Security Analyst

Envestnet is seeking a Security Analyst to join our Enterprise Security team. This is a hybrid role, with in-office work required at our Berwyn, PA office location.

Envestnet is transforming the way financial advice is delivered through its connected technology, advanced insights, and asset management solutions – backed by industry-leading service and support. Since 1999, Envestnet has served the wealth management industry and today supports trillions in platform assets, serving over a hundred thousand financial advisors. The vast majority of the nation’s leading banks, the largest wealth management and brokerage firms, and over 500 of the largest RIAs rely on Envestnet’s wealth management platform and solutions to drive business growth, boost productivity, and deliver better financial outcomes for their clients. 

Envestnet’s Strategy:

• Deliver the industry-leading wealth management platform, powered by advanced data and insights 
  
• Leverage our scale and efficiencies to serve our clients’ needs comprehensively 
  
• Enable financial advisors to deliver more holistic advice – reflecting a more complete view of their clients’ financial lives, and in a more connected environment
  

For more information, please visit www.envestnet.com.

Job Summary:

We are seeking a proactive and detail-oriented Security Analyst to join our Envestnet's Cyber Defense Team. This role will report into the Director of Security Operations. This position plays a key role in safeguarding our organization's digital assets by actively monitoring security systems, responding to security incidents, and managing vulnerabilities across our infrastructure. This role also contributes to Threat Huntting, Security response Automation and continuously enhancing our overall security framework. As a vital member of our team, you will contribute significantly to the development and maintenance of our Security Operations Center (SOC) processes and procedures.

Job Responsibilities:

• Perform initial analysis and triage of security incidents, escalating to senior team members when necessary.
  
• Support day-to-day operations of the Security Operations Center (SOC)by monitor security alerts and events from various security tools (SIEM, EDR, IDS/IPS) and investigate potential security incidents.
  
• Act as a first responder to security incidents and participate all stages of the incident response lifecycle, which includes detection, analysis, containment, eradication, recovery, and post-incident review.
  
• Conduct vulnerability scanning across networks, applications, and systems to identify security weaknesses. Analyze vulnerability scan results, prioritize findings, and work with IT teams to facilitate remediation efforts.
  
• Work with IT and development teams to validate, patch, and resolve security findings.
  
• Document security configurations, incidents, and vulnerability remediation activities.
  
• Maintain and update SOC runbooks and security documentation, while contributing to the improvement of security operations processes and incident response playbooks.
  
• Engage in proactive threat hunting activities to uncover hidden threats and vulnerabilities and automating incident triage and response tasks using SOAR
  
• Assist in the research and evaluation of new security threats, vulnerabilities, and technologies.
  
• Collaborate with the offensive security team on purple teaming exercises using the Breach and Attack Simulation (BAS) platform.
  
• Participate in security awareness training initiatives for employees.
  
• Adherence to and application of Envestnet legal, compliance, risk, business continuity and administrative policy within the role and department(s) including the timely completion of training & awareness, affirmations and testing as requested. 
  
• As part of the responsibilities for this role, you will understand and readily support Envestnet's established corporate business practices, policies, internal controls and procedures designed to create value or minimize risk
  

Required Qualifications:

• Bachelor’s degree in computer science, Information Security, or a related field (or equivalent practical experience).
  
• 4+ years of experience in cybersecurity, with exposure to Security Operations, Incident Response, or Vulnerability Management.
  
• Relevant certifications such as CompTIA Security+, CySA+, or EC-Council CEH are a plus.
  
• Basic understanding of cybersecurity concepts, including network protocols, operating systems (Windows, Linux), and common attack vectors.
  
• Familiarity with security tools such as SIEM platforms, EDR solutions, and vulnerability scanners.
  
• Strong analytical and problem-solving skills with a keen eye for detail.
  
• Excellent communication skills, both written and verbal, with the ability to convey technical information clearly.
  
• Ability to work effectively in a team environment and independently when required.
  
• Eagerness to learn and adapt to new technologies and threats.
  

Envestnet: 

• Be a member of an innovative and industry leading financial technology and solutions company 
  
• Competitive Compensation/Total Reward Packages that include:
  
  • Health Benefits (Health/Dental/Vision)
    
  • Paid Time Off (PTO) & Volunteer Time Off (VTO)
    
  • 401K – Company Match
    
  • Annual Bonus Incentives
    
  • Parental Stipend 
    
  • Tuition Reimbursement
    
  • Student Debt Program
    
  • Charitable Match 
    
  • Wellness Program

Envestnet is an Equal Opportunity Employer.

#LI-AQ1