Security Operations Analyst
Wilton Re · Norwalk, CT · 1 mo ago
Information Technology$80k–$100k/yrFull-time
About the role
The Security Operations Analyst plays a pivotal role in evaluating, prioritizing, implementing, and maintaining the procedures and countermeasures that protect an organization's critical information and physical assets. This position is integral to sustaining business continuity, meeting regulatory guidelines, and defending against a dynamic threat landscape.
Role Responsibilities
- Vulnerability Assessment & Remediation: Support the review and prioritization of vulnerability findings in collaboration with our CISO and Service Delivery Management Team (SDMT) across all platforms including infrastructure, network, and end-user systems. Assist with applying patches, scripted updates, and other remediation steps—including addressing application-level items such as .NET or Java. Work with senior team members to help meet vulnerability SLA targets.
- Project Support: Contribute to the implementation of new security tools and initiatives aimed at strengthening the company’s security posture. Upcoming work may involve tools such as Zscaler, CTEM, and Privileged Access Management (PAM) enhancements.
- Policy & Compliance: Collaboration: Work with team members and partners across the organization to support adherence to security policies, including vulnerability management requirements and Microsoft security score improvements.
- Process Improvement: Assist in creating and maintaining repeatable processes for ongoing security assessments, regression testing, and impact analysis. Help establish and document routine (BAU) procedures as security tools and practices evolve.
- Integrity & Audit Alignment: Partner with the Integrity Management team to ensure procedures stay aligned with new tools and maturing security capabilities. Help gather and provide audit evidence as needed.
- Access Control Support: Help manage physical and logical access controls, including issuing and updating credentials for employees, contractors, and visitors. Support the maintenance and optimization of IAM tools and Office 365 security groups.
- Monitoring & Reporting: Participate in security meetings and help review output from security tools to identify potential risks, unusual activity, or policy violations. Business Continuity & DR Participation: Assist with the development and testing of business continuity and disaster recovery plans. Support scenario planning, documentation, and participation in drills and exercises, especially as they relate to understanding current vulnerabilities.
- Technology Implementation Support: Provide hands-on technical assistance during the deployment and ongoing support of new security technologies across the Wilton Re and Texas Life Insurance Company (TLIC) environments. Continuous Learning & Improvement: Stay current on emerging security trends and tools. Share insights and support enhancements to procedures, documentation, and security technologies.
Basic Qualifications
- Minimum of 3 years in operational security or a related field, with a demonstrated track record of successfully supporting security operations in complex environments.
- Technical Proficiency: Familiarity with access vulnerability management tools such as Qualys, IT Management tools such as Intune and information security frameworks (NIST, etc.). Familiarity with network security desirable, not required. Familiarity with other tools such as data discovery tool Varonis; micro segmentation tool Illumio, Microsoft Secure score is desired.
- Analytical Abilities: Proficient problem-solving and critical thinking skills with the ability to analyze issues, identify root causes, and recommend practical solutions under guidance when needed.
- Communication: Strong written and verbal communication skills; comfortable interfacing with all levels of the organization and with external partners particularly MSSP.
- Project Management: Experience supporting and coordinating projects, working with cross-functional teams to meet deadlines and deliver quality results. In some cases, leading projects.
- Discretion and Integrity: Demonstrated commitment to confidentiality, ethical conduct, and the responsible handling of sensitive information.
- Adaptability: Comfortable working in high-pressure, fast-changing environments and responding effectively to unexpected developments.
- Communication and Collaboration: Effectively communicating with technical and non-technical stakeholders, fostering strong relationships, and leading cross-functional teams.
- Adaptability and Flexibility: Learning new technologies and adapting to changing project requirements quickly.
- Strategic Thinking: Working with the team to develop and execute strategies for process improvement and the adoption of new technologies.
Required Education / Certifications
- Bachelor’s degree in Security Management, Information Security, or a related discipline.
- Advanced degrees or certifications (e.g., CISSP, CISM, CPP) are desirable, but not necessary.
Pay/Location
Base salary/hourly rate range for this position in Connecticut is between $80,000 and $ 100,000. Please note that specific compensation decisions are based upon a variety of job-related factors as permitted by law, including geographic location, credentials, skills, education, training, and experience.
What We Offer
- Competitive vacation and sick time, including company-paid holidays, floating holidays and early closing days
- 401(k) plan with employer contribution - US Employees Only
- Profit Sharing Program
- Health, vision, dental, and life insurance, including access to health and wellness programs
- Actuarial Development Program (ADP) for Actuarial employees taking exams
- Employee Assistance Program (EAP)
- Current hybrid working environment
- Employee Engagement Events and various committees on site