SelectQuote
IT Security Analyst II
SelectQuote, Leawood, Kansas, United States
Company Overview:
More than 35 years ago, SelectQuote was founded on one core promise:
to help our customers protect the people they value most.
We pioneered the way consumers shopped for term life insurance, and now, we also help people find home insurance, auto insurance, senior health insurance and more. Our quick and easy process saves consumers both time and money, and today, more than 2 million families trust us to help them with their insurance needs. But what truly sets us apart is our people, and the opportunities to grow your career with SelectQuote are unmatched. About the Role: The IT Security Analyst II will be an experienced security practitioner responsible for the operations and administration of enterprise security solutions and processes. As a Tier 2 Security Engineer you will play a critical role in an integrated enterprise-wide security team that includes 24x7 SOC operations. In this role you will serve as the Subject Matter Expert (SME) for SIEM configuration and vulnerability management systems ensuring the seamless operation and continuous enhancement of these critical security functions. You will be responsible for maintaining and fine-tuning SIEM data connections log collectors and alerts while also driving comprehensive vulnerability management through targeted scans and detailed reporting. Supervisory Responsibilities: This position has no direct supervisory responsibilities. Essential Duties and Responsibilities: Serve as the SME for SIEM configuration ensuring optimal data connections and log collection from various sources Fine-tune alerts and dashboards to reduce noise and improve the SOC's response effectiveness Continuously improve SIEM use cases and correlation rules to enhance detection capabilities Perform vulnerability scans analyze results and collaborate with IT teams to prioritize remediation efforts Fine-tune scan settings to optimize performance and coverage without impacting network or system performance Generate detailed reports that highlight vulnerabilities and track remediation progress Continuously improve the security posture of client-facing applications by identifying risks and implementing appropriate mitigation strategies Conduct periodic security scanning and internal security testing to identify and remediate potential security breaches Conduct advanced adversary analysis SIEM analysis and deep dives using blue-team and red-team pen-test tools to identify and address security vulnerabilities Collaborate with SOC analysts to analyze and respond to threats in real-time Develop and document incident response run-books with detailed methods and procedures for the SOC team Participate in incident response activities providing expertise and guidance during security incidents Generate detailed reports for business managers and system owners to evaluate the effectiveness of security policies and recommend improvements Provide regular updates to senior management on the status of security systems vulnerabilities and incident response activities Skills/Abilities: Ability to analyze complex security issues and recommend effective solutions Precision in configuring and maintaining security systems Strong ability to troubleshoot and resolve security issues Work effectively with cross-functional teams to improve security posture Ability to adjust to rapidly changing security landscapes and emerging threats Expected to work under own initiative prioritize own work and meet agreed timescales and deliverables Education and Experience: 3+ years of experience in a security or engineering related role Hands-on experience with SIEM tools (e.g. Splunk Rapid 7) and vulnerability management platforms (e.g. Qualys Rapid 7) preferred Strong knowledge of security principles techniques and technologies Experience in conducting adversary analysis and using blue-team/red-team tools Excellent communication skills with the ability to explain complex technical concepts to non-technical stakeholders Certificates/Licenses/Registration Relevant certifications (e.g. CISSP CEH GCIH) are preferred Physical Requirements: Work is performed indoors with potential for exposure to safety and health hazards related to office work. Could periodically travel to other office and operational sites. The noise level in the work environment is usually moderate. Prolonged periods of sitting at a desk and working on a computer. SelectQuote Core Values: S ervice: We create positive customer experiences. E ntrepreneurship: We create innovate & take risks. L eadership: We build & invest in high-performing teams. Empowerment: We embrace a changing environment. C ourage: We challenge the status quo & drive continuous improvement. T eamwork: We help support & celebrate each other. Disclaimer : The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required.
More than 35 years ago, SelectQuote was founded on one core promise:
to help our customers protect the people they value most.
We pioneered the way consumers shopped for term life insurance, and now, we also help people find home insurance, auto insurance, senior health insurance and more. Our quick and easy process saves consumers both time and money, and today, more than 2 million families trust us to help them with their insurance needs. But what truly sets us apart is our people, and the opportunities to grow your career with SelectQuote are unmatched. About the Role: The IT Security Analyst II will be an experienced security practitioner responsible for the operations and administration of enterprise security solutions and processes. As a Tier 2 Security Engineer you will play a critical role in an integrated enterprise-wide security team that includes 24x7 SOC operations. In this role you will serve as the Subject Matter Expert (SME) for SIEM configuration and vulnerability management systems ensuring the seamless operation and continuous enhancement of these critical security functions. You will be responsible for maintaining and fine-tuning SIEM data connections log collectors and alerts while also driving comprehensive vulnerability management through targeted scans and detailed reporting. Supervisory Responsibilities: This position has no direct supervisory responsibilities. Essential Duties and Responsibilities: Serve as the SME for SIEM configuration ensuring optimal data connections and log collection from various sources Fine-tune alerts and dashboards to reduce noise and improve the SOC's response effectiveness Continuously improve SIEM use cases and correlation rules to enhance detection capabilities Perform vulnerability scans analyze results and collaborate with IT teams to prioritize remediation efforts Fine-tune scan settings to optimize performance and coverage without impacting network or system performance Generate detailed reports that highlight vulnerabilities and track remediation progress Continuously improve the security posture of client-facing applications by identifying risks and implementing appropriate mitigation strategies Conduct periodic security scanning and internal security testing to identify and remediate potential security breaches Conduct advanced adversary analysis SIEM analysis and deep dives using blue-team and red-team pen-test tools to identify and address security vulnerabilities Collaborate with SOC analysts to analyze and respond to threats in real-time Develop and document incident response run-books with detailed methods and procedures for the SOC team Participate in incident response activities providing expertise and guidance during security incidents Generate detailed reports for business managers and system owners to evaluate the effectiveness of security policies and recommend improvements Provide regular updates to senior management on the status of security systems vulnerabilities and incident response activities Skills/Abilities: Ability to analyze complex security issues and recommend effective solutions Precision in configuring and maintaining security systems Strong ability to troubleshoot and resolve security issues Work effectively with cross-functional teams to improve security posture Ability to adjust to rapidly changing security landscapes and emerging threats Expected to work under own initiative prioritize own work and meet agreed timescales and deliverables Education and Experience: 3+ years of experience in a security or engineering related role Hands-on experience with SIEM tools (e.g. Splunk Rapid 7) and vulnerability management platforms (e.g. Qualys Rapid 7) preferred Strong knowledge of security principles techniques and technologies Experience in conducting adversary analysis and using blue-team/red-team tools Excellent communication skills with the ability to explain complex technical concepts to non-technical stakeholders Certificates/Licenses/Registration Relevant certifications (e.g. CISSP CEH GCIH) are preferred Physical Requirements: Work is performed indoors with potential for exposure to safety and health hazards related to office work. Could periodically travel to other office and operational sites. The noise level in the work environment is usually moderate. Prolonged periods of sitting at a desk and working on a computer. SelectQuote Core Values: S ervice: We create positive customer experiences. E ntrepreneurship: We create innovate & take risks. L eadership: We build & invest in high-performing teams. Empowerment: We embrace a changing environment. C ourage: We challenge the status quo & drive continuous improvement. T eamwork: We help support & celebrate each other. Disclaimer : The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required.