IEX is looking for an experienced Cyber Security Analyst to review information and security intelligence sources to investigate and/or escalate events that require further examination. You should have a solid understanding of information security, networking concepts, and strong analytical skills. You should be a strong team player who works with others to drive continuous improvement for yourself, the team and the program. If you’re excited to join a company that is changing Wall Street for the better, please apply!
About you:
- Self-starter who is proactive and entrepreneurial
- Organized and detail-oriented
- Cross-functional team player
- Excellent analytical, critical thinking, communication, and problem-solving skills
What you’ll do:
- Identify security threats by monitoring and correlating events originating from security tooling and event logs
- Apply and maintain standardized procedures to investigate and resolve potential security incidents
- Tune security tooling as required to optimize and enhance the information available for analyzing potential security events
- Identify and track security metrics related to environment and industry trends to create a normalized view of expected network behavior and to detect anomalies
- Lead the IEX vulnerability management program as well as identify ad-hoc vulnerabilities that may exist in the environment through available sources and assessments
- Identify and lead projects that further advance IEX’s ability to detect, contain, and eradicate threats
- Review threat intelligence sources for items that are relevant to IEX and investigate those that are applicable
- Perform security and risk assessments of third-party tools, vendors, and systems
- Work within the information security analyst team to perform and optimize operations and compliance oversight processes to confirm adherence to policy requirements
Your background:
- 5+ years of relevant experience
- B.S./B.A. in Information Technology, Information Security, Computer Science, or a related field
- Deep understanding of threats, vulnerabilities, attack methodologies, and countermeasures
- Strong experience with reviewing event logs, syslog, and using SIEM
- Familiarity with NIST standards and the MITRE ATT&CK Framework
- Strong technical understanding of networking, operating systems, cloud platforms and related security technologies
- Scripting experience (e.g., Python, Ruby, BASH, Powershell) preferred
- Relevant certifications (e.g., SSCP, GCIH, GCIA, GCFA, CISSP) a strong plus
Here at IEX, we are dedicated to an inclusive workplace and culture. We are an Equal Opportunity Employer that does not discriminate on the basis of actual or perceived race, color, creed, religion, alienage or national origin, ancestry, citizenship status, age, disability or handicap, sex, marital status, veteran status, sexual orientation, genetic information or any other characteristic protected by applicable federal, state or local laws. This policy not only complies with all applicable laws and protects workers' rights but is vital to IEX’s overall mission and values.
