Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Security Operations Analyst

Expired Job

Alixpartners Chicago , IL 60602

Posted 2 months ago

Security Operations Analyst

In this critical role on AlixPartners' Corporate Services Information Security team, you will be responsible for ensuring the confidentiality, integrity, and availability of information assets within the enterprise. This position will provide technical expertise and protection of assets by reviewing, analyzing, and implementing security controls, functions, and processes within the enterprise to support the overall information security program and other security initiatives. This position will consult with other IT staff and non-IT departments on security issues and requirements to support the security team's projects, initiatives, and operational responsibilities.

The Security Operations Analyst will work in the Security Operations Center (SOC) which provides cyber defense of information assets and manages physical security controls. SOC responsibilities include, but are not limited to, security monitoring, incident response, malware prevention, data loss prevention, threat intelligence and analysis, and physical security.

The Security Operations Analyst is a full-time role which can be located in Southfield, Michigan (preferred), Dallas, TX, Chicago, IL, or New York, NY and reports to the Team Lead, Security Operations. Position may be contract to hire. Paid relocation is not available for this position.

Key Responsibilities:

  • Administers information security controls and software such as endpoint protection, endpoint detection and response, intrusion detection/prevention (IDS/IPS), security incident and event management (SIEM), data loss prevention (DLP), and physical security systems

  • Responds to, investigates, and analyzes security events to determine appropriate actions

  • Analyzes security system logs, security tools, and available data sources on a regular basis to identify attacks against the enterprise and report on any irregularities, issues related to improper access patterns, trending, and event correlations and make suggestions for detection rules and system tuning

  • Gathers information from other IT staff and non-IT staff to obtain information regarding security problems to networks, servers, endpoints, and applications.

  • Performs incident response activities and ensure that proper protection or corrective measures have been taken when an incident has been discovered

  • Expected to stay current on security industry trends, new threats and attack techniques, mitigation techniques, and emerging security technologies

  • Provides insight and participate in security projects to evaluate and recommend security products for various applications and platforms throughout the organization while supporting business initiatives

  • Assists with the development, maintenance of, and training on technical documentation and Standard Operating Procedures (SOP).

  • Improves security efficiency and streamline/automate work processes while working collaboratively with other team members and IT staff to accomplish objectives

  • Participates, as needed, in critical incidents and implementation reviews

  • May serve as a backup to other critical security positions; Additional responsibilities as identified.

Qualifications/Requirements:

  • Highly motivated to work in information security

  • 3+ years of Information Security experience; Experience working in Security Operations is preferred

  • Bachelor's degree in Information Technology or related field preferred; work experience and background will be considered in lieu of formal education

  • Desire to continuously improve processes and procedures and share information with the team

  • Experience with physical security technology such as door access and badging systems is a plus

  • Experience integrating security tools through scripting, using API's and improving existing processes through automated methods are a plus

  • Experience with a Security Incident and Event Management (SIEM) tool is a plus

  • Experience with Endpoint Security tools is a plus

  • Incident Response, Forensics, and Malware Analysis experience is a plus

  • Strong knowledge of information systems security concepts and current information security trends and practices.

  • Working knowledge of infrastructure security tools such as firewalls, network security monitoring, anti-malware, OS hardening, etc.

  • System administration and security hardening experience is a plus

  • Ability to work well individually and as part of a team

  • Effective skills to support security programs: Excellent written/oral communication and inter-personal skills with the ability to provide formal reports and presentations as required.

  • Strong attention to detail with the ability to prioritize tasks

  • Proven project management and organizational skills; successfully manages multiple priorities and deadlines

  • Security Certifications such as the following are a plus:

  • CompTIA Security+ (Sec+)

  • CompTIA CSA+

  • CompTIA Advanced Security Practioner (CASP)

  • CISSP

  • GIAC Information Security Fundamentals (GISF)

  • GIAC Security Essentials (GSEC)

  • GIAC Certified Enterprise Defender (GCED)

  • GIAC Certified Incident Handler (GCIH)

  • GIAC Certified Intrusion Analyst (GCIA)

This description is not designed to encompass a comprehensive listing of required activities, duties or responsibilities.

In addition to a positive workplace, the firm offers a competitive compensation package including an excellent benefit program (health, vision, dental, disability, 401K, tuition reimbursement).

AlixPartners is a global firm of senior business and consulting professionals that specializes in improving corporate financial and operational performance, executing corporate turnarounds and providing litigation consulting and forensic accounting services when it really matters in urgent, high-impact situations. More information is available at www.alixpartners.com.

All qualified applicants will receive consideration for employment without regard to among other things, race, color, religion, sex, sexual orientation, gender identity, national origin, (age), status as a protected veteran, or disability. AlixPartners is a proud Bronze award-winning Veteran Friendly Employer.


See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Lead Security Operations Engineer

The Federal Home Loan Bank Of Chicago

Posted 3 days ago

VIEW JOBS 10/16/2018 12:00:00 AM 2019-01-14T00:00 Lead Security Operations Engineer The Lead SecOps Engineer maintains the security of our technology operation. This includes actively monitoring, testing, documenting, and resolving security-related incidents and issues. Resolution may involve scripting, testing, log analysis, interacting with vendors and partners, automation and scripting, or systems administration tasks. Primary Duties * Engineer, implement and monitor security controls for the protection of computer systems, networks and information. * Monitor and respond to security events from a variety of sources in a timely manner with the highest level of professionalism. * Review daily threat intelligence feeds and take necessary actions to counter reported threats. * Interface with other organization departments and business units providing high quality, low friction, security operations services. * Experienced with Agile/Scrum and/or DevOps work methodologies. * Prepare and document standard operating procedures and protocols. * Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks. * Act as part of the incident response team providing troubleshooting, analysis and forensics when needed. * Work trouble tickets, change requests and internal improvement projects. Experience with Visual Studio Online and Service Now is a plus. Knowledge, Skills, Abilities and Behaviors * Strong written and oral communication skills * Strong interpersonal skills, with a focus on rapport-building, listening and questioning skills * Strong documentation skills * Ability to conduct research into a wide range of computing issues as required * Ability to present ideas in user-friendly language * Highly self-motivated and directed * Keen attention to detail * Proven analytical and problem-solving abilities * Ability to effectively prioritize and execute tasks in a high-pressure environment * Exceptional customer service orientation * Experience working in a team-oriented, collaborative environment Requirements * Possess an established understanding of AWS services and the associated methods to secure AWS resources. * Hands on experience with firewall administration, Palo Alto preferred, including firewall ACL's, DNS block lists and IPSec/SSL VPN. * Broad understanding of F5 load balancers including LTM, GTM and ASM/WAF modules with experience maintaining WAF rules. * General understanding of SEIM products as well as hands on experience using Splunk with Enterprise Security and the associated tools including search. Configuration and data administration experience of Splunk preferred. * Fundamental understanding of PKI infrastructure including SSL certificates issued by third-party CA's as well as the Microsoft Windows CA. * Basic understanding of endpoint protection and Anti-Virus operations, Trend Micro OfficeScan specifically would be a plus. * Intermediate to expert level experience with automating common InfoSec tasks using PowerShell and/or Python against Win32, SOAP and REST API's. Additional experience with AWS using boto3, F5's API and Palo Alto's API would be beneficial. * O365 security administration including DLP rules, anti-spam/email security and advanced threat protection. Formal Education & Certification * College diploma or university degree in the field of computer science, information systems, or computer engineering and/or 7+ years equivalent work experience * CISSP or related certification * Working AWS knowledge would be a significant plus The Federal Home Loan Bank Of Chicago Chicago IL

Security Operations Analyst

Expired Job

Alixpartners