SOC Analyst
Description:
Starr Insurance Companies is a leading insurance and investment organization, providing commercial property and casualty insurance, including travel and accident coverage, to almost every imaginable business and industry in virtually every part of the world.
Cornelius Vander Starr established his first insurance company in Shanghai, China in 1919. Today, we are one of the world’s fastest growing insurance organizations, capable of writing in 128 countries on 6 continents.
Information Security – SOC Analyst
Description
Starr’s IT Security Team is seeking a detail-oriented & proactive SOC Analyst to join our Security team. The primary responsibility of this role is to manage & resolve security-related tickets in our queue, ensuring the protection of our organization’s intellectual property, users, & assets. The ideal candidate will have a strong understanding of security principles, excellent problem-solving skills, & the ability to work efficiently in a fast-paced environment.
Specific Skills & Responsibilities
Ticket Management
Monitor Ticket Queue: Continuously monitor the security ticket queue to identify new tickets & track the status of existing tickets.
Ticket Triage: Assess & categorize tickets based on severity, urgency, & impact to the organization.
Ticket Resolution: Investigate & resolve security-related tickets, including but not limited to: malware infections, phishing attempts, email traces, unauthorized access, web site access, & other security incidents.
Escalation: Identify tickets that require advanced expertise or additional resources & escalate them to senior security staff or other relevant departments as necessary. Ensure proper handoff & follow-up on escalated tickets to ensure timely resolution.
Documentation: Maintain detailed & accurate records of all actions taken to resolve tickets, including steps taken, tools used, & outcomes achieved. Ensure all ticket updates are logged in the ticketing system.
Communication: Provide regular updates to stakeholders on the status of their tickets. Communicate clearly & effectively with users to gather necessary information & provide guidance on security best practices.
Incident Response
Investigate & respond to security incidents & alerts generated by security tools & systems.
Perform root cause analysis to identify the source of security issues & recommend corrective actions.
Collaborate with other IT & security team members to contain & remediate incidents.
Security Tools & Systems
Experience with any of the following technologies greatly preferred:
Splunk Log & Event Platform (basic query & report building)
Network Access Control
Vulnerability Scanning
Advanced Detection & Response Endpoint Agents
Network Packet Capture & Event Analysis
Threat Intelligence Platforms
Microsoft Patching & Device Management Platforms
Experience with Splunk SOAR a plus
Experience with scripting, (Batch, PowerShell, Python, etc..) a plus
Assist in the configuration and maintenance of security tools to ensure optimal performance.
Compliance & Reporting
Ensure compliance with organizational policies, standards, & regulatory requirements.
Generate & review security reports, providing insights & recommendations to management.
Participate in security audits & assessments as required.
Continuous Improvement
Identify opportunities for improving security processes & workflows.
Participate in security training & awareness programs to stay current with industry best practices.
Contribute to the development and maintenance of security documentation, including policies, procedures, & guidelines.
#LI-EP1
Starr is an equal opportunity employer, which means we'll consider all suitably qualified applicants regardless of gender identity or expression, ethnic origin, nationality, religion or beliefs, age, sexual orientation, disability status or any other protected characteristic. We recruit and develop our people based on merit and we're committed to creating an inclusive environment for all employees. We offer first class training and development opportunities to all employees. Our aim is to grow our own talent and bring out the best in people.
JR3295