Advisor Security Analyst I

IT Opportunity in Financial Services

Advisor Security Analyst I

Location(s):

Atlanta: 2300 Windy Ridge Pkwy SE, Suite750, Atlanta, GA 30339

La Vista:12325 Port Grace Blvd, La Vista, NE 68128

Oakdale: 7755 3rd St. N, Oakdale, MN 55128

Scottsdale: 18700 N Hayden Rd, Suite 255, Scottsdale, AZ 85255

St. Petersburg: 877 Executive Center Dr. W, Suite 300, St. Petersburg, FL 33702

Osaic has returned to the office on a hybrid schedule requiring a minimum of 4 days weekly in the office. Applicants should be located at one of our hubs listed above and must be willing to work this schedule.

Role Type: Full-time, Non-Exempt

Salary: $65,000 - $80,000 per year + annual performance-based bonus

Actual compensation offered will be determined individually, based on a number of job-related factors, including location, skills, licensure, experience, and education.

Our competitive compensation is just one component of Osaic’s total compensation package. Additional benefits include health, vision, dental insurance, 401k, paid time away, volunteer days and much more. To view more details of what you can look forward to, visit our careers page: Osaic Benefits .

Summary:

The Advisor Security Analyst I supports Osaic’s, advisor facing cybersecurity operations. This role combines technical knowledge with hands on activities to ensure secure, efficient processes for investigating advisor incidents. This position has direct and regular interactions with Osaic advisors who have experienced a compromise and are looking to Osaic Advisor Security for assistance, and resolution. Strong interpersonal skills are a must for this position.

As an Advisor Security Analyst I, you will monitor security-related security events, triage potential incidents and respond to confirmed incidents, as necessary. You will be required to work with elements of Legal, Privacy, Advisor Engagement, and Compliance in this role, requiring a highly professional demeanor. As an Advisor Security Analyst I, you will be expected to ask questions, seek answers and accept constructive criticism.

Education Requirements:

Bachelor’s degree preferred, high school diploma (or equivalent) in combination with experience will be considered in lieu of degree. Minimum of high school diploma or equivalent is required.

Responsibilities:

• Incident Response & Investigation
• Detect, analyze, and address cybersecurity incidents using EDR solutions where applicable, ticketing systems, and phone notifications.
• Participate in root cause analysis and assist advisors with implementing preventative measures.
• Threat Detection & Analysis
• Track security alerts and logs where applicable.
• Assist with incident investigations to determine root cause and extent of compromise.
• Identify indicators of compromise (IOCs) and.
• Containment & Recovery
• Assist advisor, and/or their MSP/MSSP, with containment efforts to reduce the impact of security breaches.
• Work advisor, and/or their MSP/MSSP, to recover impacted systems and verify their integrity after incidents.
• Regular interaction with the Advisor, Legal representatives, Forensic firms, and internal teams to keep stakeholders informed and to ensure a relatively painless experience for the advisor.
• Continuous Improvement
• Update incident response playbooks and processes.
• Partner with threat intelligence teams to anticipate emerging threats.
• Suggest improvements for advisor internal systems and Osaic advisor facing systems.
• Compliance & Reporting
• Ensure incident handling is consistent with regulatory and company guidelines.
• Create comprehensive incident reports for internal review and audits.
• All other duties as assigned.

Basic Requirements:

• Knowledge of and/or experience with Cybersecurity roles in SOC, SIEM engineering, vulnerability management, and incident response.
• Experience with EDR tools, and incident response platforms.
• Proficiency in monitoring and triaging security alerts
• Basic knowledge of forensic theories.
• Familiarity with email systems, both on prem and cloud based, vulnerability scanning tools, threat intelligence platforms, IAM platforms, encryption, & email security.
• Excellent communication & organizational skills.
• Quick learner with basic technical skills to efficiently navigate through various systems.
• Strong customer focus orientation.
• High attention to detail, analytical mindset, and problem-solving skills.
• Be able to work independently and maintain elevated levels of quality.
• Self-motivated individual capable of meeting departmental expectations and deadlines
• Ability to participate and contribute to a team environment.

Preferred Requirements:

• Experience in financial services operations or broker-dealer settings.
• Bachelor's degree in Cybersecurity, Information Technology, Computer Science or a related field.
• Higher level certifications, including CISSP, CISA, CISM.
• Basic understanding of major security frameworks like NIST CSF, ISO 27001, SOC 2, PCI-DSS, HIPAA
• Basic understanding of NYDFS, SOX, Regulatory bodies, & Broker-Dealer regulations.

Osaic is an equal opportunity employer. We celebrate diversity in our workplace and we hire the most qualified candidates without regard for age, ethnicity, gender, gender identity or expression, language differences, nationality or national origin, family or marital status, physical, mental, and developmental abilities (or the perception of a disability), genetic information, race, religion or belief, sexual orientation, skin color, social or economic class, education, work and behavioral styles, political affiliation, military service, caste, or any other characteristic protected by law.

Applicants for employment in the US must have valid work authorization that does not now and/or will not in the future require sponsorship of a visa for employment authorization in the US by Osaic.

Osaic does not consider applications from candidates who do not meet the minimum qualifications stated in the job posting.

Osaic only accepts candidates from contracted recruiting firms and only for searches approved prior to submissions. Fees will not be paid for unsolicited submissions.