Starr Insurance Companies is a leading insurance and investment organization, providing commercial property and casualty insurance, including travel and accident coverage, to almost every imaginable business and industry in virtually every part of the world.
Cornelius Vander Starr established his first insurance company in Shanghai, China in 1919. Today, we are one of the world’s fastest growing insurance organizations, capable of writing in 128 countries on 6 continents.
Information Security – SOC Analyst
Description
Starr’s IT Security Team is seeking a detail-oriented & proactive SOC Analyst to join our Security team. The primary responsibility of this role is to manage & resolve security-related tickets in our queue, ensuring the protection of our organization’s intellectual property, users, & assets. The ideal candidate will have a strong understanding of security principles, excellent problem-solving skills, & the ability to work efficiently in a fast-paced environment.
Specific Skills & Responsibilities
Ticket Management
- Monitor Ticket Queue: Continuously monitor the security ticket queue to identify new tickets & track the status of existing tickets.
- Ticket Triage: Assess & categorize tickets based on severity, urgency, & impact to the organization.
- Ticket Resolution: Investigate & resolve security-related tickets, including but not limited to: malware infections, phishing attempts, email traces, unauthorized access, web site access, & other security incidents.
- Escalation: Identify tickets that require advanced expertise or additional resources & escalate them to senior security staff or other relevant departments as necessary. Ensure proper handoff & follow-up on escalated tickets to ensure timely resolution.
- Documentation: Maintain detailed & accurate records of all actions taken to resolve tickets, including steps taken, tools used, & outcomes achieved. Ensure all ticket updates are logged in the ticketing system.
- Communication: Provide regular updates to stakeholders on the status of their tickets. Communicate clearly & effectively with users to gather necessary information & provide guidance on security best practices.
Incident Response
- Investigate & respond to security incidents & alerts generated by security tools & systems.
- Perform root cause analysis to identify the source of security issues & recommend corrective actions.
- Collaborate with other IT & security team members to contain & remediate incidents.
Security Tools & Systems
- Experience with any of the following technologies greatly preferred:
- Splunk Log & Event Platform (basic query & report building)
- Network Access Control
- Vulnerability Scanning
- Advanced Detection & Response Endpoint Agents
- Network Packet Capture & Event Analysis
- Threat Intelligence Platforms
- Microsoft Patching & Device Management Platforms
- Experience with Splunk SOAR a plus
- Experience with scripting, (Batch, PowerShell, Python, etc..) a plus
- Assist in the configuration and maintenance of security tools to ensure optimal performance.
Compliance & Reporting
- Ensure compliance with organizational policies, standards, & regulatory requirements.
- Generate & review security reports, providing insights & recommendations to management.
- Participate in security audits & assessments as required.
Continuous Improvement
- Identify opportunities for improving security processes & workflows.
- Participate in security training & awareness programs to stay current with industry best practices.
- Contribute to the development and maintenance of security documentation, including policies, procedures, & guidelines.
Starr is an equal opportunity employer, which means we'll consider all suitably qualified applicants regardless of gender identity or expression, ethnic origin, nationality, religion or beliefs, age, sexual orientation, disability status or any other protected characteristic. We recruit and develop our people based on merit and we're committed to creating an inclusive environment for all employees. We offer first class training and development opportunities to all employees. Our aim is to grow our own talent and bring out the best in people.
