Security Analyst
This role is a technical position that will focus on security operational tasks: monitoring, incident response, and ongoing administration of critical security platforms. The Information Security Team fosters a collaborative environment and is building a best of breed practice to partner with the business to protect the Firm's information and computer systems.
The role is suited to individuals with prior experience working in security operations. The successful candidate must have hands-on technical experience in supporting infrastructure and information security platforms. Millennium is a complex and robust technical environment and securing the Firm from external and internal threats is a top priority which makes this role very challenging.
Principal Responsibilities
1. Respond to tickets generated from the monitoring and tracking of security events or other security related requests for services.
2. Responsible for the daily operation of enterprise security systems including SIEM, IDS, Firewall, Web proxy, Endpoint Protection, Password Vault, custom monitoring events or general system health alerts as escalated by the Enterprise Command Center, etc.
3. Participate in Information Security Incident Response activities for the Firm's environment.
4. Enforce security policies and procedures by administering and monitoring appropriate systems, events and answering client queries.
5. Perform vulnerability scans and/or analyze results of scans and assist with remediation as required.
6. Collaborate with the Information Security Team to deploy a suite of security tools including AV, Advanced Malware Detection, SIEM, IDS, Vulnerability scanners, etc.
7. Ensure MLP enterprise security products are functioning and protecting the environment as expected while providing stability and maintaining policies and procedures.
8. Develop and maintain documentation of all Security products including specific tools, technologies and processes.
9. Develop and implement procedures and processes to automate repetitive tasks in order to focus resources on innovation and continuous improvement.
10. Support the development and delivery of a comprehensive information security program for the entire Millennium organization.
11. Actively monitor new and emerging security and privacy related technologies, trends, issues, and solutions and assess their applicability to Millennium key business initiatives and business strategies.
12. Leverage collected Intelligence to improve success in defending Millennium against and responding to future attacks or intrusions.
13. Perform periodic and on-demand system audits and vulnerability assessments of systems, internal applications and Cloud services to identify security vulnerabilities.
14. Provide technical support to IT staff in the detection and resolution of security problems.
Qualifications/Skills Required
1. Bachelor or Master Degree in Computer Science or Cyber Security with strong IT background.
2. 3 years' experience working in a security analyst role, financial industry experience preferred.
3. Possesses at least one security certification (Security+, OSCP, CISSP, CEH, GCIA, GCIH).
4. Familiarity with use of ticketing systems to manage operational workload.
5. Excellent understanding and experience working with data security solutions - including operating system, Active Directory, Web Proxy, PKI, Group Policy, DNS, Messaging, DLP and Cloud Security(AWS, GCP).
6. Experience with vulnerability management scanning platforms.
7. Ability to handle sensitive and/or confidential materials with appropriate discretion.
8. High level understanding of internetworking, data transmission and encryption protocols.
9. In-depth knowledge of Windows and Unix operating systems.
10. Scripting, development and automation skills using Powershell, Python (Java Script, Rest or SOAP web services a plus).
11. Possess a passion for Information Security and Technology.
12. Experience in OSINT, Threat hunting and analyzing malicious emails.
13. Sound knowledge of file system access control (NTFS & Unix).
14. Able to prioritize in a fast moving, high pressure, constantly changing environment.
15. Ability to communicate and collaborate across technology teams.
#J-18808-Ljbffr