Cascade Asset Management Company (“Cascade”) is proud to protect and grow capital in service of Bill Gates and the Gates Foundation Trust in support of their mission-related and philanthropic activities. Mr. Gates and the Foundation Trust are committed to creating a world where every person has the opportunity to live a healthy, productive life.
Located in the Seattle area, Cascade applies its fundamental, long-horizon investment approach across asset classes and geographies, primarily through direct investing, as well as through a select group of funds and segregated accounts. Cascade offers the unique blend of being part of a team that manages a multi-billion-dollar portfolio while also working with professionals in a culture that values intellectual curiosity, collaboration, and respect.
Team Description
The Technology team is responsible for providing high-quality technical support to our internal clients, including world-class Technology Service Desk, systems administration, project management, and development team. We are a small and adaptable team, and this role will have the opportunity to support a wide variety of key IT initiatives, programs, processes, and daily activities.
Position Description
Reporting to the Director of Information Security, the Cyber Security Analyst plays a key role in maintaining the organization’s security posture. The Analyst, working closely with external managed services and key teammates, is responsible for maintaining security systems, interacting with vendors, and managing the cyber awareness training program. This role requires a broad set of technical skills and excellent interpersonal abilities. As a member of a small team facing diverse and competing requests, adaptability and versatility are crucial.
Key Responsibilities
- Monitoring and Threat Detection
- Ensure security event monitoring tools and systems are functioning properly and being actively monitored by the appropriate parties.
- Promptly investigate security breaches and other cybersecurity incidents
- Keep abreast of emerging threats, security vulnerabilities and remediation measures
- Collaborate with other IT teams to identify, prioritize and remediate vulnerabilities.
- Documentation and Reporting
- Maintain vulnerability management systems; produce and distribute vulnerability reports to stakeholders.
- Document security incidents, breaches, and remediation efforts
- Maintain accurate records of security-related activities
- Provide regular management reporting for cyber program activities and performance metrics.
- Security Awareness
- Foster and promote end user security awareness across the organization
- Actively manage the end user security awareness training program
- Draft and disseminate end user documentation, training content, notifications and alerts
- Security Tasks and Projects
- Act as the primary escalation point and coordinator for the external 24/7 SOC and other key security vendors.
- Serve as a liaison between Cascade and key security vendors.
- Coordinate and execute IT security projects
- Provide coordination for 3rd party cyber risk management program, assist business owners with vendor risk assessments
- Assist with secure onboarding for new software and services
- Perform other related duties as assigned
- Risk Assessment and Mitigation
- Analyze IT requirements for new applications and provide objective advice on security measures
- Assist in risk assessments and risk management processes, including security audits.
Skills And Qualifications
- Bachelor’s degree in CS, Information Systems, Engineering, Business, or a related field
- 5-6 years of experience in a corporate enterprise IT environment within the information security field.
- Excellent communication (oral, written, presentation) and interpersonal skills
- Strong analytical and problem-solving abilities.
- Ability to work well in a team environment
- Proficiency with Microsoft Windows 10/11, M365, Microsoft Active Directory, Microsoft Azure
- Knowledge of cyber risk frameworks, security controls and industry best practices
- Experience with information security awareness training and monitoring of information security standards
- Must show attention to detail and the ability to multi-task in a rapidly changing environment, and the ability to work independently
- Maintains a high standard of ethics, professional judgement and personal conduct.
- Certifications (Preferred)
- CompTIA Security+, Certified Information Systems Security Professional (CISSP), or similar certifications.
- Other
- This position requires some weekend and evening assignments as well as availability during off-hours for participation in scheduled and unscheduled activities
What We Value
Cascade values diversity, equity, and inclusion and is deeply committed to providing equal employment opportunity for all employees and all applicants seeking employment. All employment decisions are based on a candidate’s or employee’s capabilities and qualifications without regard to race, color, creed, religion, sex, sexual orientation, gender expression or identity, age, national origin, citizenship, veteran, military, marital status, sensory, physical, or mental disability, genetic information, or any other status or characteristic protected by applicable law. Questions regarding accommodation requests due to a disability should be directed to Human Resources.
Employment Requirements
Upon hire, you are required to present proof of your eligibility to legally work in the U.S.
What We Offer Cascade is committed to paying employees equitably for substantially similar work. A reasonable estimate of the current base salary range for this position is listed above, with the exact amount driven by several factors including relevant experience, knowledge, education, degree to which a candidate meets the role requirements, and other qualifications. We believe that our employees are the reason for our success, and in recognition of their contributions, we offer eligible employees a discretionary annual bonus and a discretionary long-term incentive program. Cascade proudly supports our employees and their families with a comprehensive fully paid benefits package, including medical, dental, vision, life, AD&D, long-term disability insurance, and a generous employer match to 401(k) retirement savings contributions. Employees are also eligible for 18 days of paid vacation each year for the first four years of employment, eight paid holidays, up to three floating holidays per year, up to 14 days of sick leave, and generous paid parental and family leave. Our benefits also include several employee wellness programs and mental health resources, a charitable giving match, and reimbursement for fitness, daycare, and/or commuter expenses.
