HUB International is a global insurance and employee benefits broker dedicated to protecting and supporting the aspirations of individuals and businesses. The Security Operations Analyst will be a key member of the Security Operations and Engineering team, responsible for implementing information security solutions, leading incident response activities, and supporting governance and compliance efforts.
Protect the integrity and confidentiality of HUB data and infrastructure while enabling business functionality in all systems and environments by supporting applicable security solutions
Lead incident response activities and provide timely response to security incidents and alerts generated by security tools or the SOC
Assist in improving processes, identify efficiencies, and recommend solution enhancements to improve service level delivery
Contribute to “Continuous Improvement and Posture Management” efforts, in respect to HUB’s information security tooling and systems
Support the HUB Information Security Governance & Compliance team as needed during risk assessments, internal and external Information Security Audits, and Vendor reviews
Champion vulnerability remediation efforts and act as a liaison to IT and application owners for patch management
Gather and report on key organizational information security metrics
Provide Level II Support for incident and request tickets escalated from other technical teams
Communicate with stakeholders to assist remediation efforts
Lead / Assist in root-cause analysis for security incidents events leading to resolution
Contribute to weekly and monthly posture and response operations reporting
Be responsible for analysis and recommendation of upgrades, changes, implementation specific to the support and scaling of HUB’s security operations
Qualification
Required
Bachelor's degree in discipline appropriate to assignment or an equivalent combination of education and experience
At least 2 years' experience in an Information Security role or 3 years' experience in an IT engineering capacity with progressively difficult responsibilities
2+ years of experience with cloud infrastructure and O365 services and technology
Experience working with and managing Active Directory / MS Entra ID
Experience with SOAR (Security Orchestration, Automation, and response)
Experience with vulnerability assessment and patch management practices
Experience with KQL and SPL or other Query Languages
Knowledge of industry security standards, guidelines, and regulatory/compliance requirements related to information security such as ISO 27001, NIST 800-53, SOC2, PCI, SOX, etc
Knowledge of Windows Event and network device logging
Knowledge of networking protocols and concepts including TCP, DNS, DHCP, Firewalls, VPN, and Web proxies
Understanding of email transmission, routing, and authentication concepts including, SMTP, SPF, DKIM and DMARC
Demonstrated incident response experience including dealing with malware and endpoint anti-virus and detection and response solutions
Excellent Prioritization, decision making, critical thinking, communication skills
Ability to coordinate and perform multiple tasks/projects simultaneously, balancing priorities and deliverables
High flexibility, including willingness to travel up to 10% of working time
Preferred
Related certifications (e.g., GSEC, CISSP, AWS) preferred
Benefits
Health/dental/vision/life/disability insurance
FSA
HSA
401(k) accounts
Paid-time-off benefits such as vacation, sick, and personal days
Eligible bonuses
Equity and commissions for some positions
HUB International is an insurance brokerage company that offers employee benefits, business, and personal insurance products and services.
Glassdoor
3.8
Founded in 1998
Chicago, Illinois, USA
10001+ employees
https://www.hubinternational.com
HUB International is an insurance brokerage company that offers employee benefits, business, and personal insurance products and services.
