Security Engineer, Purple Team

At HUB International we are a team of entrepreneurs. We believe in protecting and supporting the aspirations of individuals families and businesses. We help our clients evaluate their risks and develop solutions tailored to their needs. We believe in empowering our employees to learn grow and make a difference. Our structure enables our teams to maintain their own unique regional culture while leveraging support and resources from our corporate centers of excellence.

HUB is the 5th largest global insurance and employee benefits broker providing a boundaryless array of business insurance employee benefits risk services personal insurance retirement and private wealth management products and services. With over $5 billion in revenue and almost 20000 employees in 600 offices throughout North America HUB has grown substantially in part due to our industry leading success in mergers and acquisitions.

Job Description

In this role you will manage multiple aspects of information security operations response and engineering. This position will contribute to a team focusing on the included but not limited to incident response playbook development and execution operational engineering attack surface discovery and mitigation as well as being a key participant within Information security program. They will work in close collaboration with all HUB IT teams to design and support effective Information Security Operations for Hub International.

Objectives of this Role

• Manages and is responsible for the successful completion of all tasks in assigned projects.
• Contribute to Security Operations and Engineering Team focused on maintaining the security integrity of HUBs mission critical suite of applications.
• Available 24/7 for any critical security incident response that may arise which requires immediate resolution.
• Work to ensure security tooling within HUB environments are operational and operating at needed levels of service and availability.
• Contribute to practice continuous improvement in response playbooks and security tooling.
• Develop surface attack discovery reporting and mitigation.
• Assess and develop risk models with regards to; Identity Data Attack Surface
• Maintains current knowledge of relevant information security technology and techniques bringing forth ideas for modernization and improvement.
• Ensure operational practices provide a sound foundation that utilizes tools and processes for rapid identification of security events to address and mitigate risks.
• Engage with peers regularly on security operations functions project status activities and achievements.
• Contribute to Continuous Improvement and Posture Management efforts in respect to HUBs information security tooling and systems.
• Assist in Plan organize and execute multiple responsibilities to achieve project goals and provide technical leadership to move operational projects to completion.
• Contribute to security requirements standards procedures and reference architectures to comply with policies and technical standards.

Daily and Monthly Responsibilities

• Evaluation of vulnerability analysis endpoint and security tooling packages to ensure acceptable levels of efficacy are met.
• Assist in evaluation of vulnerability analysis reporting and validation.
• Contribute in rootcause analysis for security incidents and events establish preventive measures mitigations or remediations.
• Contribute to weekly and monthly posture and attack surface reporting.
• Contribute to the analysis and recommendation of upgrades changes implementation specific to the support and scaling of HUBs security operations.
• Support the HUB Information Security Governance & Compliance team as needed during risk assessments internal and external Information Security Audits and Vendor reviews

Skills and Qualifications

• Bachelors degree in technology or applicable experience.
• Related certifications (e.g. GSEC CISSP GIAC AWS) preferred.
• 5 Years of experience within information security operations in multiple roles.
• 3 years of experience with cloud infrastructure (AWS GCP Azure) and O365 services and technology
• 3 years of experience with security incident response and operations
• 2 years of experience defining refining and driving efficiency in operational processes.
• Extensive experience with but not excluded to: TCP/IP DNS WAF SEIM and SOAR technologies.
• Experience in developing asset risk model(s); Identity Data Attack Surface
• Experience in developing and implementing CART capabilities.
• Experience working with and managing Active Directory / MS Entra ID
• Experience with KQL and SPL or other Query Languages
• Experience with powershell python and shell scripting
• Knowledge of information security standards principles and practices required.
• Knowledge of industry security standards guidelines and regulatory/compliance requirements related to information security such as ISO 27001 NIST 80053 SOC2 PCI SOX etc.
• Prioritization decision making critical thinking communication and relationship building skills
• Ability to work independently and in a team environment.
• This position reports into Chicago and can be based anywhere in the U.S. (i.e. remote/virtual)
• Willingness to travel up to 10% of working time

Location: Flexible / Remote

JOIN OUR TEAM

Do you believe in the power of innovation collaboration and transformation Do you thrive in a supportive and client focused work environment Are you looking for an opportunity to help build and drive change in a rapidly growing and evolving organization When you join HUB International you will be part of a community of learners and doers focused on our Core Values: entrepreneurship teamwork integrity accountability and service.

Disclosure required under applicable law in California Colorado Illinois Maryland Minnesota New York New Jersey and Washington states: The expected salary range for this position is $120K to $130Kand will be impacted by factors such as the successful candidates skills experience and working location as well as the specific positions business line scope and level. If you believe that your qualifications and experience surpass the minimum requirements for this role we encourage you to submit your application. By doing so we will be able to keep your application on file for consideration for potential future positions within our organization. HUB International is proud to offer comprehensive benefit and total compensation packages which could include health/dental/vision/life/disability insurance FSA HSA and 401(k) accounts paidtimeoff benefits such as vacation sick and personal days and eligible bonuses equity and commissions for some positions.

HUB International Limited is an equal opportunity employer that does not discriminate on the basis of race/ethnicity national origin religion age color sex sexual orientation gender identity disability or veterans status or any other characteristic protected by local state or federal laws rules or regulations.

EVerify Program

We endeavor to make this website accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process please contact the recruiting team. This contact information is for accommodation requests only; do not use this contact information to inquire about the status of applications.