Full-Time

Senior Cyber Threat Analyst

Posted on 11/25/2024

Brown Brothers Harriman

Brown Brothers Harriman

5,001-10,000 employees

Provides private banking and investment services

Venture Capital
Financial Services

Compensation Overview

$95k - $155kAnnually

+ Discretionary Bonuses + Profit-Sharing

Senior

Philadelphia, PA, USA + 1 more

More locations: New York, NY, USA

Category
Cybersecurity
IT & Security
Required Skills
Linux/Unix

You match the following Brown Brothers Harriman's candidate preferences

Employers are more likely to interview you if you match these preferences:

Degree
Experience
Requirements
  • Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field
  • 5+ years of experience in Cyber Threat Intelligence, Security Operations, Incident Response, Threat Hunting, and/or related roles
  • Significant relevant experience (e.g., military) in one or more of the above roles may be considered in lieu of a degree
  • Familiarity with the Intelligence Cycle, Threat Intelligence Platforms, and the MITRE ATT&CK Framework
  • Excellent collaboration and communication skills, particularly in high-stress situations
  • Ability to produce products at the tactical, operational, and strategic level and to articulate findings and assessments effectively
  • A desire to understand and maintain awareness of changes to the cyber threat and risk landscape, including related geopolitical risks that may impact our overall security posture
  • Strong analytical skills and priority management
Responsibilities
  • Perform strategic and operational CTI functions, including producing and disseminating weekly, monthly, and quarterly emails, products, reports, and briefings on the evolving threat landscape to internal stakeholders and senior leaders
  • Monitor open-source, closed-source, and vendor-provided threat intelligence and current events to stay abreast of emerging cyber risks, threats, vulnerabilities, trends, and best practices, and make recommendations for proactive defense strategies and continuous process improvements
  • Enhance threat detection and response capabilities by supporting the development of SOC and incident response (IR) procedures, escalation playbooks, and analyst decision trees
  • Analyze and identify the likely threats targeting the organization through analysis of alert and IOC trends and use this information to build threat intelligence reporting as well as develop threat hunting strategies
  • Develop and maintain threat profiles of relevant threat actors likely to or actively targeting the organization, including a catalog of their tactics, techniques, and procedures (TTPs) aligned with the MITRE ATT&CK framework
  • Assist in SOC and IR escalations and investigations, providing expert guidance and context to ensure IR-related actions are threat-informed, effective, and timely
  • Conduct threat, risk, and vulnerability assessments to provide actionable and prioritized remediation and control enhancement guidance to relevant control and system owners
  • Work with Vulnerability Management to assist with developing and implementing threat-informed patch prioritization efforts, including through direct engagement with systems owners
  • Collaborate with the Red Team and Cyber Incident Management to develop relevant red team assessments, penetration tests, incident response trainings, and tabletop exercises
  • Using a threat-informed approach, plan and perform threat hunting activities by proactively searching across various logs within the Security Incident and Event Management (SIEM) solution and other security tools to identify previously undetected and unknown anomalous and malicious activity and indicators
  • Conduct proactive analysis of alert trends to support intelligence reporting and to identify and prioritize missing or ineffective detection capabilities
  • Perform privileged and general user access reviews across various platforms (Windows, Unix/Linux, RHEL, databases, network components, applications, cloud infrastructure) to identify anomalies and escalate appropriately
  • Collaborate with DLP and other security teams on insider risk initiatives, collaborating and coordinating efforts to identify and mitigate potential threats from within
  • Develop and uphold procedures, standards, and policies for CTI and threat hunting processes
  • Collaborate with relevant stakeholders on security awareness messaging and training
Desired Qualifications
  • Master’s degree in Cybersecurity, Computer Science, Information Technology, or related field
  • Hands-on experience in three or more of the following areas: Security Operations, Incident Response, Cyber Threat Intelligence, Threat Hunting, Detection Engineering, Security Engineering, Insider Threat Analysis, Digital Forensics, All-Source Intelligence, Penetration Testing, Red Teaming, Network Security Management, Cyber Risk Management, Cloud Security, Vulnerability Management
  • Experience in the financial services industry and familiarity with security best practices and frameworks (e.g., FFIEC, NIST CSF, ISO 27001, SWIFT, NYDFS, OWASP)
  • Experience with threat hunting and developing custom detection rules using query languages in a SIEM (e.g., Splunk SPL) and/or other log sources (e.g., Microsoft Advanced Hunting KQL)
  • Experience with perimeter, host, and identity defense and monitoring technologies such as EDR/AV, IDS/IPS, Firewalls, WAF, DLP, UEBA, email gateway, sandboxing, and other security tools and terminology
  • Familiarity with risk scoring, threat analysis, threat hunting, and threat modeling techniques.
  • Experience with Microsoft Defender (MDE, MDI, Defender for Cloud Apps) and Purview Insider Risk Management
  • Relevant certifications such as CISSP, GCIH, GSEC, GCTI, CTIA, CEH, Security+
  • Experience with programming or scripting (Python, SQL, Powershell)
Brown Brothers Harriman

Brown Brothers Harriman

View

Brown Brothers Harriman offers a range of financial services including private banking, wealth management, and investment advisory for both corporate and private clients. Their products and services are designed to help clients manage their wealth, plan for the future, and navigate complex financial landscapes. They provide tailored solutions such as trust services, private client lending, and corporate advisory, ensuring that each client receives personalized attention based on their unique needs. Unlike many competitors, Brown Brothers Harriman emphasizes a collaborative approach, fostering strong relationships with clients and focusing on sustainable performance. Their goal is to align their success with that of their clients, promoting long-term growth and stability in their financial endeavors.

Company Stage

N/A

Total Funding

$254.9M

Headquarters

Boston, Massachusetts

Founded

1818

Simplify Jobs

Simplify's Take

What believers are saying

  • Increased interest in ESG investments drives growth in related ETFs.
  • Strategic focus on regional advisory services with Philadelphia team expansion.
  • Commitment to improving asset management through Transfer Agency platform enhancements.

What critics are saying

  • Short interest in ETFs indicates potential market volatility affecting BBH's holdings.
  • Expansion in Philadelphia may lead to increased operational costs and integration challenges.
  • Investments in niche ETFs expose BBH to volatile cryptocurrency market risks.

What makes Brown Brothers Harriman unique

  • BBH's Transfer Agency platform enhancements improve operational efficiency and client service.
  • Expansion of corporate advisory team in Philadelphia strengthens regional advisory services.
  • Diverse investment portfolio includes ESG, Catholic Values, and Bitcoin Trust ETFs.

Help us improve and share your feedback! Did you find this helpful?

Benefits

Private medical care

Life Insurance

Hybrid Work Options

Professional Development Budget

Wellness Program

Paid Vacation

Flexible Work Hours

Paid Holidays

INACTIVE