Information Security Analyst

  • Job Reference: 53993574-2
  • Date Posted: 7 February 2018
  • Recruiter: HUB INTERNATIONAL
  • Location: Chicago, Illinois
  • Salary: On Application
  • Sector: AV, VC/UC & Networks
  • Job Type: Permanent

Job Description

About HUB International:

HUB International Limited ("HUB") is the 7th largest global insurance and employee benefits broker, providing a broad array of property, casualty, risk management, life and health, employee benefits, investment and wealth management products and services. With over 10,000 employees in 450 offices throughout North America, HUB has grown substantially, in part due to our industry leading success in Mergers and Acquisitions.

About the Position:

This position is responsible for contributing to the development, maintenance and implementation of the Information Security programs at HUB International. The Information Security Analyst functions as a member of the Security Architecture & Engineering team, reports to the Director of Architecture and Engineering, and interacts with technical and business units to plan and implement information security solutions and support information security incidents. This role requires strong teamwork skills and leadership qualities and must be able ability to foster and maintain business relationships with both technical and business units, and must be a great communicator.

Role Description & Responsibilities:

* Protect the integrity and confidentiality of HUB data and infrastructure while enabling business functionality in all systems and environments by supporting applicable security solutions.
* Assist in the design and implementation of security projects as well as provide ongoing operational support
* Support HUB merger and acquisition activity by performing risk assessments and identifying risk mitigation options
* Provide Level III Support for incident tickets escalated from other technical teams
* Gather and report on key organizational information security metrics
* Champion vulnerability remediation efforts and act as a liaison to IT and application owners for patch management purposes
* Lead incident response activities and provide timely response to security incidents and alerts generated by security tools or the SOC
* Support the HUB Information Security Governance & Compliance team as needed during risk assessments and internal and external Information Security Audits
* Other duties as assigned

Basic Qualifications:

* Bachelor's degree in Information Systems or related discipline preferred
* Related certifications (e.g., GSEC, CISSP, AWS) will be helpful
* 2 years' experience in an Information Security role or
* 5 years' experience in an IT engineering capacity with progressively difficult responsibilities

Desired Qualifications:

* Excellent analytical and troubleshooting skills
* Extensive experience working with and managing Active Directory
* Knowledge of networking protocols and concepts including TCP, DNS, DHCP, Firewalls, VPN, and Web proxies
* Understanding of email transmission, routing, and authentication concepts including, SMTP, SPF, DKIM and DMARC
* Experience with Amazon Web Services or Microsoft Azure
* Understanding of vulnerability assessment and patch management practices
* Demonstrated incident response experience including dealing with malware and endpoint anti-virus and detection and response solutions
* Knowledge of Windows Event and network device logging including syslog and SIEM
* Ability to evaluate business processes and IT technology, identify security risks, process gaps, and evaluate IT controls
* Excellent communication skills (both written and verbal)
* Competent interpersonal skills, demonstrating the ability to lead projects
* Ability to coordinate and perform multiple tasks/projects simultaneously, balancing priorities and deliverables
* Reasonable experience and basic understanding of HIPAA/PCI and how it relates to an IT organization in terms of cyber security and risk.
* High flexibility, including willingness to travel up to 10% of working time

#LI-MP1

responsibilities purposes team assessment with functions and Audits BACH_a33d1a escalated during