Overview

Senior Systems Analyst role at Wellington Management.About Us

Wellington Management offers comprehensive investment management capabilities that span nearly all segments of the global capital markets. Our investment solutions, tailored to the unique return and risk objectives of institutional clients in more than 60 countries, draw on a robust body of proprietary research and a collaborative culture that encourages independent thought and healthy debate. As a private partnership, our ownership structure fosters a long-term view that aligns our perspectives with those of our clients.The Role

Wellington Management is seeking a Senior Cybersecurity Analyst with an investigative mindset who is passionate about finding and stopping cyber threats. This role requires someone who can bring their expertise and innovative solutions to our global team and who has the technical and interpersonal skills to independently lead investigations and help design and implement improved controls and processes. You will play a crucial role in combatting past, present, and future threats while working with technology and business partners to build a cyber-resilient workforce.Job Overview

The Cyber Defense Team’s primary mission is to understand “the normal” and to continuously seek out the abnormal. As a Cyber Defense Team Senior Analyst, you will work closely with business and technology teams to qualify and respond to threats, understand and refine processes and controls, and serve as an escalation point for cyber incidents. Responsibilities include threat hunting guided by internal and external intelligence, owning team process improvements, mentorship, and staying current with industry technology and threat advancements. You will contribute to maintaining a secure environment for clients and the firm.Responsibilities

Maintain core competency in event analysis and serve as an escalation point for noteworthy investigations and critical incidents.Develop new capabilities within the program aligned with our attack surface, including detection enhancements and tuning of procedures and technologies.Develop dashboards, direct alerting, risk-based alerting, reports, and other artifacts in Splunk.Maintain deep knowledge of the cyber security field and present at internal threat intelligence briefings.Perform active threat hunting using threat intelligence and other inputs.Collaborate with the Attack Surface Management Team to build response playbooks for emerging vulnerabilities.Interface with technical and non-technical users to conduct interviews, gather forensic artifacts, and understand business processes.Engage with other teams to build platform-specific alerting and advocate for configuration or technology improvements.Develop and improve the Cyber Incident Response Plan and advocate for the program.Participate in on-call rotation for escalated security events.Qualifications

Experience in Security Operations, CSIRT, or similar roles with a passion for cybersecurity.Experience building functions of a Cyber Defense Team (e.g., insider risk, threat intelligence, breach/attack simulation) or similar programs.Strong understanding of packet, file, and log analysis.Familiarity with security infrastructure tools (firewalls, IDS/IPS, proxies, email controls, data loss prevention, EDR, SIEM such as Splunk).Strong understanding of networking fundamentals and analysis tools for network activity.Mentorship and knowledge-sharing experience.Preferred: Credentials such as CISSP, CEH, GCIH, OSCP, or similar.Preferred: Working knowledge of Amazon AWS services and secure configurations.Preferred: Experience with Microsoft cloud technologies (Azure AD, Office 365, Defender 365).Not sure you meet 100% of our qualifications? We encourage you to apply and review your background. We are dedicated to building a diversified workforce and considering a broad array of candidates with varied skills and experiences.As an equal opportunity employer, Wellington Management ensures that all qualified applicants receive equal consideration for employment without regard to race, color, sex, sexual orientation, gender identity, gender expression, religion, creed, national origin, age, disability, medical condition, citizenship, marital status, veteran or military status, genetic information, or any other characteristic protected by applicable law. If you require accommodation to apply, please email GMWTalentOperations@wellington.comWe believe that in-person interactions energize our community. Our employees work from offices 4 days a week with flexibility to work remotely 1 day a week.

#J-18808-Ljbffr