Senior Security Operations Analyst

Investment Management #008

Department: Technology – Cybersecurity

Location:  New York

 

Position Overview:  

The firm employs a staff of 473 people, including 165 investment professionals, in its New York headquarters and affiliated offices elsewhere in the United States, London, Hong Kong, and Tokyo. 

Cybersecurity team is seeking a detail-oriented, thorough, and organized individual for the role of Senior Security Operations Analyst to join our team. In this position, you will be responsible for handling various duties related to implementing and operating the cybersecurity controls using multiple on-prem solutions and cloud-based services aimed to monitor, detection, analyze, respond and recover. In addition, you will assist reviewing vulnerability scans and cyber threat intelligence, determining which vulnerabilities require immediate action using risk-based models.

 

Duties and Responsibilities

  • Ensure effective cyber defense capability by working closely with other technical, incident management, legal, compliance, and cyber personnel
  • Performs daily log review, correlation, and event analysis. This includes review of various systems logs, File Integrity Monitoring logs, Intrusion Detection System events and Antivirus/Malware scans
  • Perform vulnerability scanning, track, and facilitate the remediation of findings
  • Implement processes and procedures to ensure cybersecurity threats are mitigated
  • Participate and lead incident response activities (and after-action analysis)
  • Appropriately inform and advise management on incidents and incident prevention
  • Document actions taken within approved event tracking systems, create, update and maintain procedural and instructional documents
  • Other job duties as defined

Qualifications

  • Bachelor’s degree in Computer Science, Information Systems Management, Information Security, or Engineering
  • 5 – 8 years of experience in Security Operations or related field
  • Excellent organizational, written and verbal communication, and interpersonal skills
  • Customer service and quality focused with proven process improvement skills
  • Strong understanding of cyber threat landscape, vulnerability management, and NIST CSF
  • Innovative problem solving, research, and analytical skills
  • Ability to multi-task and prioritize work effectively
  • Highly motivated self-starter
  • Strong sense of ownership and driven to manage tasks to completion
  • Ability to think tactically, work with a sense of urgency and attention to detail
  • Flexible and adaptable in response to changing demands
  • Experience with SIEM platforms (Splunk), scanning tools such as Tenable Nessus, NMAP, etc
  • Advanced knowledge of TCP/IP networks, ports, protocols, IDS/IPS, firewalls, proxy, security and audit logs, and infrastructure setup
  • Intermediate knowledge of web server software, including Microsoft IIS and Apache web servers
  • Prior experience with Active Directory, WMI, PowerShell, Python, etc
  • Technical understanding of, and the ability to recognize, various types of security vulnerabilities (understanding of vulnerability attack methods, exploit results)
  • Experience across a variety of platforms and operating systems such as Windows, Linux
  • Certifications: SANS GSEC, CISSP, Network +, or Security+ certification a plus

To apply for this job email your details to Graham.Gates@TechExecOnline.com

Job Location