Security Operations Analyst

Alixpartners Chicago , IL 60602

Posted 2 days ago

Security Operations Analyst

In this critical role on AlixPartners' Corporate Services Information Security team, you will be responsible for ensuring the confidentiality, integrity, and availability of information assets within the enterprise. This position will provide technical expertise and protection of assets by reviewing, analyzing, and implementing security controls, functions, and processes within the enterprise to support the overall information security program and other security initiatives. This position will consult with other IT staff and non-IT departments on security issues and requirements to support the security team's projects, initiatives, and operational responsibilities.

The Security Operations Analyst will work in the Security Operations Center (SOC) which provides cyber defense of information assets and manages physical security controls. SOC responsibilities include, but are not limited to, security monitoring, incident response, malware prevention, data loss prevention, threat intelligence and analysis, and physical security.

The Security Operations Analyst is a full-time role which can be located in Southfield, Michigan (preferred), Dallas, TX, Chicago, IL, or New York, NY and reports to the Team Lead, Security Operations. Position may be contract to hire. Paid relocation is not available for this position.

Key Responsibilities:

  • Administers information security controls and software such as endpoint protection, endpoint detection and response, intrusion detection/prevention (IDS/IPS), security incident and event management (SIEM), data loss prevention (DLP), and physical security systems

  • Responds to, investigates, and analyzes security events to determine appropriate actions

  • Analyzes security system logs, security tools, and available data sources on a regular basis to identify attacks against the enterprise and report on any irregularities, issues related to improper access patterns, trending, and event correlations and make suggestions for detection rules and system tuning

  • Gathers information from other IT staff and non-IT staff to obtain information regarding security problems to networks, servers, endpoints, and applications.

  • Performs incident response activities and ensure that proper protection or corrective measures have been taken when an incident has been discovered

  • Expected to stay current on security industry trends, new threats and attack techniques, mitigation techniques, and emerging security technologies

  • Provides insight and participate in security projects to evaluate and recommend security products for various applications and platforms throughout the organization while supporting business initiatives

  • Assists with the development, maintenance of, and training on technical documentation and Standard Operating Procedures (SOP).

  • Improves security efficiency and streamline/automate work processes while working collaboratively with other team members and IT staff to accomplish objectives

  • Participates, as needed, in critical incidents and implementation reviews

  • May serve as a backup to other critical security positions; Additional responsibilities as identified.

Qualifications/Requirements:

  • Highly motivated to work in information security

  • 3+ years of Information Security experience; Experience working in Security Operations is preferred

  • Bachelor's degree in Information Technology or related field preferred; work experience and background will be considered in lieu of formal education

  • Desire to continuously improve processes and procedures and share information with the team

  • Experience with physical security technology such as door access and badging systems is a plus

  • Experience integrating security tools through scripting, using API's and improving existing processes through automated methods are a plus

  • Experience with a Security Incident and Event Management (SIEM) tool is a plus

  • Experience with Endpoint Security tools is a plus

  • Incident Response, Forensics, and Malware Analysis experience is a plus

  • Strong knowledge of information systems security concepts and current information security trends and practices.

  • Working knowledge of infrastructure security tools such as firewalls, network security monitoring, anti-malware, OS hardening, etc.

  • System administration and security hardening experience is a plus

  • Ability to work well individually and as part of a team

  • Effective skills to support security programs: Excellent written/oral communication and inter-personal skills with the ability to provide formal reports and presentations as required.

  • Strong attention to detail with the ability to prioritize tasks

  • Proven project management and organizational skills; successfully manages multiple priorities and deadlines

  • Security Certifications such as the following are a plus:

  • CompTIA Security+ (Sec+)

  • CompTIA CSA+

  • CompTIA Advanced Security Practioner (CASP)

  • CISSP

  • GIAC Information Security Fundamentals (GISF)

  • GIAC Security Essentials (GSEC)

  • GIAC Certified Enterprise Defender (GCED)

  • GIAC Certified Incident Handler (GCIH)

  • GIAC Certified Intrusion Analyst (GCIA)

This description is not designed to encompass a comprehensive listing of required activities, duties or responsibilities.

In addition to a positive workplace, the firm offers a competitive compensation package including an excellent benefit program (health, vision, dental, disability, 401K, tuition reimbursement).

AlixPartners is a global firm of senior business and consulting professionals that specializes in improving corporate financial and operational performance, executing corporate turnarounds and providing litigation consulting and forensic accounting services when it really matters in urgent, high-impact situations. More information is available at www.alixpartners.com.

All qualified applicants will receive consideration for employment without regard to among other things, race, color, religion, sex, sexual orientation, gender identity, national origin, (age), status as a protected veteran, or disability. AlixPartners is a proud Bronze award-winning Veteran Friendly Employer.


Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Junior Analyst Cyber Securi...

Hyatt

Posted Yesterday

VIEW JOBS 6/17/2018 12:00:00 AM 2018-09-15T00:00 Description Summary At Hyatt Hotels, Cyber Security is a very important part of our mission to take care of people so they can be their best. The Junior Analyst – Cyber Security Operations plays a crucial role in completing that mission every day by ensuring the global security of our guests, colleagues, and hotels. The Junior Analyst monitors Hyatt's cyber security infrastructure for signs of intrusion, handles the response to cyber security incidents, and provides suggestions for making Hyatt's tools more effective. As a junior employee on the Cyber Security Operations team, the Junior Analyst is expected to learn from more senior employees in the department and to refine their skills continuously to enhance their capability. By monitoring Hyatt's environment for signs of suspicious behavior, the Junior Analyst plays a very important role in protecting our guests and colleagues! Position Responsibilities * Continuously monitor Hyatt's cyber security tools to detect signs of suspicious activity. * Respond to Cyber Security incidents as they are detected, ensuring that attackers are evicted and Hyatt brought out of impact quickly and artfully. * Work with senior members of the Cyber Security Operations team to enhance skills and knowledge. * Manage small-scope enhancement projects to make small improvements to Hyatt's security posture. * Provide suggestions to senior CSO staff for improving detection efficacy. * Demonstrate a commitment to Hyatt core values. * The position responsibilities outlined above are in no way to be construed as all encompassing. Other duties, responsibilities, and qualifications may be required and/or assigned as necessary. Qualifications Experience * At least one year of experience in Cyber Security is preferred; however any combination of experience, education, and certification that demonstrates the candidate can be successful in the position are acceptable. Education * A Bachelors degree or better in Cyber Security or any security-related subject is preferred; however any combination of education, experience, and certification that demonstrates the candidate can be successful in the position are acceptable. Certificates, Licenses, Registrations * A CISSP or CEH certification is preferred; however any combination of certification, education, and experience that demonstrates the candidate can be successful in the position are acceptable. Computer Skills Needed to Perform this Job * Experience with SIEM tools, EDR tools, Network IDS, Host IDS, DNS Firewalls, Next Gen Firewalls, Secure Web/Email Gateways is preferred. Additional Comments and Requirements * Ability to travel worldwide on an as-needed basis in an emergency is required (up to 2% of total work hours). * Position is located on-site at Hyatt headquarters in Chicago, IL. No remote work is permitted. Property: Hyatt Corporate Office Hotel Brand/Office Type: Hyatt Corporate Primary Location: United States-Illinois-Chicago Pay Basis: Yearly US Dollar (USD) Schedule: Full-time Job Level: Professional Staff/Corporate Job: Technology Remote Position: No Req ID: CHI008985 Hyatt Chicago IL

Security Operations Analyst

Alixpartners