Security Operations Analyst

ABOUT HUB

At HUB International we are a team of entrepreneurs. We believe in protecting and supporting the aspirations of individuals families and businesses. We help our clients evaluate their risks and develop solutions tailored to their needs. We believe in empowering our employees to learn grow and make a difference. Our structure enables our teams to maintain their own unique regional culture while leveraging support and resources from our corporate centers of excellence.

HUB is the 5th largest global insurance and employee benefits broker providing a boundaryless array of business insurance employee benefits risk services personal insurance retirement and private wealth management products and services. With over $5 billion in revenue and almost 20000 employees in 600 offices throughout North America HUB has grown substantially in part due to our industry leading success in mergers and acquisitions.

Job Description

The Information Security Analyst functions as a member of the Security Support and Identity Access Management team and interacts with technical and business units to plan and implement information security solutions and support information security incidents. This role requires strong teamwork and initiative along with the ability to build and maintain relationships across technical and business units. Excellent communication skills are essential.

Objectives of this Role

• Protect the integrity and confidentiality of HUB data and infrastructure while enabling business functionality in all systems and environments by supporting applicable security solutions.
• Lead incident response activities and provide timely response to security incidents and alerts generated by security tools or the SOC.
• Assist in improving processes identify efficiencies and recommend solution enhancements to improve service level delivery.
• Contribute to Continuous Improvement and Posture Management efforts in respect to HUBs information security tooling and systems.
• Support the HUB Information Security Governance & Compliance team as needed during risk assessments internal and external Information Security Audits and Vendor reviews.
• Champion vulnerability remediation efforts and act as a liaison to IT and application owners for patch management.
• Gather and report on key organizational information security metrics.
• Other duties as assigned.

Daily and Monthly Responsibilities

• Provide Level II Support for incident and request tickets escalated from other technical teams.
• Communicate with stakeholders to assist remediation efforts.
• Lead / Assist in rootcause analysis for security incidents events leading to resolution.
• Contribute to weekly and monthly posture and response operations reporting.
• Be responsible for analysis and recommendation of upgrades changes implementation specific to the support and scaling of HUBs security operations.

Skills and Qualifications

• Bachelors degree in discipline appropriate to assignment or an equivalent combination of education and experience.
• Related certifications (e.g. GSEC CISSP AWS) preferred.
• At least 2 years experience in an Information Security role or 3 years experience in an IT engineering capacity with progressively difficult responsibilities.
• 2 years of experience with cloud infrastructure and O365 services and technology.
• Experience working with and managing Active Directory / MS Entra ID.
• Experience with SOAR (Security Orchestration Automation and response).
• Experience with vulnerability assessment and patch management practices.
• Experience with KQL and SPL or other Query Languages.
• Knowledge of industry security standards guidelines and regulatory/compliance requirements related to information security such as ISO 27001 NIST 80053 SOC2 PCI SOX etc.
• Knowledge of Windows Event and network device logging.
• Knowledge of networking protocols and concepts including TCP DNS DHCP Firewalls VPN and Web proxies.
• Understanding of email transmission routing and authentication concepts including SMTP SPF DKIM and DMARC.
• Demonstrated incident response experience including dealing with malware and endpoint antivirus and detection and response solutions.
• Excellent Prioritization decision making critical thinking communication skills.
• Ability to coordinate and perform multiple tasks/projects simultaneously balancing priorities and deliverables.
• High flexibility including willingness to travel up to 10 of working time.

Location: Flexible / Remote

JOIN OUR TEAM

Do you believe in the power of innovation collaboration and transformation Do you thrive in a supportive and client focused work environment Are you looking for an opportunity to help build and drive change in a rapidly growing and evolving organization When you join HUB International you will be part of a community of learners and doers focused on our Core Values: entrepreneurship teamwork integrity accountability and service.

Disclosure required under applicable law in California Colorado Illinois Maryland Minnesota New York New Jersey and Washington states: The expected salary range for this position is $80K to $105Kand will be impacted by factors such as the successful candidates skills experience and working location as well as the specific positions business line scope and level. If you believe that your qualifications and experience surpass the minimum requirements for this role we encourage you to submit your application. By doing so we will be able to keep your application on file for consideration for potential future positions within our organization. HUB International is proud to offer comprehensive benefit and total compensation packages which could include health/dental/vision/life/disability insurance FSA HSA and 401(k) accounts paidtimeoff benefits such as vacation sick and personal days and eligible bonuses equity and commissions for some positions.

HUB International Limited is an equal opportunity employer that does not discriminate on the basis of race/ethnicity national origin religion age color sex sexual orientation gender identity disability or veterans status or any other characteristic protected by local state or federal laws rules or regulations.

EVerify Program

We endeavor to make this website accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process please contact the recruiting team. This contact information is for accommodation requests only; do not use this contact information to inquire about the status of applications.