Qu’s mission is to deliver world class enterprise software to help restaurant chains thrive in the face of increasing complexity, opportunities, and challenges.
We employ talented and ambitious engineers to use the latest technologies and tools to build innovative cloud and app based software products in rapid fashion.
Based in Rosslyn, VA, Qu is backed by leading Silicon Valley investors that have also backed Google, Uber, and Dropbox.
Job Summary
The Information Security Analyst will be responsible for ensuring that individuals have the appropriate access to resources, collaborate with the SOC activities, participate in blue team/red team excercises, participate in the Incident response process, support cybersecurity assessment in a cloud environment
Responsibilities
● Access Control Management:
o Define, manage, and enforce access control policies and procedures across the organization.
o Conduct regular reviews of user access levels, permissions, and roles to ensure compliance with policies and regulations.
o Handle access provisioning and de-provisioning processes, ensuring timely updates to user access rights based on role changes, terminations, or other factors.
● Cybersecurity Threat Monitoring and Response:
o Continuously monitor for emerging security threats, vulnerabilities, and attack vectors.
o Analyze threat intelligence from internal and external sources to keep the organization ahead of potential attacks.
o Perform vulnerability assessments and coordinate with other teams to remediate identified risks.
o Support security incident response activities, including containment, eradication, and recovery phases.
o Conduct forensic analysis of compromised systems and create detailed reports on findings and recommendations.
o Assist in designing and implementing security monitoring, detection, and prevention mechanisms (IDS/IPS, Firewalls, etc.).
● Collaboration & Communication:
o Work closely with other IT and business teams to integrate security best practices into day-to-day operations.
o Provide security awareness training and advice to employees to improve their understanding of security policies.
o Participate in internal and external audits and assist with remediation of audit findings related to cybersecurity.
o Engage in knowledge sharing, mentorship, and training within the team to enhance security expertise across the team.
Experience We’re Looking For
● Bachelor’s degree in Computer Science, Information Security, or a related field.
● Relevant certifications or experience may substitute for formal education.
● 3-5 years of experience in a related Information Security role (IAM, Ethical Hacker, Monitoring, Blue tam/Red team, Infosec 3rd level support)
● Experience with cloud security, including AWS, Azure, or Google Cloud.
● Strong understanding of identity management principles, access control models, and regulatory compliance requirements.
● High level of precision when monitoring security logs, analyzing threats, and auditing systems.
● Familiarity with automation and scripting tools (e.g., Python, PowerShell) for incident response or IAM processes.
● Experience with disaster recovery and business continuity planning.
● Excellent analytical, problem-solving, and communication skills.
● Experience with DevSecOps and integrating tools and resources into CI/CD pipelines.
● Ability to work independently and collaboratively in a fast-paced environment.