IT Security Analyst II
Posted on Sep 15, 2024 by SelectQuote, Inc.
Leawood, KS
Health & Safety
Immediate Start
Annual Salary
Full-Time
Company Overview:
More than 35 years ago, SelectQuote was founded on one core promise: to help our customers protect the people they value most. We pioneered the way consumers shopped for term life insurance, and now, we also help people find home insurance, auto insurance, senior health insurance and more. Our quick and easy process saves consumers both time and money, and today, more than 2 million families trust us to help them with their insurance needs.
But what truly sets us apart is our people, and the opportunities to grow your career with SelectQuote are unmatched.
About the Role:
The IT Security Analyst II will be an experienced security practitioner responsible for the operations and administration of enterprise security solutions and processes. As a Tier 2 Security Engineer you will play a critical role in an integrated enterprise-wide security team that includes 24x7 SOC operations. In this role you will serve as the Subject Matter Expert (SME) for SIEM configuration and vulnerability management systems ensuring the seamless operation and continuous enhancement of these critical security functions. You will be responsible for maintaining and fine-tuning SIEM data connections log collectors and alerts while also driving comprehensive vulnerability management through targeted scans and detailed reporting.
Supervisory Responsibilities:
This position has no direct supervisory responsibilities.
Essential Duties and Responsibilities:
Serve as the SME for SIEM configuration ensuring optimal data connections and log collection from various sources
Fine-tune alerts and dashboards to reduce noise and improve the SOC's response effectiveness
Continuously improve SIEM use cases and correlation rules to enhance detection capabilities
Perform vulnerability scans analyze results and collaborate with IT teams to prioritize remediation efforts
Fine-tune scan settings to optimize performance and coverage without impacting network or system performance
Generate detailed reports that highlight vulnerabilities and track remediation progress
Continuously improve the security posture of client-facing applications by identifying risks and implementing appropriate mitigation strategies
Conduct periodic security scanning and internal security testing to identify and remediate potential security breaches
Conduct advanced adversary analysis SIEM analysis and deep dives using blue-team and red-team pen-test tools to identify and address security vulnerabilities
Collaborate with SOC analysts to analyze and respond to threats in real-time
Develop and document incident response run-books with detailed methods and procedures for the SOC team
Participate in incident response activities providing expertise and guidance during security incidents
Generate detailed reports for business managers and system owners to evaluate the effectiveness of security policies and recommend improvements
Provide regular updates to senior management on the status of security systems vulnerabilities and incident response activities
Skills/Abilities:
Ability to analyze complex security issues and recommend effective solutions
Precision in configuring and maintaining security systems
Strong ability to troubleshoot and resolve security issues
Work effectively with cross-functional teams to improve security posture
Ability to adjust to rapidly changing security landscapes and emerging threats
Expected to work under own initiative prioritize own work and meet agreed timescales and deliverables
Education and Experience:
3+ years of experience in a security or engineering related role
Hands-on experience with SIEM tools (e.g. Splunk Rapid 7) and vulnerability management platforms (e.g. Qualys Rapid 7) preferred
Strong knowledge of security principles techniques and technologies
Experience in conducting adversary analysis and using blue-team/red-team tools
Excellent communication skills with the ability to explain complex technical concepts to non-technical stakeholders
Certificates/Licenses/Registration
Relevant certifications (e.g. CISSP CEH GCIH) are preferred
Physical Requirements:
Work is performed indoors with potential for exposure to safety and health hazards related to office work. Could periodically travel to other office and operational sites. The noise level in the work environment is usually moderate.
Prolonged periods of sitting at a desk and working on a computer.
SelectQuote Core Values:
Service: We create positive customer experiences.
Entrepreneurship: We create innovate & take risks.
Leadership: We build & invest in high-performing teams. Empowerment: We embrace a changing environment.
Courage: We challenge the status quo & drive continuous improvement.
Teamwork: We help support & celebrate each other.
Disclaimer: The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required.
More than 35 years ago, SelectQuote was founded on one core promise: to help our customers protect the people they value most. We pioneered the way consumers shopped for term life insurance, and now, we also help people find home insurance, auto insurance, senior health insurance and more. Our quick and easy process saves consumers both time and money, and today, more than 2 million families trust us to help them with their insurance needs.
But what truly sets us apart is our people, and the opportunities to grow your career with SelectQuote are unmatched.
About the Role:
The IT Security Analyst II will be an experienced security practitioner responsible for the operations and administration of enterprise security solutions and processes. As a Tier 2 Security Engineer you will play a critical role in an integrated enterprise-wide security team that includes 24x7 SOC operations. In this role you will serve as the Subject Matter Expert (SME) for SIEM configuration and vulnerability management systems ensuring the seamless operation and continuous enhancement of these critical security functions. You will be responsible for maintaining and fine-tuning SIEM data connections log collectors and alerts while also driving comprehensive vulnerability management through targeted scans and detailed reporting.
Supervisory Responsibilities:
This position has no direct supervisory responsibilities.
Essential Duties and Responsibilities:
Serve as the SME for SIEM configuration ensuring optimal data connections and log collection from various sources
Fine-tune alerts and dashboards to reduce noise and improve the SOC's response effectiveness
Continuously improve SIEM use cases and correlation rules to enhance detection capabilities
Perform vulnerability scans analyze results and collaborate with IT teams to prioritize remediation efforts
Fine-tune scan settings to optimize performance and coverage without impacting network or system performance
Generate detailed reports that highlight vulnerabilities and track remediation progress
Continuously improve the security posture of client-facing applications by identifying risks and implementing appropriate mitigation strategies
Conduct periodic security scanning and internal security testing to identify and remediate potential security breaches
Conduct advanced adversary analysis SIEM analysis and deep dives using blue-team and red-team pen-test tools to identify and address security vulnerabilities
Collaborate with SOC analysts to analyze and respond to threats in real-time
Develop and document incident response run-books with detailed methods and procedures for the SOC team
Participate in incident response activities providing expertise and guidance during security incidents
Generate detailed reports for business managers and system owners to evaluate the effectiveness of security policies and recommend improvements
Provide regular updates to senior management on the status of security systems vulnerabilities and incident response activities
Skills/Abilities:
Ability to analyze complex security issues and recommend effective solutions
Precision in configuring and maintaining security systems
Strong ability to troubleshoot and resolve security issues
Work effectively with cross-functional teams to improve security posture
Ability to adjust to rapidly changing security landscapes and emerging threats
Expected to work under own initiative prioritize own work and meet agreed timescales and deliverables
Education and Experience:
3+ years of experience in a security or engineering related role
Hands-on experience with SIEM tools (e.g. Splunk Rapid 7) and vulnerability management platforms (e.g. Qualys Rapid 7) preferred
Strong knowledge of security principles techniques and technologies
Experience in conducting adversary analysis and using blue-team/red-team tools
Excellent communication skills with the ability to explain complex technical concepts to non-technical stakeholders
Certificates/Licenses/Registration
Relevant certifications (e.g. CISSP CEH GCIH) are preferred
Physical Requirements:
Work is performed indoors with potential for exposure to safety and health hazards related to office work. Could periodically travel to other office and operational sites. The noise level in the work environment is usually moderate.
Prolonged periods of sitting at a desk and working on a computer.
SelectQuote Core Values:
Service: We create positive customer experiences.
Entrepreneurship: We create innovate & take risks.
Leadership: We build & invest in high-performing teams. Empowerment: We embrace a changing environment.
Courage: We challenge the status quo & drive continuous improvement.
Teamwork: We help support & celebrate each other.
Disclaimer: The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required.
Reference: 200035195
https://jobs.careeraddict.com/post/95278313
IT Security Analyst II
Posted on Sep 15, 2024 by SelectQuote, Inc.
Leawood, KS
Health & Safety
Immediate Start
Annual Salary
Full-Time
Company Overview:
More than 35 years ago, SelectQuote was founded on one core promise: to help our customers protect the people they value most. We pioneered the way consumers shopped for term life insurance, and now, we also help people find home insurance, auto insurance, senior health insurance and more. Our quick and easy process saves consumers both time and money, and today, more than 2 million families trust us to help them with their insurance needs.
But what truly sets us apart is our people, and the opportunities to grow your career with SelectQuote are unmatched.
About the Role:
The IT Security Analyst II will be an experienced security practitioner responsible for the operations and administration of enterprise security solutions and processes. As a Tier 2 Security Engineer you will play a critical role in an integrated enterprise-wide security team that includes 24x7 SOC operations. In this role you will serve as the Subject Matter Expert (SME) for SIEM configuration and vulnerability management systems ensuring the seamless operation and continuous enhancement of these critical security functions. You will be responsible for maintaining and fine-tuning SIEM data connections log collectors and alerts while also driving comprehensive vulnerability management through targeted scans and detailed reporting.
Supervisory Responsibilities:
This position has no direct supervisory responsibilities.
Essential Duties and Responsibilities:
Serve as the SME for SIEM configuration ensuring optimal data connections and log collection from various sources
Fine-tune alerts and dashboards to reduce noise and improve the SOC's response effectiveness
Continuously improve SIEM use cases and correlation rules to enhance detection capabilities
Perform vulnerability scans analyze results and collaborate with IT teams to prioritize remediation efforts
Fine-tune scan settings to optimize performance and coverage without impacting network or system performance
Generate detailed reports that highlight vulnerabilities and track remediation progress
Continuously improve the security posture of client-facing applications by identifying risks and implementing appropriate mitigation strategies
Conduct periodic security scanning and internal security testing to identify and remediate potential security breaches
Conduct advanced adversary analysis SIEM analysis and deep dives using blue-team and red-team pen-test tools to identify and address security vulnerabilities
Collaborate with SOC analysts to analyze and respond to threats in real-time
Develop and document incident response run-books with detailed methods and procedures for the SOC team
Participate in incident response activities providing expertise and guidance during security incidents
Generate detailed reports for business managers and system owners to evaluate the effectiveness of security policies and recommend improvements
Provide regular updates to senior management on the status of security systems vulnerabilities and incident response activities
Skills/Abilities:
Ability to analyze complex security issues and recommend effective solutions
Precision in configuring and maintaining security systems
Strong ability to troubleshoot and resolve security issues
Work effectively with cross-functional teams to improve security posture
Ability to adjust to rapidly changing security landscapes and emerging threats
Expected to work under own initiative prioritize own work and meet agreed timescales and deliverables
Education and Experience:
3+ years of experience in a security or engineering related role
Hands-on experience with SIEM tools (e.g. Splunk Rapid 7) and vulnerability management platforms (e.g. Qualys Rapid 7) preferred
Strong knowledge of security principles techniques and technologies
Experience in conducting adversary analysis and using blue-team/red-team tools
Excellent communication skills with the ability to explain complex technical concepts to non-technical stakeholders
Certificates/Licenses/Registration
Relevant certifications (e.g. CISSP CEH GCIH) are preferred
Physical Requirements:
Work is performed indoors with potential for exposure to safety and health hazards related to office work. Could periodically travel to other office and operational sites. The noise level in the work environment is usually moderate.
Prolonged periods of sitting at a desk and working on a computer.
SelectQuote Core Values:
Service: We create positive customer experiences.
Entrepreneurship: We create innovate & take risks.
Leadership: We build & invest in high-performing teams. Empowerment: We embrace a changing environment.
Courage: We challenge the status quo & drive continuous improvement.
Teamwork: We help support & celebrate each other.
Disclaimer: The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required.
More than 35 years ago, SelectQuote was founded on one core promise: to help our customers protect the people they value most. We pioneered the way consumers shopped for term life insurance, and now, we also help people find home insurance, auto insurance, senior health insurance and more. Our quick and easy process saves consumers both time and money, and today, more than 2 million families trust us to help them with their insurance needs.
But what truly sets us apart is our people, and the opportunities to grow your career with SelectQuote are unmatched.
About the Role:
The IT Security Analyst II will be an experienced security practitioner responsible for the operations and administration of enterprise security solutions and processes. As a Tier 2 Security Engineer you will play a critical role in an integrated enterprise-wide security team that includes 24x7 SOC operations. In this role you will serve as the Subject Matter Expert (SME) for SIEM configuration and vulnerability management systems ensuring the seamless operation and continuous enhancement of these critical security functions. You will be responsible for maintaining and fine-tuning SIEM data connections log collectors and alerts while also driving comprehensive vulnerability management through targeted scans and detailed reporting.
Supervisory Responsibilities:
This position has no direct supervisory responsibilities.
Essential Duties and Responsibilities:
Serve as the SME for SIEM configuration ensuring optimal data connections and log collection from various sources
Fine-tune alerts and dashboards to reduce noise and improve the SOC's response effectiveness
Continuously improve SIEM use cases and correlation rules to enhance detection capabilities
Perform vulnerability scans analyze results and collaborate with IT teams to prioritize remediation efforts
Fine-tune scan settings to optimize performance and coverage without impacting network or system performance
Generate detailed reports that highlight vulnerabilities and track remediation progress
Continuously improve the security posture of client-facing applications by identifying risks and implementing appropriate mitigation strategies
Conduct periodic security scanning and internal security testing to identify and remediate potential security breaches
Conduct advanced adversary analysis SIEM analysis and deep dives using blue-team and red-team pen-test tools to identify and address security vulnerabilities
Collaborate with SOC analysts to analyze and respond to threats in real-time
Develop and document incident response run-books with detailed methods and procedures for the SOC team
Participate in incident response activities providing expertise and guidance during security incidents
Generate detailed reports for business managers and system owners to evaluate the effectiveness of security policies and recommend improvements
Provide regular updates to senior management on the status of security systems vulnerabilities and incident response activities
Skills/Abilities:
Ability to analyze complex security issues and recommend effective solutions
Precision in configuring and maintaining security systems
Strong ability to troubleshoot and resolve security issues
Work effectively with cross-functional teams to improve security posture
Ability to adjust to rapidly changing security landscapes and emerging threats
Expected to work under own initiative prioritize own work and meet agreed timescales and deliverables
Education and Experience:
3+ years of experience in a security or engineering related role
Hands-on experience with SIEM tools (e.g. Splunk Rapid 7) and vulnerability management platforms (e.g. Qualys Rapid 7) preferred
Strong knowledge of security principles techniques and technologies
Experience in conducting adversary analysis and using blue-team/red-team tools
Excellent communication skills with the ability to explain complex technical concepts to non-technical stakeholders
Certificates/Licenses/Registration
Relevant certifications (e.g. CISSP CEH GCIH) are preferred
Physical Requirements:
Work is performed indoors with potential for exposure to safety and health hazards related to office work. Could periodically travel to other office and operational sites. The noise level in the work environment is usually moderate.
Prolonged periods of sitting at a desk and working on a computer.
SelectQuote Core Values:
Service: We create positive customer experiences.
Entrepreneurship: We create innovate & take risks.
Leadership: We build & invest in high-performing teams. Empowerment: We embrace a changing environment.
Courage: We challenge the status quo & drive continuous improvement.
Teamwork: We help support & celebrate each other.
Disclaimer: The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required.
Reference: 200035195
Share this job:
Alert me to jobs like this:
Amplify your job search:
Expert career advice
Increase interview chances with our downloads and specialist services.
Visit Blog