Cyber Security Analyst

As part of Northern Trust’s Cyber Coordination Center, the Senior Security Analyst will conduct security monitoring, security incident identification, incident prioritization, incident escalation and directed response support functions. The Senior Security Analyst will play a crucial role in executing Northern Trust’s security monitoring model, contributing to a resilient and unified team that improves NT’s ability to protect and defend its networks and information.
Responsibilities

· Monitors for alerts from security tools and responds with an intelligence driven, investigative analysis approach.

· Provides first response support by analyzing alerts and gathering information about potential incidents or vulnerabilities.

· Conducts incident analysis and response based on predefined procedures.

· Creates remediation tickets and tracks tickets to closure.

· Cyber Threat Analysts are provided playbooks and perform initial triage of events but are encouraged to innovate and exercise analytic judgement to solve complex cyber threat problems.

· Escalate incidents as needed, for further immediate action and support.

Qualifications/Experience

· A Bachelor’s degree in Computer Science, Engineering, Information Systems, or similar.

· Alternatively, degrees in philosophy, logic, applied mathematics, or other such disciplines which involve critical thinking and problem solving, along with the ability to apply its concepts to technology, will be considered.

· In lieu of a Bachelor’s degree, relevant military experience, certification, or the ability to clearly demonstrate competence through experience will be considered.

· A minimum of 2+ years working experience in any of the following areas is preferred, but not required if the candidate can demonstrate potential:

□ Security Operations (SOC) and/or Incident Response
□ Network Administration
□ Systems Administration (Windows or Linux)
□ IT Support or Administration

Note: This position is ideal for skilled technology problem solvers to transition to security in a highly collaborative learning environment.

· Strong problem-solving skills. Candidate prefers to work on a series of short-duration complex problems, as opposed to a single problem over a long period of time.

· Ability to self-teach. Candidate is able to conduct effective research, quickly understand technologies, vulnerabilities, and how threats can cause exploitation problems.

· Strong communication skills. Candidate is comfortable providing and receiving candid feedback to/from decision makers, and has a strong ability to convey technical concepts to peers.