Ameriprise Financial
Cyber Security Engineer
Ameriprise Financial, Minneapolis, Minnesota, United States, 55400
The Cyber Security Engineer is part of the Ameriprise Cyber Security team that is responsible for 24x7 monitoring, threat intelligence, counter measure development(Counter Threat), and incident handling of Ameriprise cyber threats. Working as a team, leading and learning to effectively leverage security controls/tools to best managed Ameriprise cyber risks. A responsibility also includes weekly on-call rotation. Key Responsibilities Incident Detect/Response Analyze security events from various sources and determine if it qualifies as a legitimate security incident. Create scenarios/rules to enable detection tools to look for indicator of compromise on Ameriprise assets. Respond to and drive remediation of critical incidents according to standard operating procedures (SOP). Initiate escalation procedures to counteract potential threats/vulnerabilities. Ensure incidents are handled in a manner that is consistent with policy and procedure. Coordinate communication activities in support of Incident Response (IR) processes. Interface with technical personnel from various disciplines to rapidly resolve critical issues. Create recommendation to the leaderships of incidents and propose effective response and/or countermeasures for containment. Participate in knowledge sharing with other security engineers and partner. Identify, document, and recommend new or revised processes, policies, and SOPs. Perform incident investigations, determining the cause of the security incident while preserving evidence for chain of custody with internal and external partners. Perform malware analysis/reverse engineering with approved tools in Ameriprise environments. Threat Intelligence Assessment Assist, and/or perform, comprehensive threat intelligence assessments. This may include providing reporting on assessment results as well as risk mitigation and remediation recommendations and plans. Keep current with emerging security trends, issues and alerts. Communicate known security risks and solutions to leadership in order to mitigate risks to business and technology partners as needed. Process Champion & Counter Measure Development Drive continuous improvement of processes and procedures to improve analysis of events, event handling activities, develop counter measure to prevent, detect, or investigate ever-changing threats and support overall Cyber Security services. Streamline, develop repeatable process, with automation or semi-automation to ensure quality, effectiveness and efficiency (i.e. scripting, process modification). Develop threat scenarios, and test cases to measure security tools effectiveness in prevention, detection and investigation capabilities. Own and drive a real-time alert rules creation and modification process. Required Qualifications Bachelors degree in Computer Science, MIS, Technology Forensics, or related technical field; or equivalent work experience. 5-7 years of relevant experience required. Demonstrated understanding of security related technologies and practices, including: authentication and authorization systems, endpoint protection, encryption, segmentation strategies, vulnerability management, secure remote access, and firewalls. Strong/diverse technical background in enterprise networking, AWS, MDC, firewall, storage options, server infrastructure, operating systems, database technologies, and desktop operating systems and security. Preferred Qualifications Prior experience using cloud infrastructure (AWS, Azure, and/or GCP) Demonstrated experience contributing and collaborating effectively as an informal leader in a high-functioning team. Effective organizational, analytical and independent problem solving skills. Successful experience coordinating and completing multiple tasks within established and changing deadlines. Strong presentation skills with experience addressing and interfacing with executives and technical staff. About Our Company We're a diversified financial services leader with more than $1 trilli n in assets under management and administration as of 2022. Our team of 20,000 people in more than 20 countries, advise and manage assets and income of more than 2 million individual, small business and institutional clients. We are a longstanding leader in financial planning and advice, a global asset manager and an insurer. Our unwavering focus on our clients and strong financial foundation connects each of our unique businesses - Ameriprise Financial, Columbia Threadneedle Investments and RiverSource Insurance and Annuities. Here, we foster meaningful careers, invest in the future, and make a difference for clients, institutions and communities around the world. Ameriprise Financial is an equal opportunity employer. We consider all qualified applicants without regard to race, color, religion, sex, national origin, genetic information, age, sexual orientation, citizenship, gender identity, disability, veteran status, marital status, family status or any other basis prohibited by law. Full-Time/Part-Time Full time Exempt/Non-Exempt Exempt Job Family Group Technology Line of Business TECH Technology