Job Description:
We are seeking a highly skilled and experienced Security Operations Analyst to join our dynamic team. The ideal candidate will possess strong communication skills, extensive knowledge in cybersecurity, networking, cloud technologies (AWS/Azure), security frame works such as NIST and/or MITRE and experience with various security tools and platforms. This role requires a minimum of 6 years of experience in security operations.
Key Responsibilities:
* Lead and manage the Security Operations Center (SOC) team to ensure the effective monitoring, detection, and response to security events.
* Manage and respond to cybersecurity incidents, ensuring timely resolution and thorough documentation.
* Provide leadership and mentorship to the security operations team, fostering a culture of continuous learning and improvement.
* Develop and implement security policies, procedures, and protocols to safeguard the firm's information assets.
* Collaborate with IT and other departments to design and implement secure network architectures and cloud environments.
* Endpoint Detection and Response (EDR) solutions such as CrowdStrike and Microsoft Defender.
* Review and approve cyber security policy exceptions including firewall requests
* Monitor Data Leak Protection (DLP) tools and provide strategies to prevent unauthorized data exfiltration.
* Utilize Proofpoint and other email security solutions to protect against phishing and other email-based threats.
* Conduct/Participate regular security assessments, vulnerability scans, and penetration tests to identify and mitigate potential risks.
* Stay current with the latest cybersecurity trends, threats, and technologies to continuously improve the firm's security posture.
Qualifications:
* At minimum bachelor's degree in computer science, Information Technology, or a related field.
* Minimum of 6 years of experience in security operations, preferably in a financial services environment.
* Strong communication skills with the ability to effectively convey complex security concepts to both technical and non-technical stakeholders including senior management up to C-Level
* Ability to work independently and make sound decisions under pressure.
* High level of integrity and confidentiality
* Strong analytical and problem-solving skills with the ability to think critically and make sound decisions under pressure.
* Extensive knowledge of networking principles and protocols.
* Hands-on experience with cloud platforms such as AWS and Azure.
* Proficiency in cybersecurity practices and technologies, including EDR solutions (CrowdStrike, Microsoft Defender), firewalls (Palo Alto), and DLP strategies.
* Experience with email security solutions such as Proofpoint & O365 Mail Security
* Experience with Splunk for security monitoring and analysis.
* Relevant certifications such as CISSP, CISM, or CEH are highly desirable. (Prior Experience working in Financial Services a plus)
#J-18808-Ljbffr