

  • We offer an Employee of the Quarter program with a monetary award and Employee of the Year that includes a 7-day vacation package to the Caribbean. In addition, we host various regional team-building gatherings throughout the year.
  • We believe in developing our team members and offer many opportunities for training, professional development and career growth.

Your Voice is Heard

  • We empower our team members to speak up and look for opportunities in challenges.
  • We have an Employee Council and a Diversity Equity and Inclusion Committee made up of volunteers from across the company who share a passion for making BCM One a great place to work and find ways to positively impact our communities.

How we take care of you:

  • Competitive industry salaries
  • Comprehensive medical, dental, and vision insurance
  • Company-provided life and disability insurance
  • Matching 401 (k) plan
  • Employee Emergency Assistance Fund
  • Paid holidays and vacation time

BCM One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by applicable law.