Security Analyst

intelliflo is a global business that welcomes bold ideas and all points of view. Doing what matters inspires us, and we believe that we grow best – as people and businesses - by working together and always striving to get better without fearing failure. 

We're not looking for a 'culture fit'. We want you to bring your unique skills and perspectives and add to our culture, not conform to it. This isn't about finding the person who fits in; we want people who stand out. 

Who is intelliflo? 

Sound financial advice has the power to transform lives and should be accessible to the many, not the few. intelliflo widens access to financial advice through leading technology that powers the advisory experience.

We use open software architectures and unmatched industry experience to simplify a complex digital landscape and help advisors flourish and grow. Our solutions support over 30,000 financial advisors globally, who represent over three million households with over USD 1 trillion assets. 

intelliflo operates independently under its own brand as a wholly owned subsidiary of Invesco, a global leader in the asset management industry. 

Key Responsibilities

• Conducts security risk assessments, evaluates security services and technologies, and reviews and documents information security policies and procedures as well as provides monitoring and oversight for alerts in the Cloud environment.
• Produce metrics and reports on the cloud security posture of intelliflo's cloud systems
• Create actionable alerts based on received Cloud log events
• Monitor and respond to security events and incidents
• Design and perform POCs and to facilitate service selection
• Knowledge of GDPR, NIST, CIS and PII requirements
• Create and work on tickets as needed to perform work and projects
• Perform SOC Daily tasks, to include monitoring and responding to alerts, remediating of malicious emails
• Develop and write SOPs
• Develop incident response playbooks and security actions
• Acts as an Incident Response team member when the incident response team is active. Incident response tasks may be identification, log and event collection and analysis, forensic investigation support, communication support, and evidence handling.
• Assist in performing IT audits, security reviews, risk assessments Change Management reviews for ISO 27001, SOC II, CIS, NIST, SOC 2, IT control mapping, process documentation, control testing, deficiency remediation, gap analysis/assessments, and IT audit preparation.
• Automate security controls, data and processes to provide effective metrics and operational support

Skills and Experience Required

• 3+ years experience in IT Security in L2 capacity
• 3+ years experience working in either AWS or Microsoft Azure
• Experienced working with industry leading SIEM tools (Splunk, ELK, Sentinel)
• Deep understanding of IT infrastructure, information security, and compliance controls
• Hands-on experience endpoint security operations required
• Hands-on experience with network vulnerability and web application scanning tools
• Excellent written and verbal communication skills: Must be able to write document, articulate and present complex security concepts and solutions to parties with a variety of skills
• Exceptional analytical and problem-solving skills; someone who 'sees' the box differently
• Experience developing and managing remediation plans/corrective actions
• An excellent knowledge of Information Security principles and an understanding of the Cyber Kill Chain, MITRE ATT&CK and other information security defence and intelligence framework
• Experience performing digital forensics, static and dynamic malware analysis
• Experienced working with threat intelligence from various sources
• Experience performing analysis on network artefacts
• Experience in security testing of applications in a cloud environment
• Keen attention to detail and excellent analytical skills

Knowledge Required

• Degree in an Information Security / Computing discipline, or equivalent security certifications
• Experience working within in an Agile framework
• Experience with incident response in AWS and/or Azure environments
• Familiarity with a programming or scripting language
• Familiarity with regex / regular expressions
• A working knowledge of financial services and the typical business processes involved together with the threat actors and their relevant tactics, techniques and procedures would be of significant advantage.
• Experience working with SIEM technologies
• Experience with AWS and Azure security monitoring tools
• Penetration testing experience highly regarded

Qualifications

• Bachelor's degree or equivalent/relevant work experience
• One or more technical Information Security Certifications such as:
  • CompTIA: Security+
  • GIAC Certification: GCWN, GSEC, GCIA

intelliflo's workplace model is designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection when possible. Most teams within our England office work 1-day a week in the office, however, most of our teams within the United States and India operate in a remote working pattern. Certain limitations apply.  Please consult with your Talent Acquisition contact during the interviewing process.

What's in it for you? 

intelliflo offers industry-leading Total Rewards that help you thrive – in and out of the office, including competitive pay, retirement savings plans, generous health and wellness benefits, and much more. 

Our commitment to diversity, equality, and inclusion   

Our aspiration is for our workforce to continually reflect the diversity of people and perspectives in today's evolving society, which we believe is fundamental to our efforts to widen access to financial advice.  intelliflo is proud to be an Equal Opportunity Employer. We are committed to equal employment opportunity for all job applicants and employees. Individuals seeking employment at intelliflo are considered without regards to race, religion, color, sex, gender, gender identity, sexual orientation, marital status, national origin, citizenship status, disability, age, military or veteran status; or any other characteristic protected by applicable laws. 

The above information on this description has been designed to indicate the general nature and level of work performed by employees within this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job. The job holder may be required to perform other duties as deemed appropriate by their manager from time to time.