HUB International is a leading global insurance and employee benefits broker, committed to empowering clients and employees alike. They are seeking a Security Operations Analyst to protect the integrity and confidentiality of data while supporting incident response activities and enhancing security solutions.
Protect the integrity and confidentiality of HUB data and infrastructure while enabling business functionality in all systems and environments by supporting applicable security solutions.
Lead incident response activities and provide timely response to security incidents and alerts generated by security tools or the SOC
Assist in improving processes, identify efficiencies, and recommend solution enhancements to improve service level delivery
Contribute to “Continuous Improvement and Posture Management” efforts, in respect to HUB’s information security tooling and systems.
Support the HUB Information Security Governance & Compliance team as needed during risk assessments, internal and external Information Security Audits, and Vendor reviews
Champion vulnerability remediation efforts and act as a liaison to IT and application owners for patch management
Gather and report on key organizational information security metrics
Provide Level II Support for incident and request tickets escalated from other technical teams
Communicate with stakeholders to assist remediation efforts.
Lead / Assist in root-cause analysis for security incidents events leading to resolution.
Contribute to weekly and monthly posture and response operations reporting.
Be responsible for analysis and recommendation of upgrades, changes, implementation specific to the support and scaling of HUB’s security operations.
Qualification
Required
Bachelor's degree in discipline appropriate to assignment or an equivalent combination of education and experience
At least 2 years’ experience in an Information Security role or 3 years’ experience in an IT engineering capacity with progressively difficult responsibilities
2+ years of experience with cloud infrastructure and O365 services and technology
Experience working with and managing Active Directory / MS Entra ID
Experience with SOAR (Security Orchestration, Automation, and response)
Experience with vulnerability assessment and patch management practices
Experience with KQL and SPL or other Query Languages
Knowledge of industry security standards, guidelines, and regulatory/compliance requirements related to information security such as ISO 27001, NIST 800-53, SOC2, PCI, SOX, etc.
Knowledge of Windows Event and network device logging
Knowledge of networking protocols and concepts including TCP, DNS, DHCP, Firewalls, VPN, and Web proxies
Understanding of email transmission, routing, and authentication concepts including, SMTP, SPF, DKIM and DMARC
Demonstrated incident response experience including dealing with malware and endpoint anti-virus and detection and response solutions
Excellent Prioritization, decision making, critical thinking, communication skills
Ability to coordinate and perform multiple tasks/projects simultaneously, balancing priorities and deliverables
High flexibility, including willingness to travel up to 10% of working time
Preferred
Related certifications (e.g., GSEC, CISSP, AWS) preferred
Benefits
Health/dental/vision/life/disability insurance
FSA
HSA
401(k) accounts
Paid-time-off benefits
Eligible bonuses
Equity and commissions for some positions
HUB International is an insurance brokerage company that offers employee benefits, business, and personal insurance products and services.
Glassdoor
3.8
Founded in 1998
Chicago, Illinois, USA
10001+ employees
https://www.hubinternational.com
HUB International is an insurance brokerage company that offers employee benefits, business, and personal insurance products and services.
