Security Analyst

Security Analyst

Our security team covers an expansive problem space encompassing virtually every aspect of the business. Systems of all make and manner, cloud-based and on-prem, workstations and VMs alike AWS? Yep. Google Cloud? Uh-huh. Kubernetes? Yah, there’s some of that, too We identify with identity management, we think it’s great to federate. We operate firewalls at all layers of the OSI models. We like to log and audit stuff - a lot. We scan all the things

To be successful in Information Security, we need thinkers with an intense desire to understand all aspects of cybersecurity as it pertains to both our tech stack as well as our business model. We need people who hate repetition and want to develop solutions that free us from mundane tasks. We need engineers who can take the time to experiment and defend new approaches. We need people who can think bigger - who can operate in an imperfect world, who likes to break things, but more importantly who like to put them back together just a little better than they found them.

This is an Analyst level technical position that will focus on security operational tasks: monitoring, incident response, and ongoing administration of critical security platforms. The Information Security Team fosters a collaborative environment and is building a best of breed practice to partner with the business to protect the Firm’s information and computer systems.

Principal Responsibilities
- Respond to tickets generated from the monitoring and tracking of security events or other security related requests for services.
- Responsible for the daily operation of enterprise security systems including SIEM, IDS, Firewall, Web proxy, Endpoint Protection, Password Vault, custom monitoring events or general system health alerts as escalated by the Enterprise Command Center, etc.
- Participate in Information Security Incident Response activities for the Firm’s environment.
- Python programming skills, beyond basic syntax, with an understanding of what it takes to write high quality code
- Enforce security policies and procedures by administering and monitoring appropriate systems, events and answering client queries.
- Perform vulnerability scans and/or analyze results of scans and assist with remediation as required.
- Collaborate with the Information Security Team to deploy a suite of security tools including AV, Advanced Malware Detection, SIEM, IDS, Vulnerability scanners, etc.
- Ensure MLP enterprise security products are functioning and protecting the environment as expected while providing stability and maintaining policies and procedures.
- Develop and maintain documentation of all Security products including specific tools, technologies and processes.
- Develop and implement procedures and processes to automate repetitive tasks in order to focus resources on innovation and continuous improvement.
- Support the development and delivery of a comprehensive information security program for the entire Millennium organization.
- Actively monitor new and emerging security and privacy related technologies, trends, issues, and solutions and assess their applicability to Millennium key business initiatives and business strategies.
- Leverage collected Intelligence to improve success in defending Millennium against and responding to future attacks or intrusions.
- Provide technical support to IT staff in the detection and resolution of security problems.

Qualifications/Skills Required
- Bachelor or Master Degree in Computer Science or Cyber Security with strong IT background.
- 1-3 years' experience working in a security analyst role, financial industry experience preferred.
- Possesses at least one security certification (Security+, OSCP, CISSP, CEH, GCIA, GCIH).
- Familiarity with use of ticketing systems to manage operational workload.
- Excellent understanding and experience working with data security solutions - including operating system, Active Directory, Web Proxy, PKI, Group Policy, DNS, Messaging, DLP and Cloud Security(AWS, GCP)
- Experience with vulnerability management scanning platforms.
- Ability to handle sensitive and/or confidential materials with appropriate discretion.
- High level understanding of internetworking, data transmission and encryption protocols.
- In-depth knowledge of Windows and UNIX operating systems.
- Demonstrated experience working with a systems programming language (Python, Java, Go & Rust.)
- Scripting, development and automation skills using PowerShell, Python, Java Script, Rest or SOAP web services a plus.
- Possess a passion for Information Security and Technology.
- Sound knowledge of file system access control (NTFS & Unix)
- Able to prioritize in a fast moving, high pressure, constantly changing environment
- Ability to communicate and collaborate across technology teams.