SOC Analyst

Who Are We?

Taking care of our customers, our communities and each other. That’s the Travelers Promise. By honoring this commitment, we have maintained our reputation as one of the best property casualty insurers in the industry for over 160 years. Join us to discover a culture that is rooted in innovation and thrives on collaboration. Imagine loving what you do and where you do it.

Job Category

Technology

Compensation Overview

The annual base salary range provided for this position is a nationwide market range and represents a broad range of salaries for this role across the country. The actual salary for this position will be determined by a number of factors, including the scope, complexity and location of the role; the skills, education, training, credentials and experience of the candidate; and other conditions of employment. As part of our comprehensive compensation and benefits program, employees are also eligible for performance-based cash incentive awards.

Salary Range

$62,200.00 - $102,600.00

Target Openings

2

What Is the Opportunity?

Cybersecurity Operations is responsible for the identification, protection, detection, response and disruption of cybersecurity events across Travelers through critical analysis, threat intelligence gathering, and agile cybersecurity defense techniques to assess, support, and resolve cyber incidents. As an Associate Cybersecurity Ops Technologist (SOC Analyst), you will support the timely detection, identification, alerting and response of possible attacks, intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities.

You'll be part of our 24x7x365 Security Operations Center (SOC) team, helping to detect, identify, and respond to potential security threats. You'll work alongside skilled cybersecurity professionals in a dynamic environment where every day brings new challenges and learning opportunities. This role will join a team that splits off-hours on-call shifts to ensure we can provided cybersecurity services when needed.

We value team members who are curious, analytical, and eager to grow their skills. If you're someone who enjoys solving puzzles, finding root causes, and collaborating with others to protect valuable resources, this position could be perfect for you!

What Will You Do?

• You will use cyber defense tools for continual monitoring and analysis of system activity to identify malicious activity and analyze alerts from various sources to determine possible causes for alerts and escalate as appropriate.
• You will analyze identified malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information.
• You will work in a 24x7x365 environment, have a team-centric focus, and be prepared to work evening, weekend, and holiday schedules (as required) for incident response readiness.
• You will periodically be on-call for off-hours incident triage and response on a rotational schedule.
• You will monitor environment and perform incident response via SIEM and SOAR platforms.
• You will critically think through alerts, triage through various enterprise log systems, and executive defensive technical actions in response to those alerts.
• You will maintain records of security monitoring and incident response activities, utilizing case management and ticketing technologies.
• You will evaluate and deconstruct phishing pages and malware (e.g., obfuscated code) through open-source and vendor provided tools.
• You will consolidate and performs comprehensive analysis of threat data obtained from external, proprietary, and open-source resources to provide indication and warnings of potential threats or threat vectors.
• You will support reviewing or identifying security events and escalating to management.
• You will prepare briefings and simple reports of analysis methodology and results.
• You will create and maintain standard operating procedures (SOPs) and other documentation including operating instructions and knowledge transfer articles.
• You will create, debug, and modify Security Information Event Management (SIEM) rules and SOAR automation playbooks.
• You will generate end-of-shift reports for documentation and knowledge transfer to subsequent analysts on duty.
• You will function as a security representative at design and technology design and configuration meetings.
• You will mentor junior team members as you grow in the role
• Perform other duties as assigned.

What Will Our Ideal Candidate Have?

• You have an understanding of computer networking concepts, cyber threats, and access control methods.
• You have experience using a SIEM or other large data platform.
• You can read and write Python code, and have experience with GitHub.
• You know how to analyze data and trace this back to the root cause.
• You are familiar with operations-focused teams that maintain 24x7x365 availability.
• You are able to maintain composure during high-pressure situations.
• You routinely critically think through problems and are able to independently prioritize information and actions.
• You are naturally curious.
• You are self-motivated and eager to continuously learn and improve.
• You are an active participant in team standups, knowledge shares, and other sessions.
• You have excellent communication abilities – both listening and explaining technical concepts clearly.
• You are comfortable reaching out to coworkers and/or leads when progress is blocked.
• You hold yourself and others accountable.
• You demonstrate professional objectivity and openness to others’ views.
• You can both give feedback and receive feedback from both teammates and management.
• You build relationships with teammates, other departments, and stakeholders.
• You can balance team and individual responsibilities.
• You demonstrate the willingness to live out the values out service before self, integrity first, excellence in all we do.
• You seek opportunity to lead, even as an individual contributor.
• You are flexible when selecting and supporting the teams’ on-call rotations and overall on-call mission.

What is a Must Have?

• Bachelor’s degree or its equivalent in work experience.
• Prior technology internship or work experience.

What Is in It for You?

• Health Insurance: Employees and their eligible family members – including spouses, domestic partners, and children – are eligible for coverage from the first day of employment.
• Retirement: Travelers matches your 401(k) contributions dollar-for-dollar up to your first 5% of eligible pay, subject to an annual maximum. If you have student loan debt, you can enroll in the Paying it Forward Savings Program. When you make a payment toward your student loan, Travelers will make an annual contribution into your 401(k) account. You are also eligible for a Pension Plan that is 100% funded by Travelers.
• Paid Time Off: Start your career at Travelers with a minimum of 20 days Paid Time Off annually, plus nine paid company Holidays.
• Wellness Program: The Travelers wellness program is comprised of tools, discounts and resources that empower you to achieve your wellness goals and caregiving needs. In addition, our mental health program provides access to free professional counseling services, health coaching and other resources to support your daily life needs.
• Volunteer Encouragement: We have a deep commitment to the communities we serve and encourage our employees to get involved. Travelers has a Matching Gift and Volunteer Rewards program that enables you to give back to the charity of your choice.

Employment Practices

Travelers is an equal opportunity employer. We value the unique abilities and talents each individual brings to our organization and recognize that we benefit in numerous ways from our differences. 

In accordance with local law, candidates seeking employment in Colorado are not required to disclose dates of attendance at or graduation from educational institutions.

If you are a candidate and have specific questions regarding the physical requirements of this role, please send us an email so we may assist you.

Travelers reserves the right to fill this position at a level above or below the level included in this posting.

To learn more about our comprehensive benefit programs please visit http://careers.travelers.com/life-at-travelers/benefits/.