Security Technology Lead
Brown Brothers Harriman - Jersey City, NJ
posted 4 days ago
About the position
At BBH, Partnership is more than a form of ownership-it's our approach to business and relationships. We know that supporting your professional and personal goals is the best way to help our clients and advance our business. We take that responsibility seriously. With a 200-year legacy and a shared passion for what's next, this is the right place to build a fulfilling career. Our Cybersecurity Group is part of BBH Systems (our Technology org.) and is responsible for protecting BBH's digital assets. The individual will be responsible for managing a team that evaluates and implements products and procedures to enhance overall Cybersecurity effectiveness. Providing direct support to the business and IT staff on security related issues and operational response. This is a great opportunity to experience, evaluate and deploy the latest cybersecurity technologies to create multi-layered defenses.
Responsibilities
- Evaluate, implement, and support products and procedures to enhance Cyber security
- Research emerging security products, services, protocols, and standards, in support of security development and enhancement efforts
- Maintain tool infrastructure, administration, and support
- Focus on alert and usecase management via SIEM
- Collaborate and coordinate with the Cyber Threat Intelligence (CTI) and Cyber Monitoring teams to maintain alerts and develop alert and IR runbooks/decision-trees
- Maintain alert metrics and health
- Develop new detections and enhance/standardize existing ones
- Act as escalation point for in-depth investigations
- Maintain usecase inventory and work with CTI for new usecases
- Support attack surface reduction projects/initiatives
- Partner with system owners to ensure the integrity, availability and confidentiality of information residing in corporate databases, workstations, servers or being transmitted over the network
- Provide log analysis, real-time intrusion analysis, incident response, and security monitoring using a wide array of industry leading tools and technologies
- Review requests for changes to systems and evaluate the impact to security
Requirements
- Hands on engineering experience with or relative experience of scripting using python and api calls for threat intel and other forms of automations and ties into Splunk
- Experience with Intrusion Detection Systems
- Experience with Endpoint Anti-Virus, Detection, and Response Tools
- Experience with SIEM Solutions
- Perform Operational Health against EDR (Agents deployed, updated, etc.)
- Experience with Vulnerability Scanning (Agents Deployed, Scanning Scope, Authentication Troubleshooting, Exclusion Management, etc.)
- Experience with Critical Devices
- Experience with industry information security standards and practices, including applicable laws related to data privacy and protection
- Experience with operating platforms, database and sub-system platforms and products
- Ability to handle multiple priorities, while meeting deadlines
- Strong interpersonal skills and a self-starter
Nice-to-haves
- Bachelor's degree in Computer Science or related discipline required
- 5+ years of relevant work experience
- Experience in the financial services industry
- Certified Information Systems Security Professional (CISSP), a plus or other Security certifications are beneficial
Benefits
- Base salary
- Discretionary bonuses
- Profit-sharing
- Healthcare
- Income protection
- Professional development opportunities
- Time off
