M&A Security Engineer

ABOUT US

At HUB International, we are a team of entrepreneurs. We believe in protecting and supporting the aspirations of individuals, families, and businesses. We help our clients evaluate their risks and develop solutions tailored to their needs. We believe in empowering our employees to learn, grow, and make a difference. Our structure enables our teams to maintain their own unique, regional culture while leveraging support and resources from our corporate centers of excellence.

HUB is a global insurance and employee benefits broker, providing a boundaryless array of business insurance, employee benefits, risk services, personal insurance, retirement, and private wealth management products and services. With over $5 billion in revenue and almost 20,000 employees in 600 offices throughout North America, HUB has grown substantially, in part due to our industry leading success in mergers and acquisitions.

About the Position

The Information Security M&A Engineer is responsible for supporting HUB International's merger and acquisition activity throughout the due diligence and integration processes. The role reports to the Security Vulnerability Manager and functions as a member of the Information Security team with a dotted line to the M&A Integration leadership team. The Information Security M&A Engineer interacts with internal and external technical and business units to perform Information Security risk assessments, drive Information Security related technology integration activities and ensure alignment of integration activities with HUB International security strategy. This is a hands-on technical role.

Responsibilities :

Protect the integrity and confidentiality of HUB data and infrastructure while enabling business functionality in all systems and environments by supporting applicable security solutions.

Partner with stakeholders to conduct pre-deal close security review and breach analysis of acquisition environment​.

Perform acquisition firewall rule reviews to ensure high-risk protocols are configured appropriately.

Perform technical risk assessments and present accurate and comprehensive reports for both non-technical and technical audiences.

Participate in the integration and Solution Design meetings to plan secure system integration solutions following HUB’s Policies and Standards.

Perform static and dynamic code analysis of in-house developed applications.

Review applications for security posture and provide improvement recommendations.

Implement the suite of Hub Information Security tools post-close.

Facilitate the adoption of new tools and processes in the M&A playbook.

Act as a liaison between acquired business units and corporate stakeholders for incident response activities for M&A related security incidents.

Gather and report on key organizational information security metrics.

Other duties as assigned.

Requirements :

Bachelor's degree Information Security, Computer Sciences or an equivalent combination of education and experience.

Related certifications (e.g., GSEC, CISSP, AWS) preferred.

At least 3 years’ experience in an Information Security role and 3 years’ experience in an IT capacity with progressively difficult responsibilities.

At least 2 years’ experience in mergers and acquisitions.

Solid experience working with Windows, Active Directory, Linux and O365.

Experience with Amazon Web Services and / or Microsoft Azure.

Working knowledge of networking protocols and concepts including TCP, DNS, DHCP, Firewalls, VPN, EDR, and Web proxies.

Understanding of email transmission, routing, and authentication concepts including SMTP, SPF, DKIM, and DMARC.

Experience with vulnerability assessments and patch management practices.

Knowledge of Windows Event and network device logging including syslog and SIEM.

Solid analytical and problem-solving skills; ability to think strategically and drive decision making.

Ability to evaluate business processes, IT technology, identify security risks, process gaps, and evaluate IT controls.

Organizational skills to prioritize risks and actions using a risk-based approach.

Experience working with industry security standards, guidelines, and regulatory / compliance requirements related to information security such as ISO 27001, NIST 800-53, SOC2, PCI, SOX, etc.

Excellent communication skills (both written and verbal)

Competent interpersonal skills, demonstrating executive presence and the ability to interact with senior business and technology leaders with credibility

Ability to handle multiple tasks concurrently, priorities them according to the change in situation and meet deadlines.

High flexibility, including willingness to travel up to 10% of working time.

JOIN OUR TEAM

Do you believe in the power of innovation, collaboration, and transformation?  Do you thrive in a supportive and client focused work environment?  Are you looking for an opportunity to help build and drive change in a rapidly growing and evolving organization?  When you join HUB International , you will be part of a community of learners and doers focused on our Core Values : entrepreneurship, teamwork, integrity, accountability, and service.

Disclosure required under applicable law in California, Colorado, Illinois, Maryland, Minnesota, New York, New Jersey, and Washington states : The expected salary range for this position is $120K to $145K _ and will be impacted by factors such as the successful candidate_ ’s skills, experience and working location, as well as the specific position ’s business line, scope and level. If you believe that your qualifications and experience surpass the minimum requirements for this role, we encourage you to submit your application. By doing so, we will be able to keep your application on file for consideration for potential future positions within our organization. HUB International is proud to offer comprehensive benefit and total compensation packages which could include health / dental / vision / life / disability insurance, FSA, HSA and 401(k) accounts, paid-time-off benefits such as vacation, sick, and personal days, and eligible bonuses, equity and commissions for some positions. _ _

Department Information Technology

Required Experience : 2-5 years of relevant experience

Required Travel : Negligible

Required Education : Bachelor's degree (4-year degree)

HUB International Limited is an equal opportunity employer that does not discriminate on the basis of race / ethnicity, national origin, religion, age, color, sex, sexual orientation, gender identity, disability or veteran's status, or any other characteristic protected by local, state or federal laws, rules or regulations.

E-Verify Program ()

We endeavor to make this website accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact the recruiting team HUBRecruiting@hubinternational.com . This contact information is for accommodation requests only; do not use this contact information to inquire about the status of applications.