SelectQuote
IT Security Analyst II
SelectQuote, Leawood, Kansas, United States,
Company Overview:
More than 35 years ago, SelectQuote was founded on one core promise:
to help our customers protect the people they value most.
We pioneered the way consumers shopped for term life insurance, and now, we also help people find home insurance, auto insurance, senior health insurance and more. Our quick and easy process saves consumers both time and money, and today, more than 2 million families trust us to help them with their insurance needs.But what truly sets us apart is our people, and the opportunities to grow your career with SelectQuote are unmatched.About the Role:The IT Security Analyst II will be an experienced security practitioner responsible for the operations and administration of enterprise security solutions and processes. As a Tier 2 Security Engineer you will play a critical role in an integrated enterprise-wide security team that includes 24x7 SOC operations. In this role you will serve as the Subject Matter Expert (SME) for SIEM configuration and vulnerability management systems ensuring the seamless operation and continuous enhancement of these critical security functions. You will be responsible for maintaining and fine-tuning SIEM data connections log collectors and alerts while also driving comprehensive vulnerability management through targeted scans and detailed reporting.Supervisory Responsibilities:This position has no direct supervisory responsibilities.Essential Duties and Responsibilities:Serve as the SME for SIEM configuration ensuring optimal data connections and log collection from various sourcesFine-tune alerts and dashboards to reduce noise and improve the SOC's response effectivenessContinuously improve SIEM use cases and correlation rules to enhance detection capabilitiesPerform vulnerability scans analyze results and collaborate with IT teams to prioritize remediation effortsFine-tune scan settings to optimize performance and coverage without impacting network or system performanceGenerate detailed reports that highlight vulnerabilities and track remediation progressContinuously improve the security posture of client-facing applications by identifying risks and implementing appropriate mitigation strategiesConduct periodic security scanning and internal security testing to identify and remediate potential security breachesConduct advanced adversary analysis SIEM analysis and deep dives using blue-team and red-team pen-test tools to identify and address security vulnerabilitiesCollaborate with SOC analysts to analyze and respond to threats in real-timeDevelop and document incident response run-books with detailed methods and procedures for the SOC teamParticipate in incident response activities providing expertise and guidance during security incidentsGenerate detailed reports for business managers and system owners to evaluate the effectiveness of security policies and recommend improvementsProvide regular updates to senior management on the status of security systems vulnerabilities and incident response activitiesSkills/Abilities:Ability to analyze complex security issues and recommend effective solutionsPrecision in configuring and maintaining security systemsStrong ability to troubleshoot and resolve security issuesWork effectively with cross-functional teams to improve security postureAbility to adjust to rapidly changing security landscapes and emerging threatsExpected to work under own initiative prioritize own work and meet agreed timescales and deliverablesEducation and Experience:3+ years of experience in a security or engineering related roleHands-on experience with SIEM tools (e.g. Splunk Rapid 7) and vulnerability management platforms (e.g. Qualys Rapid 7) preferredStrong knowledge of security principles techniques and technologiesExperience in conducting adversary analysis and using blue-team/red-team toolsExcellent communication skills with the ability to explain complex technical concepts to non-technical stakeholdersCertificates/Licenses/RegistrationRelevant certifications (e.g. CISSP CEH GCIH) are preferredPhysical Requirements:Work is performed indoors with potential for exposure to safety and health hazards related to office work. Could periodically travel to other office and operational sites. The noise level in the work environment is usually moderate.Prolonged periods of sitting at a desk and working on a computer.SelectQuote Core Values:S ervice: We create positive customer experiences.E ntrepreneurship: We create innovate & take risks.L eadership: We build & invest in high-performing teams. Empowerment: We embrace a changing environment.C ourage: We challenge the status quo & drive continuous improvement.T eamwork: We help support & celebrate each other.Disclaimer : The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required.
More than 35 years ago, SelectQuote was founded on one core promise:
to help our customers protect the people they value most.
We pioneered the way consumers shopped for term life insurance, and now, we also help people find home insurance, auto insurance, senior health insurance and more. Our quick and easy process saves consumers both time and money, and today, more than 2 million families trust us to help them with their insurance needs.But what truly sets us apart is our people, and the opportunities to grow your career with SelectQuote are unmatched.About the Role:The IT Security Analyst II will be an experienced security practitioner responsible for the operations and administration of enterprise security solutions and processes. As a Tier 2 Security Engineer you will play a critical role in an integrated enterprise-wide security team that includes 24x7 SOC operations. In this role you will serve as the Subject Matter Expert (SME) for SIEM configuration and vulnerability management systems ensuring the seamless operation and continuous enhancement of these critical security functions. You will be responsible for maintaining and fine-tuning SIEM data connections log collectors and alerts while also driving comprehensive vulnerability management through targeted scans and detailed reporting.Supervisory Responsibilities:This position has no direct supervisory responsibilities.Essential Duties and Responsibilities:Serve as the SME for SIEM configuration ensuring optimal data connections and log collection from various sourcesFine-tune alerts and dashboards to reduce noise and improve the SOC's response effectivenessContinuously improve SIEM use cases and correlation rules to enhance detection capabilitiesPerform vulnerability scans analyze results and collaborate with IT teams to prioritize remediation effortsFine-tune scan settings to optimize performance and coverage without impacting network or system performanceGenerate detailed reports that highlight vulnerabilities and track remediation progressContinuously improve the security posture of client-facing applications by identifying risks and implementing appropriate mitigation strategiesConduct periodic security scanning and internal security testing to identify and remediate potential security breachesConduct advanced adversary analysis SIEM analysis and deep dives using blue-team and red-team pen-test tools to identify and address security vulnerabilitiesCollaborate with SOC analysts to analyze and respond to threats in real-timeDevelop and document incident response run-books with detailed methods and procedures for the SOC teamParticipate in incident response activities providing expertise and guidance during security incidentsGenerate detailed reports for business managers and system owners to evaluate the effectiveness of security policies and recommend improvementsProvide regular updates to senior management on the status of security systems vulnerabilities and incident response activitiesSkills/Abilities:Ability to analyze complex security issues and recommend effective solutionsPrecision in configuring and maintaining security systemsStrong ability to troubleshoot and resolve security issuesWork effectively with cross-functional teams to improve security postureAbility to adjust to rapidly changing security landscapes and emerging threatsExpected to work under own initiative prioritize own work and meet agreed timescales and deliverablesEducation and Experience:3+ years of experience in a security or engineering related roleHands-on experience with SIEM tools (e.g. Splunk Rapid 7) and vulnerability management platforms (e.g. Qualys Rapid 7) preferredStrong knowledge of security principles techniques and technologiesExperience in conducting adversary analysis and using blue-team/red-team toolsExcellent communication skills with the ability to explain complex technical concepts to non-technical stakeholdersCertificates/Licenses/RegistrationRelevant certifications (e.g. CISSP CEH GCIH) are preferredPhysical Requirements:Work is performed indoors with potential for exposure to safety and health hazards related to office work. Could periodically travel to other office and operational sites. The noise level in the work environment is usually moderate.Prolonged periods of sitting at a desk and working on a computer.SelectQuote Core Values:S ervice: We create positive customer experiences.E ntrepreneurship: We create innovate & take risks.L eadership: We build & invest in high-performing teams. Empowerment: We embrace a changing environment.C ourage: We challenge the status quo & drive continuous improvement.T eamwork: We help support & celebrate each other.Disclaimer : The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required.