IT Security Operations Analyst II

Overview

Connecting clients to markets - and talent to opportunity

With 4,300 employees and over 400,000 retail and institutional clients from more than 80 offices spread across five continents, we're a Fortune-100, Nasdaq-listed provider, connecting clients to the global markets - focusing on innovation, human connection, and providing world-class products and services to all types of investors.

Whether you want to forge a career connecting our retail clients to potential trading opportunities, or ingrain yourself in the world of institutional investing, The StoneX Group is made up of four segments that offer endless potential for progression and growth.

Business Segment Engage in a deep variety of business-critical activities that keep our company running efficiently. From strategic marketing and financial management to human resources and operational oversight, you'll have the opportunity to optimize processes and implement game-changing policies.

Responsibilities

Position Purpose

StoneX has an opening for an IT Security Operations Analyst II to join an exciting and growing Security Operations team. This position will report to the IT Security Operations Team Lead and will be responsible for investigating, participating in incident response, creating and improving process and procedures, and providing an operational function to security tooling. Your role will be critical in identifying and reacting to threats to minimize impact to the organization.

Key Responsibilities:

• Analyze and triage security alerts, investigating any suspicious activity with various technologies and taking appropriate action.

• Investigate security incidents to determine their cause, scope, and impact, and provide actionable recommendations for remediation.

• Lead and participate in security incident response by contributing to identifying, containing, eradicating, and completing appropriate recovery.

• Properly escalate and categorize security alerts and incidents, especially with MITRE ATT&CK.

• Participate in tuning efforts by providing feedback and engaging with the appropriate teams of alert sources.

• Utilize and automate incident response in a security orchestration, automation, and response (SOAR) platform.

• Integrate threat intelligence data into security operations to proactively defend against emerging threats by threat hunting and investigation enrichment.

• Document security processes and procedures as well as incident reports.

This job might be for you if:

• Enjoy investigating and analyzing data to paint a picture and find root cause.

• Critically think and apply information technology and cyber security knowledge to reach conclusions.

• Dig till you find an answer. If you don't know it, you research to find the answer.

• Make decisions in a time sensitive and stressful situation.

• Have experience in cyber incident response.

• You are a team player and willing to help the team improve.

• Have good verbal and written communication skills.

Qualifications

To land this role:

You need to have a history of being self-motivated and capable of solving problems with minimal oversight. The ability to learn quickly and retain information is key to being successful in this role. You have strong experience working in a competitive, fast-paced, highly technical environment, ideally in the Financial Services Industry.

• Experience in cyber security, with a focus on security operations, or 3+ years of experience in information technology with experience in incident response or similar experiences.

• Certifications such as GSEC, GCIH, GCFE, CISSP, CySA+, or equivalent skills.

• Familiar with the MITRE ATT&CK framework.

• Demonstrated team-oriented interpersonal skills; ability to effectively interface with a broad range of people and roles across the business.

• Accepts responsibility and personal accountability.

• Experience with security orchestration, automation, and response (SOAR) platforms.

• Prefer experience in using a variety of information technology security tools and technologies.

• Experience with scripting and automation (e.g., Python, PowerShell).

Education / Certification Requirements:

• Bachelor's degree in Cyber Security/related field and/or equivilent experience.

Working environment:

• Hybrid/ 3 days in Office per week

• Travel Requirements : Nil