IT Security Analyst V

External candidates: In order for your application to be correctly processed please signin before you apply

Internal candidates: Please go to Workday and click Find Jobs link under Career

Thank you for considering opportunities with us!

Job Title

Requisition Number

Location

Additional Locations

Job Information

CSAA Insurance Group (CSAA IG) a AAA insurer is one of the top personal lines property and casualty insurance groups in the U.S. Our employees proudly live our core beliefs and fulfill our enduring purpose to help members prevent prepare for and recover from lifes uncertainties and were proud of the culture we create together. As we commit to progress over perfection we recognize that every day is an opportunity to be innovative and adaptable. At CSAA IG we hire good people for a brighter tomorrow. We are actively hiring for a(n) IT Security Analyst V. Join us and support CSAA IG in achieving our goals.

Your Role:

The IT Security Analyst V will play a meaningful role in proactively monitoring detecting analyzing and responding to security events as well as providing senior support and guidance to all team members. The ideal candidate is a highly technical security expert with experience in various areas such as incident response threat monitoring and analysis threat intelligence threat hunting and security tooling across cloud and onprem environments.

The team is responsible for developing intelligence on advanced cyber threats to our services and our customers. We collect indicators and intelligence from a variety of internal and external sources and use that information to develop an understanding of highgrade actors and their tools techniques and procedures. We then bring to bear that understanding to purposefully identify and mitigate malicious activity.

Your work:

The successful candidate will be required to analyze indicators to generate actionable intelligence and insight into current threats. They will help enhance our capabilities by formulating new analytic techniques and working across teams to drive the supporting capabilities.

• Participate and lead incident response triage and investigations for security events
• Perform systematic analysis of security events using IOCs to resolve presence of malicious activity potential threats and vulnerabilities.
• Malware reverse engineering and analysis to evaluate and analyze complex malicious code using tools including dissemblers debuggers hex editors unpackers virtual machines and network sniffers.
• Conduct postincident analysis to identify root causes and recommend preventative measures
• Create incident reports and documentation for stakeholders.
• Monitor security tools and platforms for security events and alerts (SIEM EDR CNAP and more)
• Perform Threat hunting proactively to identify threats and assess the state of security controls.
• Dedicate efforts to staying informed on cyber threats and standard processes to consistently enhance Security Operations Center capabilities
• Lead Security Operations Center project efforts and coordinate with other cyber security groups to elevate the organizations security posture
• Identify opportunities to improve security processes and technologies
• Participate in oncall rotation to respond to critical security events

Required Experience Education and Skills:

• 8 years of IT/Security experience
• Bachelors or equivalent experience in Computer Science Information Systems or other related field.
• Knowledge of current and emerging technologies and tactics used within a Security Operations Center and how they can be applied to improve efficiency and effectiveness
• Understanding of the information security industry and the current threat landscape
• Experience with security tools such as SIEM EDR Email Scanning CNAP and NDR.
• Experience with cloud infrastructure and technology
• Experience performing forensic analysis of logs and packet captures

What would make us excited about you

• A teamfocused mentality with the proven ability to work effectively with diverse stakeholders.
• An ability to communicate complex and technical issues to diverse audiences up to company executives orally and in writing in an easily understood authoritative and actionable manner
• Preferred Qualifications: 5 years direct information security experience
• Demonstrated technical expertise in existing security and IT systems and an ability to keep pace with changing security and IT technologies.
• Actively shapes our company culture (e.g. supporting employee resource groups mentoring employees volunteering joining crossfunctional projects)
• Champions our cultural norms (e.g. willing to have cameras when it matters: helping onboard new team members building relationships etc.
• Demonstrates a company ownership mindset thinking beyond boundaries of their own area
• Travels as needed for role including divisional / team meetings and other inperson meetings
• Fulfills business needs which may include investing extra time helping other teams etc

CSAA IG Careers

At CSAA IG were proudly devoted to protecting our customers our employees our communities and the world at large. We are on a climate journey to continue to do better for our people our business and our planet. Taking bold action and leading by example. We are citizens for a changing world and we continually change to meet it.

Join us if you

• BELIEVE in a mission focused on building a community of service rooted in inclusion and belonging.
• COMMIT to being there for our customers and employees.
• CREATE a sense of purpose that serves the greater good through innovation.

Recognition: We offer a total compensation package performance bonus 401(k) with a company match and so much more! Read more about what we offer and what it is like to be a part of our dynamic team at most cases you will have the opportunity to choose your preferred working location from the following options when you join CSAA IG: remote hybrid or inperson. Submit your application to be considered. We communicate via email so check your inbox and/or your spam folder to ensure you dont miss important updates from us.

If a reasonable accommodation is needed to participate in the job application or interview process please contact

As part of our values we are committed to supporting inclusion and diversity at CSAA IG. We actively celebrate colleagues different abilities sexual orientation ethnicity and gender. Everyone is welcome and supported in their development at all stages in their journey with us.

We are always recruiting retaining and promoting a diverse mix of colleagues who are representative of the U.S. workforce. The diversity of our team fosters a broad range of ideas and enables us to design and deliver a wide array of products to meet customers evolving needs.

CSAA Insurance Group is an equal opportunity employer.

The national average salary range for this position is $136800$152000. However we have a locationbased compensation structure. Our salary ranges vary and are calculated based on county of residence. The full salary range for this position across all the states we hire in is $123120 $182500. This role also includes an opportunity for a companywide annual discretionary bonus through our Annual Incentive Plan (AIP) of up to 12 of eligible pay.

If you apply and are selected to continue in the recruiting process we will schedule a preliminary call with you to discuss the role and will disclose during that call the available salary/hourly rate range based on your location. Factors used to determine the actual salary offered may include location experience or education.

Must have authorization to work indefinitely in the US.

Please note we are hiring for this role remote anywhere in the United States with the following exceptions: Hawaii and Alaska.

#HPRX

#LIJM1

.