Job Description:
The Cybersecurity Analyst will be working on a team of systems and software engineers focusing on insider risks and Data Loss Prevention (DLP). This role will involve working closely with Data Analytics, Insider Operations and Security Operations Center (SOC) teams to help mitigate risk across Fidelity’s computing environment.
Looking for an energetic, curious individual able to keep up in an exciting and fast-moving team that is engaged in high profile security projects to enhance Fidelity’s security posture and prevent data leakage. The candidate will be immersed in an environment addressing a constantly evolving threat landscape, working with numerous security experts. The successful candidate will evaluate data loss and Insider features within vendor platforms against current industry research and analyze insider activity behaviors and patterns to help influence ongoing strategic goals.
The Expertise You Have and The Skills You Bring
Knowledge of cyber security threats and incident response
Understanding of insider threats and DLP policies a benefit but not required
Understanding of endpoint, exchange, network & cloud technologies
Solid ability to evaluate security features, compare against current environment, and make recommendations to the Team Lead
Deep knowledge of how to protect sensitive, highly regulated and business critical data across its full lifecycle
Ability to work across multi-functional teams following agile practices
Bachelor’s degree in computer science or equivalent experience
Five to seven years of information security experience in government, military, law enforcement, or financial services sector
Industry certifications in cyber security incident management, such as Certified Information Systems Security Professional (CISSP), Security + or other related credentials
Proven technology experience with significant focus on Data, Cyber & Cloud security
Experience in defining and implementing data security strategies & controls to protect sensitive information
A curious mind strong with strong analytical skills to identify risks and problem solve
A firm knowledge of query-based languages such as SQL, Kusto or Splunk
Experience with analyzing a wide range of data sources to identify risks
Ability to balance work within an agile model across multiple environments by prioritizing and taking a results-oriented approach to tasks
Ability to step up to take ownership for a particular deliverable or issue
The Value You Deliver
Ability to deliver, implement and perform analysis of Insider Threat capabilities, evaluating downstream impact to SOC and end users
Maintain high standards when it comes to documenting Insider Threat processes, detections and implementations
Help shape the Insider strategy, enabling proactive risk reduction and delivering secure, sustainable & scalable results
Be instrumental in technology and policy implementation, tuning and oversight of processes across all insider threat technologies executed within the firm
Certifications:
Category:
Information TechnologyFidelity’s hybrid working model blends the best of both onsite and offsite work experiences. Working onsite is important for our business strategy and our culture. We also value the benefits that working offsite offers associates. Most hybrid roles require associates to work onsite every other week (all business days, M-F) in a Fidelity office.
Please be advised that Fidelity’s business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.