Security Analyst

The IT Security team is responsible for overseeing the security of the firm's data and systems. The team manages server and endpoint security, network security, edge security, regulatory compliance and operational security concerns globally. The team is responsible for designing security policies and procedures that align with corporate and regulatory goals, implementing technology solutions to enforce policies, and supporting all security systems.

Overview

Reporting to the manager of the IT Networking & Security team, this position is part of the IT Infrastructure group. The IT Security Engineer has responsibility for the design and implementation of security technology and policies that protect the firm's data and systems from internal and external threats. Since the firm has a cloud-first strategy, a key skill will be the ability to understand and respond to the unique risks in a cloud environment that supports IaaS, PaaS, and various SaaS platforms. A strong candidate will have extensive hands-on experience with Palo Alto Firewalls (including Panorama Management, Clustering, SSL Decryption and URL Filtering), Checkpoint Firewalls, Bit9/ Carbon Black Application Whitelisting, Microsoft Azure Security & Compliance Center, Microsoft Cloud App Security, Windows Defender and Defender ATP.

This is a hands-on role which spans responsibilities for security architecture, design, implementation, and support. This individual has responsibility for improving security policies and configuration of our current systems, as well as working with the team to improve their overall effectiveness. This individual will participate in product selection for net new and replacement systems, as well as design and produce reports to track threats to our network. The role requires knowledge and experience working with the security systems used by the firm.

Primary Responsibilities:

• Hands-on approach when it comes to implementing and supporting the firm's security systems
• Define key threats to critical data and systems; create policies and engineer systems to reduce threats and risk
• Research and develop future road maps, strategies, and technical visions to support security program
• Assist in performing product evaluations and recommend products/services for data security
• Responsible for identifying and protecting against emerging threats associated with risks in the cloud and third-party vendor systems
• Management, troubleshooting, and monitoring of firewalls, intrusion detection systems, enterprise anti-virus systems, enterprise log management system, and data loss prevention system
• Create and compile enterprise-wide security reporting at set intervals to management
• Respond to security incidents 24 x 7
• Monitor security audit and intrusion detection system logs for system and network anomalies, investigate and/or escalate security violations, and document and report events
• Ensure environment is stable and in compliance with corporate security policy and industry standards
• Work closely with Risk Management, Legal, and Compliance teams to create cohesive security policies
• Work with IT Risk Management and Security team on definition and implementation of security policies
• Create and maintain documentation for supported systems, including DR/BCP planning
• Participate in scheduled off-hours configuration changes, service outage upgrades, and DR/BCP testing
• Perform and/or manage internal and external vulnerability scanning and remediation
• Identify and support quality improvement initiatives

Requirements:

• Undergraduate degree in technology discipline or equivalent experience
• 5+ years of information systems security experience
• 5+ years experience in the financial services industry preferred
• CISSP preferred
• PCNSE preferred

Skills :

• Proactive approach to learning and educating others about cloud threats
• Excellent, proven troubleshooting skills
• Strategic thinking and roadmap design for multi-year model.
• Ability to work with other teams within Infrastructure, such as Network, DevOps, and Architecture to create comprehensive and holistic security solutions
• Palo Alto (PCNSE), Cloud Security (CCSP) and other related vendor certifications a plus.
• Experience with Microsoft Azure Security & Compliance Center, Microsoft Cloud App Security, Windows Defender and Defender ATP preferred
• Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail and access-lists.
• Experience with Palo Alto and Checkpoint firewall management and associated system managers
• Experience with TippingPoint IPS and associated system mangers, or other IDS/IPS products
• Experience with Bit9/ Carbon Black Application Whitelisting product
• Experience analyzing Firewall and IPS logs, as well as Windows Event and Security logs
• Experience working with enterprise log management software SIEM (preferably LogRhythm)
• Experience with data loss prevention and eDiscovery technologies (preferably Symantec DLP)
• Experience working with internal IT Development or IT Architecture teams to develop secure coding practices and educate Developers a plus
• Experience working within the banking/finance/regulatory industry
• Experience working with relevant operating system security (Windows, Linux, etc.)
• Experience working with teams outside of IT to create effective security policies
• Strong written and verbal communications and interpersonal skills
• Must exhibit a team-oriented approach
• Engineering level knowledge of the following areas:
  
  
  • Active Directory and Group Policy structure and management.
  • Authentication solutions (ex. RADIUS, TACAS)
• Experience with Security and System Forensic tools and methodologies.
• Experience designing and implementing endpoint protection (i.e. Symantec Endpoint Protection, Bit9, Windows Defender)
• Understanding of IT Management processes such as ITIL.
  #LI-MC1