Information Risk Consultant - Core
Location: springfield, MA
Duration: 12 Months+
The Opportunity
As a Security Analyst you will work in a fast paced, innovative and collaborative environment, on a team assembled to protect Financial Employees, it's customers and digital assets from potential cyber threats.
The Team
As a member of the Security Operations Center (SOC) you will have an opportunity to be part of a highly functional team of cybersecurity analysts, across the globe, who are passionate about protecting Financial's assets and customers by leveraging their problem-solving skills and innovative technology solutions. Our team is made up of analytical, technically oriented individuals, leveraging their knowledge of threat actor tactics and techniques, operating systems and platforms to identify and eradicate threats to Financial's digital environments.
The Impact
Perform monitoring for cybersecurity related technologies generating alerts for potential security events requiring investigation.
Perform technical analysis for cybersecurity events requiring deeper investigation.
Perform Malware analysis and extract Indicators of Compromise (IOCs) to feed our Threat Intelligence Platform
Learning about the Financial business and technology environment to detect anomalous behavior from standard expected activity.
Identify, classify, and document adversary Tactics, Techniques and Procedures (TTPs)
Work collaboratively with our Security Intelligence team to enrich and enhance prevention, detection, and threat hunting capabilities.
Partner with our Security Platforms team to develop playbooks required to successfully respond to specific threats
Work with the Detection Engineering team to optimize alerting platforms through tuning of alerting logic.
Skills
The Minimum Qualifications
High level knowledge of Cybersecurity attack and defense techniques
Understanding of living off the land techniques used by adversaries, using tools such as PowerShell, WMIC, Task Scheduler, Windows Registry etc.
Interest in continuous learning and a passion for Cybersecurity
Ability to apply problem solving skills to support analysis and detection efforts
Strong written and verbal communication skills
Strong analytical and problem-solving skills
Experience and confidence with communicating with and presenting to senior leadership
Ability to work 4x10 shift schedule.
The Ideal Qualifications
Associate's degree in a related field
Certifications: CISSP, CISM, CISA, GCIH, GIAC
Knowledge of and practical experience with the MITRE Telecommunication&CK framework
Python, PowerShell or other scripting languages
Functional knowledge of operating systems (Windows, Mac, Linux).
Understanding of container technologies like Docker or Kubernetes
Experience working with a SIEM platform
Understanding of web application vulnerabilities including XSS, CSRF, SQL Injection, command injection and serialization attacks
Strong understand of web authentication flows such as SAML and OAUTH
Understanding of automated attacks such as credential stuffing and site scraping
#TB_EN Job #: 25-26660
