IT Security Analyst V - Remote

CSAA Insurance Group (CSAA IG), a AAA insurer, is one of the top personal lines property and casualty insurance groups in the U.S. Our employees proudly live our core beliefs and fulfill our enduring purpose to help members prevent, prepare for and recover from life's uncertainties, and we're proud of the culture we create together. As we commit to progress over perfection, we recognize that every day is an opportunity to be innovative and adaptable. At CSAA IG, we hire good people for a brighter tomorrow. We are actively hiring for a(n) IT Security Analyst V. Join us and support CSAA IG in achieving our goals.

Your Role:

The IT Security Analyst V will play a meaningful role in proactively monitoring, detecting, analyzing and responding to security events as well as providing senior support and guidance to all team members. The ideal candidate is a highly technical security expert with experience in various areas such as incident response, threat monitoring and analysis, threat intelligence, threat hunting, and security tooling across cloud and on-prem environments.

The team is responsible for developing intelligence on advanced cyber threats to our services and our customers. We collect indicators and intelligence from a variety of internal and external sources and use that information to develop an understanding of high-grade actors and their tools, techniques, and procedures. We then bring to bear that understanding to purposefully identify and mitigate malicious activity.

Your work:

The successful candidate will be required to analyze indicators to generate actionable intelligence and insight into current threats. They will help enhance our capabilities by formulating new analytic techniques and working across teams to drive the supporting capabilities.

• Participate and lead incident response, triage, and investigations for security events
• Perform systematic analysis of security events using IOCs to resolve presence of malicious activity, potential threats, and vulnerabilities.
• Malware reverse engineering and analysis to evaluate and analyze complex malicious code using tools, including dissemblers, debuggers, hex editors, un-packers, virtual machines, and network sniffers.
• Conduct post-incident analysis to identify root causes and recommend preventative measures
• Create incident reports and documentation for stakeholders.
• Monitor security tools and platforms for security events and alerts (SIEM, EDR, CNAP, and more)
• Perform Threat hunting proactively to identify threats and assess the state of security controls.
• Dedicate efforts to staying informed on cyber threats and standard processes to consistently enhance Security Operations Center capabilities
• Lead Security Operations Center project efforts and coordinate with other cyber security groups to elevate the organization's security posture
• Identify opportunities to improve security processes and technologies
• Participate in on-call rotation to respond to critical security events

Required Experience, Education and Skills:

• 8 years of IT/Security experience
• Bachelor's or equivalent experience in Computer Science, Information Systems, or other related field.
• Knowledge of current and emerging technologies and tactics used within a Security Operations Center and how they can be applied to improve efficiency and effectiveness
• Understanding of the information security industry and the current threat landscape
• Experience with security tools such as SIEM, EDR, Email Scanning, CNAP, and NDR.
• Experience with cloud infrastructure and technology
• Experience performing forensic analysis of logs and packet captures

What would make us excited about you?

• A team-focused mentality with the proven ability to work effectively with diverse stakeholders.
• An ability to communicate complex and technical issues to diverse audiences up to company executives, orally and in writing, in an easily understood, authoritative, and actionable manner
• Preferred Qualifications: 5 years direct information security experience
• Demonstrated technical expertise in existing security and IT systems and an ability to keep pace with changing security and IT technologies.
• Actively shapes our company culture (e.g., supporting employee resource groups, mentoring employees, volunteering, joining cross-functional projects)
• Champions our cultural norms (e.g., willing to have cameras when it matters: helping onboard new team members, building relationships, etc.)
• Demonstrates a company ownership mindset, thinking beyond boundaries of their own area
• Travels as needed for role, including divisional / team meetings and other in-person meetings
• Fulfills business needs, which may include investing extra time, helping other teams, etc

CSAA IG Careers

At CSAA IG, we’re proudly devoted to protecting our customers, our employees, our communities, and the world at large. We are on a climate journey to continue to do better for our people, our business, and our planet. Taking bold action and leading by example. We are citizens for a changing world, and we continually change to meet it.

Join us if you…

• BELIEVE in a mission focused on building a community of service, rooted in inclusion and belonging.
• COMMIT to being there for our customers and employees.
• CREATE a sense of purpose that serves the greater good through innovation.

Recognition: We offer a total compensation package, performance bonus, 401(k) with a company match, and so much more! Read more about what we offer and what it is like to be a part of our dynamic team at https://careers.csaa-insurance.aaa.com/us/en/benefits

In most cases, you will have the opportunity to choose your preferred working location from the following options when you join CSAA IG: remote, hybrid, or in-person. Submit your application to be considered. We communicate via email, so check your inbox and/or your spam folder to ensure you don’t miss important updates from us.

If a reasonable accommodation is needed to participate in the job application or interview process, please contact TalentAcquisition@csaa.com

As part of our values, we are committed to supporting inclusion and diversity at CSAA IG. We actively celebrate colleagues’ different abilities, sexual orientation, ethnicity, and gender. Everyone is welcome and supported in their development at all stages in their journey with us.

We are always recruiting, retaining, and promoting a diverse mix of colleagues who are representative of the U.S. workforce. The diversity of our team fosters a broad range of ideas and enables us to design and deliver a wide array of products to meet customers’ evolving needs.

CSAA Insurance Group is an equal opportunity employer.

#HP_RX

#LI-JM1