Security Analyst
At Northwestern Mutual, we are strong, innovative and growing. We invest in our people. We care and make a positive difference.
We are seeking a Cyber Security Ops Analyst to join our team. This individual will work cross-functionally to detect and respond to information security incidents, follow procedures for security event alerting, and participate in security investigations. The Cyber Security Ops Analyst will perform tasks including monitoring, research, classification, and analysis of security events that occur on the network or endpoint.
Primary Focus: Insider Risk Investigation
Investigate occurrences of data loss, fraud, or information technology sabotage using a combination of security monitoring, log management, and business tools. The Insider Risk Investigator will execute program processes including assessment of risk indicators, data collection, aggregation, triage, escalation, support activities, and contribute to the execution of the broader team's deliverables and strategies.
Additional Accountabilities:
- Operations: Understand, identify, and respond to various data exfiltration techniques; quickly develop a knowledge of the insider risk landscape, including different types of insiders, tactics, and the motivations that drive them.
- Reporting: Accountable for preparing and delivering quality security information that comprehensively and clearly explains risk, demonstrates findings, and offers tactical and strategic recommendations to both technical and non-technical internal clients.
- Training: Attend technology and security trends training and acquire relevant certifications.
- Metrics: Accountable for working with select team members to track, monitor, and report metrics in a meaningful way to facilitate risk-based decision making.
- Perform other duties as assigned.
Qualifications:
- Associates or bachelor's degree with an emphasis in Computer Science, Computer Engineering, Software Engineering, MIS or related field * or* 2-4 years of professional experience.
- Familiarity with the principles of network and endpoint security, current threat, and attack trends, and a solid grasp of security principles such as defense in depth.
- Must be competent to work at a technical level and be capable of identifying threats, and threat vectors that cause security events.
- Understanding of various security logs (firewalls, proxies, active directory, etc.) - Data Loss Prevention platform and Splunk experience a plus.
- Ability to independently identify and resolve issues through effective problem-solving skills.
- Track record of acting with integrity, confidentiality, and adaptability.
- Proven interpersonal savvy with demonstrated tact and diplomacy.
- Strong written and verbal communication skills with the ability to interpret and fully explain the impact of security risks and vulnerabilities as well as any recommended remediation to multiple knowledge levels.
Our Benefits:
- Highly competitive compensation, including annual bonus opportunities
- Medical/Dental/Vision plans, matching 401(k), pension program
- Tuition reimbursement, commuter plans, and paid time off
- Extensive Professional Training Opportunities
- Excellent Work/Life Balance
- Hackathons/Dedication to Innovation
If this role is of interest, we would love to hear from you!
#LI-POST
This job is not covered by the existing Collective Bargaining Agreement.
Required Certifications:
Grow your career with a best-in-class company that puts our client's interests at the center of all we do. Get started now!
We are an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity or expression, sexual orientation, national origin, disability, age or status as a protected veteran, or any other characteristic protected by law.
If you work or would be working in Colorado or outside of a Corporate location, please click here for information pertaining to compensation and benefits.