Security Operations Analyst

ABOUT US
At HUB International we are a team of entrepreneurs. We believe in empowering our clients and we do so by protecting businesses and individuals in our local communities. We help businesses evaluate their risks and develop solutions tailored to their needs. We believe in empowering our employees. As a global firm we offer employees resources in both technology and industry expertise but we still maintain the local flavor of our offices. Our structure enables our teams to maintain their own unique regional culture while leveraging support and resources from our corporate centers of excellence.

HUB is a largest global insurance and employee benefits broker providing a boundaryless array of property casualty risk management life and health employee benefits investment and wealth management products and services. With over 17000 employees in more than 550 offices throughout North America HUB has grown substantially in part due to our industry leading success in mergers and acquisitions.

ABOUT THE ROLE

The Information Security Analyst functions as a member of the Security Operations and Engineering team and interacts with technical and business units to plan and implement information security solutions and support information security incidents. This role requires strong teamwork skills and leadership qualities and must be able ability to foster and maintain business relationships with both technical and business units must be a great communicator.

Objectives of this Role

• Protect the integrity and confidentiality of HUB data and infrastructure while enabling business functionality in all systems and environments by supporting applicable security solutions.

• Lead incident response activities and provide timely response to security incidents and alerts generated by security tools or the SOC

• Assist in improving processes identify efficiencies and recommend solution enhancements to improve service level delivery

• Contribute to Continuous Improvement and Posture Management efforts in respect to HUBs information security tooling and systems.

• Support the HUB Information Security Governance & Compliance team as needed during risk assessments internal and external Information Security Audits and Vendor reviews

• Champion vulnerability remediation efforts and act as a liaison to IT and application owners for patch management

• Gather and report on key organizational information security metrics

• Other duties as assigned

Daily and Monthly Responsibilities

• Provide Level II Support for incident and request tickets escalated from other technical teams

• Communicate with stakeholders to assist remediation efforts.

• Lead / Assist in root-cause analysis for security incidents events leading to resolution.

• Contribute to weekly and monthly posture and response operations reporting.

• Be responsible for analysis and recommendation of upgrades changes implementation specific to the support and scaling of HUBs security operations.

• Support the HUB Information Security Governance & Compliance team as needed during risk assessments internal and external Information Security Audits and Vendor reviews

Skills and Qualifications

• Bachelors degree in discipline appropriate to assignment or an equivalent combination of education and experience

• Related certifications (e.g. GSEC CISSP AWS) preferred

• At least 2 years experience in an Information Security role or 3 years experience in an IT engineering capacity with progressively difficult responsibilities

• 2 years of experience with cloud infrastructure and O365 services and technology

• Experience working with and managing Active Directory / MS Entra ID

• Experience with SOAR (Security Orchestration Automation and response)

• Experience with vulnerability assessment and patch management practices

• Experience with KQL and SPL or other Query Languages

• Knowledge of industry security standards guidelines and regulatory/compliance requirements related to information security such as ISO 27001 NIST 800-53 SOC2 PCI SOX etc.

• Knowledge of Windows Event and network device logging

• Knowledge of networking protocols and concepts including TCP DNS DHCP Firewalls VPN and Web proxies

• Understanding of email transmission routing and authentication concepts including SMTP SPF DKIM and DMARC

• Demonstrated incident response experience including dealing with malware and endpoint anti-virus and detection and response solutions

• Excellent Prioritization decision making critical thinking communication skills

• Ability to coordinate and perform multiple tasks/projects simultaneously balancing priorities and deliverables

• High flexibility including willingness to travel up to 10% of working time

JOIN OUR TEAM
Do you believe in the power of innovation collaboration and transformation Do you thrive in a supportive and client focused work environment Are you looking for an opportunity to help build and drive change in a rapidly growing and evolving organization When you join HUB you will be part of a community of learners and doers focused on helping our leaders maximize the potential of their employees.

Disclosure required under applicable municipal regulations in NY and NJ as well as the law in Colorado: The expected salary range for this position is $80K to $115K and will be impacted by factors such as the successful candidates skills experience and working location as well as the specific positions business line scope and level. HUB International is proud to offer comprehensive benefit and total compensation packages which could include health/dental/vision/life/disability insurance FSA HSA and 401(k) accounts paid-time-off benefits and eligible bonuses equity and commissions for some positions.

HUB International Limited is an equal opportunity employer that does not discriminate on the basis of race/ethnicity national origin religion age color sex sexual orientation gender identity disability or veterans status or any other characteristic protected by local state or federal laws rules or regulations.

E-Verify Program

We endeavor to make this website accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process please contact the recruiting team. This contact information is for accommodation requests only; do not use this contact information to inquire about the status of applications.