Technical Architect - Cyber Threat Intelligence & Hunt - Chestnutridge Missouri

Company: Edward Jones
Location: Chestnutridge, Missouri
Posted On: 04/23/2024

Join a financial services firm where your contributions are valued. Edward Jones is a Fortune 500 - company where people come first. With over 8 million clients and 19,000 financial advisors across the U.S. and Canada, we're proud to be privately-owned, placing the focus on our clients rather than shareholder returns.Behind everything we do is our purpose: We partner for positive impact to improve the lives of our clients and colleagues, and together, better our communities and society. We are an innovative, flexible, and inclusive organization that attracts, develops, and inspires performance excellence and a sense of belonging. People are at the center of our partnership. Edward Jones associates are seen, heard, respected, and supported. This is what we believe makes us the best place to start or build your career. View our Purpose, Inclusion and Citizenship Report.1Fortune 500, published June 2023, data as of December 2022. Compensation provided for using, not obtaining, the rating. Team OverviewThreat Management consists of detection engineers and cyber threat intelligence analysts whose mission is to provide actionable intelligence and utilize enhanced threat detection techniques to remediate coverage gaps and improve the security posture of the Firm. We sit in the CISO's security organization and are looking for an experienced security professional to join our mostly remote team. The position is fully remote (within the US or Canada) and the Firm funds an annual trip to US headquarters to allow teams to bond in person and develop better rapport with local onsite teams.What You'll Do

Leverage your expertise to prioritize and conduct data discovery and baselining of the Firm's environment; continue discovery efforts in alignment with team priorities to identify telemetry data gaps and needs for detection engineering efforts, CTI, and investigations.Be responsible to Team Leader for designing and documenting data flows, visibility gaps, and processes.Perform ad-doc data deep dives based on intelligence driven leads and effectively communicate findings.Analyze and investigate security logging to identify trends and anomalies that may result in detection opportunities for the detection engineers and/or analysis trends for CTI monitoring.Assist and mentor teammates in query deep dives, technical investigation principals, dashboard creation, and data awareness regarding identified trends and anomalies.Work with platform owners and the Engineering team to identify telemetry for Threat Management and Response needs in support of new business platforms and security tooling.Prioritize security improvement suggestions from the team based on your identification of telemetry needs and gaps, and advocate for solutions by working with Risk and other teams to bring requests to fruition.Assist with designing, developing, and maintaining automation as needed for the team using PowerBI, Python, and Jupyter. What Experience You'll Need
Bachelor's degree in Computer Science, Engineering, or Information Systems or related field preferred; or equivalent related work experience.Minimum of 10 years Information Systems Security experience, with at least 5 years in working in Threat Detection/Cyber Threat Intel/Response.Experience with incorporating tactical and operational threat intelligence in detection prioritization.Successfully mentoring junior members of a team. Strong understanding of the threat landscape and corresponding risk, along with ability to prioritize areas of attack surface for investigation.Experience with Jupyter notebooks and use cases for Threat Intelligence and Detection, link analysis, and OSINT research.Experience with log analysis from multiple sources (e.g., firewall, IDS, proxy, authentication, endpoints, etc.) to identify trends and anomalies indicative of malicious activity and advanced query writing in at least one SIEM; bonus for KQL.Strong interpersonal and organizational skills and demonstrable ability to prioritize tasks and serve as a leader for enterprise security initiatives.Candidates that live within in a commutable distance from our Tempe, AZ and St. Louis, MO home office locations are expected to work in the office three days per week, with preference for Tuesday through Thursday.At Edward Jones, we are building a place where everyone feels like they belong. We're proud of our associates' contributions to the firm and the recognitions we have received.Check out our U.S. awards and accolades: Insights & Information Blog Postings about Edward JonesCheck out our Canadian awards and accolades: Insights & Information Blog Postings about Edward JonesEdward Jones does not discriminate on the basis of race, color, gender, religion, national origin, age, disability, sexual orientation, pregnancy, veteran status, genetic information or any other basis prohibited by applicable law.At Edward Jones, we value and respect our associates and their contributions, and we recognize individual efforts through a rewards program that promotes a long-term career, financial security and well-being. Visit our career site to learn more about our total compensation approach, which in addition to base salary, typically includes benefits, bonuses and profit sharing. The salary range for this role is based on national data and actual pay is based on skills, experience, education, and other relevant factors for a potential new associate:Salary: $113810 - $193785Category: Headquarters More...

    

---

Register an account with us and set up job agents! We'll email you immediately when jobs like this are posted on our site.

---