Security Analyst

The IT Security team is responsible for overseeing the security of the firm's data and systems. The team manages server and endpoint security, network security, edge security, regulatory compliance and operational security concerns globally. The team is responsible for designing security policies and procedures that align with corporate and regulatory goals, implementing technology solutions to enforce policies, and supporting all security systems.

Overview

Reporting to the manager of the IT Networking & Security team, this position is part of the IT Infrastructure group. The IT Security Engineer has responsibility for the design and implementation of security technology and policies that protect the firm's data and systems from internal and external threats. Since the firm has a cloud-first strategy, a key skill will be the ability to understand and respond to the unique risks in a cloud environment that supports IaaS, PaaS, and various SaaS platforms. A strong candidate will have extensive hands-on experience with Palo Alto Firewalls (including Panorama Management, Clustering, SSL Decryption and URL Filtering), Checkpoint Firewalls, Bit9 / Carbon Black Application Whitelisting, Microsoft Azure Security & Compliance Center, Microsoft Cloud App Security, Windows Defender and Defender ATP.

This is a hands-on role which spans responsibilities for security architecture, design, implementation, and support. This individual has responsibility for improving security policies and configuration of our current systems, as well as working with the team to improve their overall effectiveness. This individual will participate in product selection for net new and replacement systems, as well as design and produce reports to track threats to our network. The role requires knowledge and experience working with the security systems used by the firm.

Primary Responsibilities :

• Hands-on approach when it comes to implementing and supporting the firm's security systems
• Define key threats to critical data and systems; create policies and engineer systems to reduce threats and risk
• Research and develop future road maps, strategies, and technical visions to support security program
• Assist in performing product evaluations and recommend products / services for data security
• Responsible for identifying and protecting against emerging threats associated with risks in the cloud and third-party vendor systems
• Management, troubleshooting, and monitoring of firewalls, intrusion detection systems, enterprise anti-virus systems, enterprise log management system, and data loss prevention system
• Create and compile enterprise-wide security reporting at set intervals to management
• Respond to security incidents 24 x 7
• Monitor security audit and intrusion detection system logs for system and network anomalies, investigate and / or escalate security violations, and document and report events
• Ensure environment is stable and in compliance with corporate security policy and industry standards
• Work closely with Risk Management, Legal, and Compliance teams to create cohesive security policies
• Work with IT Risk Management and Security team on definition and implementation of security policies
• Create and maintain documentation for supported systems, including DR / BCP planning
• Participate in scheduled off-hours configuration changes, service outage upgrades, and DR / BCP testing
• Perform and / or manage internal and external vulnerability scanning and remediation
• Identify and support quality improvement initiatives

Requirements :

Skills :

Active Directory and Group Policy structure and management.

#LI-MC1