Cybersecurity Analyst Jobs

Farallon Capital Management, L.L.C.® is a global institutional asset management firm. Founded in 1986 and headquartered in San Francisco, Farallon has offices in London, Singapore, Hong Kong, Tokyo, São Paulo, New York, and Minnesota, and employs approximately 300 employees. The firm’s investments include public and private debt and equity securities, direct investments in private companies, and real estate.

Position Overview

Farallon Capital Management L.L.C. has an exciting opportunity to join the Cybersecurity team as a Cybersecurity Analyst. This is a full-time position located in Minneapolis, MN spending 3 days per week in the office. This role will be focused on cybersecurity governance. You will be responsible for policy oversight, security metrics, and working with teams to improve the overall maturity of cybersecurity practices.

Successful candidates have a deep understanding of cybersecurity governance, possess broad technology knowledge, are skilled at translating policy requirements into practical technology/business controls, have excellent project management skills, and can establish themselves as a valuable resource relating to cybersecurity risk management matters.

Responsibilities

• Assist with the development and implementation of the security awareness training program.
• Lead projects and assessment initiatives involving vendor reviews, penetration tests, vulnerability remediation, and process improvement.
• Create processes for IT employees to achieve security policy and cyber-risk management objectives.
• Assist with strategies to improve overall security control effectiveness.
• Develop and monitor security metrics by analyzing data and trends from multiple sources.
• Coordinate responses to industry cybersecurity notices.
• Work with IT employees to implement procedures in support of security policies and standards.
• Review technology designs and documentation for control appropriateness and effectiveness.
• Work across IT and business teams on identity and access management strategies.
• Write reports on the current state of policies, incident responses, recovery capabilities, and security program trends.
• Oversee security policy adherence, including the development and maintenance of security control documentation in support of audit and regulatory requirements.

Qualifications

• A strong understanding of the full IT stack, including security tools, infrastructure components, and development practices.
• Proven analytical skills with the ability to review large data sets and automate repetitive processes. Experience with SQL and scripting languages preferred.
• Bachelor's degree in computer science, cybersecurity, or equivalent work experience.
• 5+ years implementing and monitoring security controls.
• Experience working with control frameworks, maturity models, and audit standards, including NIST, ISO, CMMI, SSAE18, etc.
• Clear and concise written and verbal communication skills with an ability to convey complex concepts to technical and non-technical audiences.
• Strong interpersonal skills with the ability to collaborate across teams.

Compensation is competitive and commensurate with experience and expertise. The firm offers an attractive benefits package including, medical, dental, and vision insurance plans and a retirement pension and savings plan.