Information Security Analyst
About the role
The Opportunity: As a Mastery Level Security Operations Center (SOC) analyst, you'll join a growing team of highly technical Cybersecurity analysts passionate about protecting MassMutual's assets and customers. You'll work in close collaboration with fellow security analysts, engineers, and other IT security specialists.
Responsibilities
- Perform advanced Malware analysis and extract Indicators of Compromise (IOCs) to feed our Threat Intelligence Platform
- Develop and deploy SOAR automations accelerating internal SOC processes
- Work closely with our Data Science Team to build Agentic capabilities
- Work collaboratively with our Security Intelligence team to enrich and enhance prevention, detection, and threat hunting capabilities
- Optimize alerting platforms through rule development and tuning of existing alerting logic
- Act as team lead, mentor Junior Analysts, be a go-to escalation point for other SOC analysts
- Perform QA responsibilities ensuring thorough analysis and documentation
Requirements
- Bachelor's Degree or equivalent professional experience
- 8 + years’ experience working in a Security Operation Center or similar cyber security technical role
- 1 + year’s experience working with Artificial Intelligence models to enhance SOC capabilities
- 2 + years experience writing in Python
- 2 + years experience working with SOAR platforms
- Relevant Cyber Security GIAC Certification such as CISM, CEH, GCIH, GCDA or similar
- Able to support off hours escalations
Ideal Qualifications
- Bachelor’s degree in cyber security
- Certifications: CISSP, CISM, CISA, GCIH, GCFR
- Knowledge of and practical experience with the MITRE ATT&CK framework
- Mastery of Python, PowerShell or other scripting languages
- Experience working with a SIEM platform mining large datasets
- Understanding of web application vulnerabilities including XSS, CSRF, SQL Injection, command injection and serialization attacks
- Interest in continuous learning and a passion for Cybersecurity
- Experience and confidence communicating with and presenting to senior leadership
- Strong analytical and problem-solving skills
- Advanced technical expertise developing security automations
- In depth knowledge of operating systems process relationships and file structures (Windows, Mac, Linux)
- Functional experience developing new detections for alerting platforms
- Expert level knowledge of Cybersecurity attack and defense techniques
- Strong understanding of web authentication flows such as SAML and OAUTH
- In depth knowledge of cloud environments such as AWS and Azure
- Deep understanding of TCP/IP, DNS, HTTP/S, and packet-level analysis
- Understanding of living off the land techniques used by adversaries, using tools such as PowerShell, WMIC, Task Scheduler, Windows Registry etc.
What You Can Expect at MassMutual
Clear areas of ownership and accountability, with work that connects directly to company and customer outcomes
A collaborative environment where perspectives are welcomed
Access to learning, development, and internal networks that support continuous growth and skill-building over time
Employee-led communities and forums that foster connection, learning, and inclusion across the organization
A culture grounded in integrity, responsibility, and stewardship—supported by a company with a strong legacy and a future-focused mindset
Schedule
Hybrid model with at least three days per week in-person and remote Fridays, company-wide remote weeks, and a bank of flexible remote weeks to use throughout the year.
Benefits
- Medical, dental, 401(k)
- Generous vacation time
- Three paid days for volunteering
- $1,250 annual Well-Being Wallet
- Up to 320 hours of caregiver leave