Senior Specialist - IT Security Operations

This is a technical, hands-on role within the mission-critical production environment. The Senior Specialist - IT Security Operations will be responsible for monitoring and analyzing network traffic and security event data, as well as responding timely and appropriately to security events or incidents and asses the severity of the risk and impact to the production environment. This role will investigate intrusion attempts and perform in-depth analysis of exploits. This role must also be flexible and be able to collaborate well with other staff in discussing production impacting issues, reviewing relevant security event logs, and escalating significant items as appropriate. We're looking for a self-starter with strong technical skills in the field.

Responsibilities

  • Monitoring and analyze network and security event data from a variety of sources to identify internal security events based on internal and common intelligence sources
  • Investigate intrusion attempts and perform in-depth analysis of exploits
  • Work closely with the Incident Response team in support of remediation efforts at all levels, including data gathering and liaising between all CIRT teams
  • Stay abreast of the threat landscape through open sources and observed activity
  • Development and documentation of SOC Analyst activities and workflows


Qualifications
  • Bachelor's degree in Computer Science or comparable experience. Vendor certifications in the security field are a plus
  • 6-10 years of Security Analysis experience working in global, complex environment
  • Strong scripting skills a plus (python, PERL, *NIX shell scripting, Powershell, etc.)
  • Perform analysis of security logs in an attempt to detect unauthorized/malicious activity
  • Understand cyber-attack methods such as SQL Injection and Cross Site Scripting attacks (XSS)
  • Ability to convert understanding of cyber-attack methodologies into innovative 0-day detection capabilities
  • Will establish strong working relationship with security vendors and internal peers to continually improve detection capabilities
  • Use vulnerability assessment data to pinpoint potential points of attack
  • Possess a comprehensive understanding of a variety of network protocols including TCP/IP, UDP, DHCP, FTP, SFTP, ATM, SNMP, SMTP, SSH, SSL, VPN, RDP, HTTP and HTTPS
  • Utilize network sniffer tools to perform packet analysis
  • Hands-on experience with IDS/IPS, SIEM, and web filtering solutions, specifically analyzing, crafting and tuning detection techniques
  • Hands-on experience with APT/DPI technology such as FireEye
  • Knowledge of digital forensic and static malware analysis
  • Understand and execute incident response process when a security incident has been declared
  • Strong understanding of data privacy and information security principles
  • Strong understanding of vulnerability assessment and management
  • Strong understanding of basic cyber-intelligence techniques
  • Research external trusted intelligence sources and leverage knowledge to detect events of interest
  • Strong analytical problem solving skills, methodical approach to data analysis and a keen ability to identify threat activity, strong Incident investigation and analysis skills
  • Document and contain security incidents detected on the network
  • Strong technical writing, documentation, and communication skills necessary to create and present findings to C-level management
  • Must possess the following soft-skills
    • Technical writing
    • Team player
    • Strong oral communication
    • Positive attitude and temperament to accept and learn from criticism
  • Ability to provide support off-hours as CIRT activity requires
  • SANS GIAC, GSEC, CISSP, CISM, CEH, are a plus


Marsh & McLennan Companies is a global professional services firm offering clients advice and solutions in the areas of risk, strategy and people. Marsh is a leader in insurance broking and risk management; Guy Carpenter is a leader in providing risk and reinsurance intermediary services; Mercer is a leader in talent, health, retirement and investment consulting; and Oliver Wyman is a leader in management consulting. With annual revenue of $13 billion and nearly 63,000 colleagues worldwide, Marsh & McLennan Companies provides analysis, advice and transactional capabilities to clients in more than 130 countries. The Company is committed to being a responsible corporate citizen and making a positive impact in the communities in which it operates. We embrace a culture that celebrates and promotes the many backgrounds, heritages and perspectives of our colleagues and clients. For more information, please visit us at: www.mmc.com/diversity . Visit www.mmc.com for more information and follow us on LinkedIn and Twitter @MMC_Global

Marsh & McLennan Companies offers competitive salaries and comprehensive benefits and programs including: health and welfare, tuition assistance, 401K, employee assistance program, domestic partnership benefits, career mobility, employee network groups, volunteer opportunities, and other programs. For more information about our company, please visit us at: http://www.mmc.com/. We embrace a culture that celebrates and promotes the many backgrounds, heritages and perspectives of our colleagues and clients. For more information, please visit us at:www.mmc.com/diversity.

Marsh & McLennan Companies and its Affiliatesare EOE Minority/Female/Disability/Vet/Sexual Orientation/Gender Identity employers.


Back to top