Security Analyst - Raleigh, United States - Arch Capital Group Ltd.
Description
With a company culture rooted in collaboration, expertise and innovation, we aim to promote progress and inspire our clients, employees, investors and communities to achieve their greatest potential.
Security Analysts
prepare and defend our networks, data and systems (on-premise and in the cloud) from attack.
They use an understanding of tactics, techniques, and procedures used by attackers and apply that knowledge to assist in the investigation of cyber-attacks in order to ensure steps are taken to mitigate the threat and help the team to track all security incidents to closure.
Security Analysts work on activities such as incident response, logging/monitoring support, application security, configuration reviews, and configuration and maintenance of various security controls, both on premise and on cloud infrastructure.
They assist on creating and revising information security standards and policies as well as create and produce applicable metrics.*This Security Analyst must be located in the North Carolina area.
Job Summary
The Security Analyst will prepare and defend our networks, data and systems (on-premise and in the cloud) from attack.
They will use an understanding of tactics, techniques, and procedures used by attackers and apply that knowledge to assist in the investigation of cyber-attacks in order to ensure steps are taken to mitigate the threat and help the team to track all security incidents to closure.
The Security Analyst will work on activities such as incident response, logging/monitoring support, application security, configuration reviews, and configuration and maintenance of various security controls, both on premise and on cloud infrastructure.
They will assist on creating and revising information security standards and policies as well as create and produce applicable metrics.
ResponsibilitiesParticipate in vulnerability management related activities including the identification, prioritization and directing the remediation of security related vulnerabilities.
Design, develop, implement, and maintain security documentation.
Document all tickets and alerts worked on in the required SLA.
Monitor and respond to SIEM alerts.
Participate in rotational on-call responsibilities.
Education and Experience
1-3 years of related security experience
Deep understanding of cyber incident response processes and procedures.
Familiarity with network forensics including PCAP analysis, network security, and IDS/IPS analysis.
Understanding of Cyber Threat Intelligence and Cyber Security Awareness concepts.
In-depth understanding of Windows operating systems and general knowledge of Unix, Linux, and Mac operating systems.
Knowledgeable with various security infrastructure tools such as intrusion prevention/detection systems, anti-virus/endpoint detection and response, proxy servers, email controls, and SIEM.
Ability to perform risk analysis and communicate that risk to others.
General understanding of AWS, Azure, and/or Google Cloud.
Experience in a 24x7 global enterprise, preferably in the financial industry.
SANS GIAC (GSEC, GCIA, GCIH, GCFA, etc.), CISSP, CEH, Security+, or similar information security certifications.
Scripting experience, preferably Python and/or PowerShell.
SIEM knowledge and experience.
General system and/or network administration experience.
Cloud Security Experience (AWS and Azure).
Bachelor's degree in related field of study, preferred.
Security+ or other technical certifications, preferred.
#LI-ZP1
Do you like solving complex business problems, working with talented colleagues and have an innovative mindset? Arch may be a great fit for you.
If this job isn't the right fit but you're interested in working for Arch, create a job alert Simply create an account and opt in to receive emails when we have job openings that meet your criteria.
Join our talent community to share your preferences directly with Arch's Talent Acquisition team.#J-18808-Ljbffr