Vulnerability Management Information Security Specialist

Company: Fisher Investments
Location: Gresham
Posted on: May 11, 2022

Job Description:

Fisher Investments is growing internationally, and we are looking for an Information Security Specialist to join our team to guide future global growth through strategic solutions and new ideas. You will help support our firm's diverse departments by managing security controls, identifying risks to our organization, and with Technology and Governance teams at an Enterprise level.

The Opportunity:

As an Information Security Specialist you will oversee activities relating to monitoring and responding to security events. You will receive, research, triage and document security events and alerts as they are received. You will support multiple security-related platforms, working with others within the Information Security and IT organization, and other internal departments and external customers/partners.

You will provide support to the incident response, application and networking teams, and work with IT infrastructure, application development, security operations, security audit and end-user sources of information to ensure collection, correlation and reporting, and facilitation of corporate-wide information security events.

You will report to the Information Security Vulnerability Management Team Leader and will be an involved member of the Vulnerability Management and Incident Response Team. This role must display an in-depth understanding of new trends and technologies related to IT security and compliance, and contribute to our security roadmap.

The Day-to-Day:
Work as part of a growing Vulnerability Management team in both an operational and project-based capacity
Monitor and process response for security events
Implement regular incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress
Assist to ensure "Security by Design" philosophy across technology
Stay current with and remain knowledgeable about new threats. Analyze attacker tactics, techniques and procedures (TTPs) from security events across a large network of security devices and end-user systems
Participate in threat modeling collaboration with other members of the security team
Use automation and orchestration solutions to automate repetitive tasks
Help with incident response as events are escalated, including triage, remediation and documentation
Manage security event investigations, partnering with other departments
Follow service level agreements (SLAs), metrics and business scorecard obligations for ticket handling of security incidents and events
Evaluate team procedures, and recommend updates to management
Maintain working knowledge of advanced threat detection as the industry evolves
Review and recommend improved tool usage and workflow, and advanced threat detection methods to mature monitoring and response capabilities
Your Qualifications:
3+ years of experience in cybersecurity experience (or IT coupled with cybersecurity) with at least 2 years in security monitoring and response
Working knowledge of adversary tactics, techniques and procedures (TTPs) and MITRE ATT&CK principles
Experience improving monitoring and response capabilities at scale
Experience translating complex technical concepts into business friendly language
Experienced with one or more scripting languages (e.g., Python, PowerShell)
Experience in Financial Services or other regulated industry with security as a top priority
Technical Skills: Deep skill set and understanding of the Microsoft stack
PaaS experience including Azure and AWS
SIEM Systems
Security Automation and Orchestration Solutions
Network analysis knowledge
OSI model knowledge

Why Fisher Investments:

At Fisher Investments, we work for a bigger purpose: bettering the investment universe. From unmatched service to unique perspectives on investing, it's the people that make the Fisher purpose possible. And we invest in them by offering exceptional benefits like:
100% paid medical, dental and vision premiums for you and your qualifying dependents
A 50% 401(k) match, up to the IRS maximum
20 days of PTO*, plus 9 paid holidays
8 weeks paid Primary Caregiver Parental Leave
Back-up Child Care Program available, offering up to 10 days annually
A cumulative learning and development framework customized for every employee
An award-winning work environment - we're Great Place to Work Certified, and Top Workplace winners from The Oregonian
We take great pride in our inclusive culture. We value the different perspectives and unique skills you bring to the team - it makes us all better. Success at Fisher Investments is motivated by results, a collaborative mindset and a commitment to accomplishing great things - so if you are ready to do that, we are ready for you! Apply today to be a part of a team environment where you make a difference in the lives of people by bettering the investment universe.

*California employees accrue up to 17 days of PTO and 3 days of sick time per year.
FISHER INVESTMENTS IS AN EQUAL OPPORTUNITY EMPLOYER

Keywords: Fisher Investments, Gresham , Vulnerability Management Information Security Specialist, Executive , Gresham, Oregon