at Hub International in Chicago, Illinois, United States
Job Description
ABOUT US
At HUB International, we are a team of entrepreneurs. We believe in empowering our clients, and we do so by protecting businesses and individuals in our local communities. We help businesses evaluate their risks and develop solutions tailored to their needs. We believe in empowering our employees. As a global firm, we offer employees resources in both technology and industry expertise, but we still maintain the local flavor of our offices. Our structure enables our teams to maintain their own unique, regional culture while leveraging support and resources from our corporate centers of excellence.
HUB is the 5th largest global insurance and employee benefits broker, providing a boundaryless array of property, casualty, risk management, life and health, employee benefits, investment and wealth management products and services. With over 17,000 employees in more than 550 offices throughout North America, HUB has grown substantially, in part due to our industry leading success in mergers and acquisitions.
ABOUT THIS ROLE
In this role, you will manage multiple aspects of information security operations, response, and engineering. This position will contribute to a team focusing on the included, but not limited to, incident response, playbook development and execution, operational engineering, tooling maintenance, as well as being a key participant within Information security programs. They will work in close collaboration with all HUB IT teams to design and support effective Information Security Operations for Hub International.
Objectives of this Role
+ Manages and is responsible for the successful completion of all tasks in assigned projects.
+ Contribute to Security Operations and Engineering Team focused on maintaining the security integrity of HUBs’ mission critical suite of applications.
+ Available 24/7 for any critical security incident response that may arise which requires immediate resolution.
+ Work to ensure security tooling within HUB environments are operational and operating at needed levels of service and availability.
+ Contribute to practice continuous improvement in response playbooks and security tooling.
+ Contribute to operations KPIs to measure operational performance.
+ Maintains current knowledge of relevant information security technology and techniques, bringing forth ideas for modernization and improvement.
+ Ensure operational practices provide a sound foundation that utilizes tools and processes for rapid identification of security events to address and mitigate risks.
+ Engage with peers regularly on security operations functions, project status, activities, and achievements.
+ Contribute to “Continuous Improvement and Posture Management” efforts, in respect to HUB’s information security tooling and systems.
+ Assist in plan, organize, and execute multiple responsibilities to achieve project goals and to move operational projects to completion.
+ Contribute to security requirements, standards, procedures, and reference architectures to comply with policies and technical standards.
Daily and Monthly Responsibilities
+ Evaluation of vulnerability analysis, endpoint, and security tooling packages to ensure acceptable levels of efficacy are met.
+ Technical leadership of root-cause analysis for security incidents and events, establish preventive measures, mitigations, or remediations.
+ Contribute to weekly and monthly posture and response operations reporting.
+ Lead in the configuration of new/existing applications, infrastructure for needed telemetry for security operations.
+ Lead/Contribute to the analysis and recommendation of upgrades, changes, implementation specific to the HUB security tooling packages and services.
+ Support the HUB Information Security Governance & Compliance team as needed during risk assessments, internal and external Information Security Audits, and Vendor reviews
Skills and Qualifications
+ Bachelor’s degree in technology or applicable experience.
+ Related certifications (e.g., GSEC, CISSP, GIAC, AWS) preferred.
+ 8+ Years of experience within information security operations in multiple roles.
+ 5+ years of experience with cloud infrastructure (AWS, GCP, Azure) and O365 services and technology
+ 3+ years of experience with security incident response and operations
+ 3+ years of experience defining, refining, and driving efficiency in operational processes
+ Extensive experience with, but not excluded to: TCP/IP, DNS, WAF, SEIM, and SOAR technologies.
+ Experience working with and managing Active Directory / MS Entra ID
+ Experience with SOAR (Security Orchestration, Automation, and response)
+ Experience with KQL and SPL or other Query Languages
+ Experience with powershell, python, and shell scripting
+ Expert Knowledge of information security standards, principles, and practices required.
+ Knowledge of industry security standards, guidelines, and regulatory/compliance requirements related to information security such as ISO 27001, NIST 800-53, SOC2, PCI, SOX, etc.
+ Expert Knowledge of Windows Event and network device logging
+ Expert Knowledge of email transmission, routing, and authentication concepts including, SMTP, SPF, DKIM and DMARC
+ Experience in project management, systems design and integration.
+ Thorough knowledge of layered systems architectures and layered solutions and designs
+ The ability to interpret, put fourth recommendations for the best fit path of risk-management actions for foreseen and managing unforeseen impacts.
+ Excellent Prioritization, decision making, critical thinking, communication, and relationship building skills
+ Ability to lead and manage projects across multiple teams or groups.
+ Ability to work independently and in a team environment.
+ This position reports into Chicago and can be based anywhere in the U.S. (i.e. remote/virtual)
+ Willingness to travel up to 10% of working time
JOIN OUR TEAM
Do you believe in the power of innovation, collaboration, and transformation? Do you thrive in a supportive and client focused work environment? Are you looking for an opportunity to help build and drive change in a rapidly growing and evolving organization? When you join HUB, you will be part of a community of learners and doers focused on helping our leaders maximize the potential of their employees.
Disclosure required under applicable municipal regulations in NY and NJ, as well as the law in Colorado: The expected salary range for this position is $135K to $155K and will be impacted by factors such as the successful candidate’s skills, experience and working location, as well as the specific position’s business line, scope and level. HUB International is proud to offer comprehensive benefit and total compensation packages which could include health/dental/vision/life/disability insurance, FSA, HSA and 401(k) accounts, paid-time-off benefits, and eligible bonuses, equity and commissions for some positions.
Department Information Technology
Required Experience: 7-10 years of relevant experience
Required Travel: Negligible
Required Education: Bachelor’s degree (4-year degree)
HUB International Limited is an equal opportunity and affirmative action employer that does not discriminate on the basis of race/ethnicity, national origin, religion, age, color, sex, sexual orientation, gender identity, disability or veteran’s status, or any other characteristic protected by local, state or federal laws, rules or regulations. The EEO is the Law poster and its supplement is available here athttp://www.dol.gov/ofccp/regs/compliance/posters/ofccpost.htm.
EEOAA Policy
E-Verify Program
We endeavor to make this website accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the applicatio
