Cyber Security Analyst - Triage

Cyber Security Analyst - Triage Location New York Business Area Legal, Compliance, and Risk Ref # 10044944

Description & Requirements

We protect Bloomberg.
There's no such thing as a "safe system" - only safer systems. Our Security teams work to build and maintain the safest operating environment for Bloomberg’s users. The Security Analysts within the Cyber Security Operations Centre are the main defenders of the company.  The Triage Security Analyst's function, within the CSOC, is considered to be a key pillar in Bloomberg’s security, as they are the initial responders to security events. Are you a motivated technical professional, who has a passion towards cyber security? And are accomplished in a systems- or applications-support role, or already have cyber security experience? In this security role, Bloomberg will provide you the opportunity to apply your current skills, while you rapidly develop new ones that are required in the Cyber Security field.
The Bloomberg CSOC is responsible for the detection of cyber threats, and when detected, responsible for the rapid response, across both the diverse lines of business and the global network. The CSOC is an open and collaborative environment, where members work together to identify and address the latest cyber security threats facing the company. The CSOC is staffed 24 x 7 x 365, with varying shifts, and multiple functions, ranging from this first responder position, to threat hunting, intelligence, incident response, detection engineering, as well as all the support teams necessary to keep a CSOC working. You will have the opportunity to work with these more experienced members on some of the latest cyber security defense technologies.
In this role, we'll trust you to:- Work within a dedicated Weekday shift, 11:30AM – 8:30PM, Monday thru Friday, to support the 24x7x365 Cyber Security Operations Center (some Weekend and Holiday coverage will be required.)- Demonstrate passion and good judgement as a network defender- Identify, and act as the initial responder, to all security events- Learn and understand the broader security of Bloomberg’s environment- Monitor for events that match predefined criteria, and respond in accordance with  standard operating procedures, as well as use good judgement for matters where a procedure doesn’t exist- Bring to closure a significant majority of events without the involvement of other teams- Share robust case notes when raising issues in order to help the next team member- Remain up-to-date with cyber security threats and trends- Deliver on relevant cyber security metrics and measurements for the role and area of responsibility- Collaborate directly with colleagues across the firm to resolve security matters while furthering the program’s brand with a constructive and thoughtful approach- Respond to varying seniority levels of employees and contractors throughout Bloomberg to address cyber security concerns- Ensure appropriate coverage for the assigned shift and provide ample awareness to changes to commitments- Produce and maintain documentation and standard operating procedures- Generate ideas for continued improvement, including conceptual design of new threat scenarios
You'll need to have:- 3+ years of experience working as a network defender- Deep understanding in logs from a variety of sources, their log events, and Splunk- Knowledge of enterprise network and host security controls- Ability to be autonomous but proactive in reaching out for support- Good familiarity with operating systems (Windows, Linux and MAC)- Solid understanding of computer networks and the TCP/IP stack- Deep understanding of cyber security trends and potential threats- Knowledge of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs and enterprise antivirus products- Proven initiative in further growing knowledge in the information security space- Good communication and interpersonal skills and the ability to take initiative- Dedication to role and ability to collaborate with team members- Experience providing customer service
We'd love to see:- Work experience within a Cyber Security Operations Center- Knowledge of AWS, Azure, and GCP cloud platforms- Previous experience working with a Security Event and Incident Management platform- Relevant certifications in the information security space- Bachelor’s degree in related field- Familiarity with programming / scripting
If this sounds like you:Apply! If we think you are a good match we'll get in touch to let you know the next steps. Salary Range = 90000 - 135000 USD Annually + Benefits + Bonus
The referenced salary range is based on the Company's good faith belief at the time of posting. Actual compensation may vary based on factors such as geographic location, work experience, market conditions, education/training and skill level.


We offer one of the most comprehensive and generous benefits plans available and offer a range of total rewards that may include merit increases, incentive compensation (exempt roles only), paid holidays, paid time off, medical, dental, vision, short and long term disability benefits, 401(k) +match, life insurance, and various wellness programs, among others. The Company does not provide benefits directly to contingent workers/contractors and interns.