• Info Security Analyst III

    Location US-OR-Portland
    Posted Date 1 week ago(5/17/2018 5:42 PM)
    # Positions
    1
    Status
    Full-Time
    Req #
    17283
  • Overview

    If you want to make a positive difference and stand out from the crowd, you’ll fit in at The Standard (www.standard.com). Through our retirement plans and insurance products and services, we help people achieve financial well-being and peace of mind. Come join us and share our passion for serving our customers in a positively different way.

     

    IT at The Standard:

     

    When you work at The Standard, you are part of a company that provides customers financial well-being and peace of mind. As a member of our GRC team, you work side by side with the business and IT, pursuing strategic opportunities for our company. It’s an exciting time with new products, new distribution channels and new customer needs that are driving big investments in technology. At The Standard, we are large enough for big opportunities and small enough for big impact.

    Responsibilities

    The Role:

     

    A hands-on security operations practitioner able to bring meaningful, strategic change in the sphere of information protection with a particular focus on application security in an agile development organization. An effective communicator and a change agent. Sufficiently fluent in application protocol analysis to read and interpret packet traces, web logs and similar; has deep understanding of networking protocols – in particular HTTP- and both how they are used and how they are abused; correlates events with or without a SIEM to assemble the bigger picture, and crafts an efficient and effective response based on breadth of knowledge of application firewalls, software development best security practices, threat modeling, architectural risk analysis and a variety of tools and technologies.

     

    The analyst leverages these skills to monitor applications in server, cloud-based and hybrid deployments to protect the confidentiality, integrity and availability of data and assets on the network and to help steward customer data. The best analysts respond to any incidents or other reactive work with alacrity and aplomb.

     

    The analyst will be responsible for the implementation of virtual patching, naming standards and alerting as well as helping to implement attack-aware applications, dynamic defense and IAST.  Implementation and management of SDLC and configuration management will be essential to success. A good understanding of microservices/containers will be helpful.

     

    The ideal candidates will have experience in task automation through PowerShell, Python, Perl or through SOAP or RESTful APIs.

    Responsibilities:

    • Work in partnership with applications development teams to implement and monitor strong protections using a combination of SDLC best practices, OWASP guidelines, various benchmarks, WAF, DAP and similar.
    • Collect and aggregate information from a wide variety of sources and format them for relevance to our environment while leveraging SIEM or other tools.
    • Create hypotheses for analytics and testing of threat data and test methodically to prove or disprove the hypothesis.
    • Share lessons learned, initial indicators of detection, and opportunities for strengthening detection capabilities.
    • Maintain and enhance the documentation standard for discoveries and reporting of malicious tactics, techniques, and procedures as well as tips and tricks for Smartbooks and established procedures in Run Books.
    • Perform analysis of compensating controls and validate efficacy of existing controls.
    • Recommend security controls and/or corrective actions for mitigating technical and business risk.

    Qualifications

    Qualifications:

     

    • Bachelor or Masters Degree in related field or equivalent experience
    • 5+ years of experience in application security or similar
    • 1+ year of experience in Security Operations or an equivalent function with incident response as a core job function for 25% or more of the role
    • Professional certifications are preferred for this role and candidates are expected to have clearly demonstrated technical acumen through attaining multiple technical certifications in addition to work experience and any published work. Certifications which include a hands-on practicum are weighted more heavily in consideration than those without. Some examples would be a variety of combinations of the following:
      • ICCSP
      • CSSLP/CAP/CCSP/ISSEP
      • CCNP

     

     

     

    Standard Insurance Company, The Standard Life Insurance Company of New York, Standard Retirement Services, Inc., StanCorp Equities, Inc. and StanCorp Investment Advisers, Inc., marketed as The Standard, are Affirmative Action/Equal Opportunity employers. All qualified applicants will receive consideration for employment without regard to race, religion, color, sex, national origin, gender, sexual orientation, age, disability, or veteran status or any other condition protected by federal, state or local law. The Standard offers a drug and alcohol free work environment where possession, manufacture, transfer, offer, use of or being impaired by an illegal substance while on Standard property, or in other cases which the company believes might affect operations, safety or reputation of the company is prohibited. The Standard requires a criminal background investigation, drug test, employment, education and licensing verification as a condition of employment. All employees of The Standard must be bondable.

     

    For more information regarding your Equal Employment Opportunity applicant rights, click  here.

     

    Individuals with disabilities who need assistance or accommodation with the application process should contact HR Direct at 971-321-7871.  This number is only for the use of individuals with disabilities who need accommodation with the application process.  General inquiries about application status will not be addressed.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed