Lead Analyst, Security Operations

Hill-Rom Chicago , IL 60602

Posted 2 months ago

JOB SUMMARY:

The Security Operations Lead Analyst will be a part of the Information Security team, focusing on the operational aspects of our security work and will have a strong technical background. As a key participant within the security team, he/she will share in responsibilities of maintaining security systems and conducting security operations at the infrastructure and application level

ESSENTIAL DUTIES AND RESPONSIBILITIES:

  • Experience using and troubleshooting endpoint and network security tools and appliances including Firewalls, IDS/IPS, and other cloud based security appliances

  • Analyze system vulnerability scans, penetration tests and risk assessments; and work with business units to resolve identified vulnerabilities within established SLAs.

  • Review threat feeds/intel and translate into operational tasks

  • Work with messaging team on mitigating phishing attacks

  • Reviewing security logs and tuning security incident event management tool (SIEM)

  • Assist with managing various components of security operations.

  • Identify, report, and provide assistance during information security incidents as part of an Incident Response Team. Review and respond to security alerts to investigate malicious activity.

  • Documenting the technical details of legitimate incidents in applicable tracking and ticketing systems and directing applicable personnel to perform the actions necessary for remediation.

  • Participate in a 24x365 "On-Call" security incident response team

  • Assist with internal and external information security assessments and reviews.

  • Analyzing web-based application security vulnerabilities using both enterprise-grade and manual testing tools.

  • Assist in managing data loss prevention systems.

  • Assist with analysis, maintenance, design and infrastructure.

  • Work closely with cross-functional teams and develop strong liaison relationships.

  • Developing processing standards, procedures, and automation for use by IT staff in a constantly growing and evolving environment.

  • Responding to alerts by enterprise monitoring across all systems managed by the team and provide daily operational status

  • Assisting in updating disaster recovery plans and testing continuity of operations

  • Delivering weekly reports to supervisor

  • Keep current on technological trends and developments in the area of information security

SCOPE:

  • All security-based operations, including all security tools within the security team's portfolio and all it's associated processes

JOB COMPLEXITY:

  • The individual should have a firm grasp of the interplay between various security technologies and their potential impact. Additionally, he/she should help the company continuously improve its security posture by proactively identifying any gaps in security operations and involving leadership when necessary

INFLUENCE, IMPACT, INTERACTION:

  • The individual will interact heavily with the service desk and messaging teams in addition to our security vendors

  • Primary impact will be proactive protection/prevention of any security incidents and continuous improvement of security posture

SUPERVISION:

  • This position reports into the Sr. Manager of Security Operations. The individual should be a self-starter and be able to handle multiple workstreams simultaneously and be flexible in assisting with ad-hoc requests and projects as they arise

EDUCATION AND EXPERIENCE:

  • Bachelor's degree required. Master's or specialization in Information Security/Risk Management preferred.

  • At least some of these certifications highly desirable - CISSP, CISA, CISM, Solid understanding of IT processes and framework and experience working in IT.

  • Minimum of 10 years of IT experience.

  • Minimum of 5 years of experience in information security and risk management required.

QUALIFICATIONS AND SKILLS:

  • Prior hands on experience with the following technologies: FireEye, Bitsight, Tenable, ForcePoint, Phishlabs, Azure security center, CASB, SASE

  • Knowledge and understanding of security engineering principles.

  • Soft skills including the ability to speak and present to management and translate technical terminology for a non technical audience.

WORK ENVIRONMENT:

  • The role will be based in Downtown Chicago. Minimal travel may be required.
icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cybersecurity Operations Lead

Aon Corporation

Posted 5 days ago

VIEW JOBS 6/2/2020 12:00:00 AM 2020-08-31T00:00 Aon is looking for a Cybersecurity Operations Lead As part of an industry-leading team, you will help empower results for our clients by delivering innovative and effective solutions in our cyber team, in Chicago, IL. Your impact as a Cybersecurity Operations Lead Job Responsibilities: * This position is equivalent to SOC Level 3 Analyst Skill Set. * Lead day to day, the resolution of information security incidents and act as a lead during security investigations leveraging insourced and outsourced tools. * Overall handling, communication and escalation of incidents which require highly technical analysis, such as network intrusions and advanced malware infections which have been identified by the SEIM. * Develop and execute on the plans/procedures related to Incident Response, Forensics, and Investigation functions to include the Computer Security Incident Response plan. * Develop and oversee reporting that will provide analytics and metrics to the Cybersecurity Center * Responsible for level 3 support for the investigation and potential mitigation of security events on Wintel/Unix Servers as well as Windows and Apple workstations. * Provide expert understanding of technology, tools, policies, and standards related to security systems and incident response. * Work at a high technical level of forensic and investigations in IT environments, capable of identifying vectors of threats and incidents, work with others to assist the education of security events and implications, and develop documentation to support the incident response process. * Lead and mentor Junior Analysts, providing feedback, training, technical support for case notes, investigative techniques and business process. You Bring Knowledge and Expertise Required Experience and Qualifications: * GIAC Global Certified Incident Handler - Current * At least 4 years of experience with IP network and routing along with deep packet analysis using tools like Wireshark * At least 4 years of experience with products of IPS/IDS, AV, and Anti-Malware products like McAfee, FireEye, etc. * At least 4 years of experience with security incident response process and procedures * At least 4 years of experience with information security best practices * At least 4 years of Unix/Wintel experience * Experience with Threat Intelligence and consumption/development of IOC's. * Experience equivalent to Level 3 Analyst in regards to investigation, incident response and handling. * Experience in Forensics, Evidence Gathering, Endpoint and Network Level Forensic Investigations. * Experience in leading Junior Analysts from a Level 3 proficiency. Preferred Qualifications: * CISSP * Other Major Security Certifications such as OSCP, GIAC, ISC2 We offer you A competitive total rewards package, continuing education & training, and tremendous potential with a growing worldwide organization. Our Colleague Experience: From helping clients gain access to capital after natural disasters, to creating access to health care and retirement for millions, Aon colleagues empower results for our clients, communities, and each other every day. They make a difference, work with the best, own their potential, and value one another. This is the Aon Colleague Experience, defining what it means to work at Aon and realizing our vision of empowering human and economic possibility. To learn more visit Aon Colleague Experience. About Aon: Aon plc (NYSE:AON) is a leading global professional services firm providing a broad range of risk, retirement and health solutions. Our 50,000 colleagues in 120 countries empower results for clients by using proprietary data and analytics to deliver insights that reduce volatility and improve performance. By applying for a position with Aon, you understand that, should you be made an offer, it will be contingent on your undergoing and successfully completing a background check consistent with Aon's employment policies. Background checks may include some or all of the following based on the nature of the position: SSN/SIN validation, education verification, employment verification, and criminal check, search against global sanctions and government watch lists, fingerprint verification, credit check, and/or drug test. You will be notified during the hiring process which checks are required by the position. Aon provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, veteran, marital, or domestic partner status. Aon is committed to a diverse workforce and is an affirmative action employer. DISCLAIMER: Nothing in this job description restricts management's right to assign or reassign duties and responsibilities to this job at any time. 2475269 Aon Corporation Chicago IL

Lead Analyst, Security Operations

Hill-Rom