Security Operations Analyst

Solutions for Today’s Challenges. Vision for Tomorrow’s Opportunities.

Join William Blair, the Premier Global Boutique.

William Blair has delivered trusted advice for nine decades, and we continue to deepen our expertise and relationships across regions, asset classes, and markets throughout North America, Europe, Asia, and Australia.

We are committed to our people and culture, values, clients, and local communities.

What sets us apart is that we are an independent partnership, with employees who have unique experiences, perspectives, and backgrounds. We provide advisory services, strategies, and solutions to meet clients’ evolving needs amid dynamic market conditions and varying industries.

We strive to attract the most qualified, passionate candidates who specialize in investment banking, investment management, private wealth management, and a variety of other business functions.

We work tirelessly to create an inclusive culture and take pride in fostering employees’ professional and personal growth. We empower our people to bring their best thinking each day so we can deliver the tailored, thoughtful work and problem-solving abilities that our clients expect.

Equally, we are proud of our long-term partnerships with the communities in which we live and work, a legacy we inherited from our founder.

We invite you to learn about how we are seeking excellence in everything we do and empowering our clients’ success with passion, creativity, and rigor. For more information, visit williamblair.com.

The Security Operations Analyst will provide subject matter expertise for a variety of technology initiatives and operational support with an emphasis on security technology. Partner with business units as necessary to provide security assurance against cyber-attacks, to include unauthorized access, data loss and other cyber activities that could negatively impact the reputation of William Blair and our customers. Proactively identify security vulnerabilities and mitigation opportunities within the firm. Deliver an Ideal Customer Experience by always executing with integrity, quality, and excellence. Demonstrate an aptitude for maintaining strong security market awareness as well as to recommend, implement, and manage security technologies.

Responsibilities:

• Support daily security operations efforts, including assisting with incident response activities to identify, assess, contain, mitigate all observed threats.
• Investigate alerts generated by security controls and implement/provide recommendations to improve detection capability accuracy.
• Develop and operationalize incident response runbooks with an emphasis on automation and ability to measure incident response effectiveness.
• Work with functional business areas as needed during incident response investigations.
• Document and track incident response investigations, including observed IOCs, systems impacted, criticality and scope of any data exposure, follow-up items.
• Assist with threat hunting and analysis based on operational threat intelligence.
• Draft reports based on threat intelligence, incident response, and risk analysis for consumption by a non-technical audience.
• Provide subject matter expertise and support to the security monitoring solutions.
• Collaborate with network and technology support teams to enhance and improve security processes and documentation.
• Work in partnership with 3rd party security vendors to coordinate day-to-day security operations.
• Stay up to date with the latest security trends and technologies to continuously improve security measures.
• Ensure adherence to policies and procedures.
• Perform other duties as assigned.

Qualifications:

• Bachelor's degree or equivalent work experience in a technology role.
• Security certifications preferred such as SANS, OSCP, ISC2, ISACA.
• A minimum of 5+ years of experience in IT security operations and vulnerability management programs, with specific hands-on expertise in monitoring tools such as Qualys, SIEM, XDR, Cribl, and IDS/IPS.
• Proficient troubleshooting-skills under pressure, automation, and knowledge of scripting and querying language such as PowerShell, Python, and KQL.
• Demonstrates good judgment in working with security technology and processes to ensure appropriate risk – cost/benefit tradeoffs.
• Technical understanding of CVSS/EPSS, OWASP Top 10, MITRE ATT&CK framework, and Vulnerability Exploitability ratings.
• Knowledge of security frameworks, standards, and regulations (NIST, ISO 27000, GDPR, SOX, NIST, etc.).
• Demonstrates initiative and persistence – is self-motivated.
• Excellent written and verbal communication skills.

#LI-CH1

A reasonable estimate of the current base salary range at time of posting is below. Base salary does not include other forms of compensation or benefits. Actual base salary within the specified range is based on several factors, including but not limited to applicant's skills, prior relevant experience, specific degrees and certifications, job responsibilities, market considerations and, if applicable, the location of the position.

This role is eligible for either a discretionary annual bonus (based on company, business unit and individual performance) and/or commission-based incentives.

Our featured benefit offerings include medical, dental and vision coverage, employer paid short & long-term disability and life insurance, 401(k), profit sharing, paid time off, Maven family & fertility benefit, parental leave (including adoption, surrogacy, and foster placement), as well as other voluntary benefits.  

Salary Range$107,600—$138,000 USD

 

William Blair is an equal opportunity employer. It complies with all laws and regulations that prohibit discrimination in employment practice because of race, color, religion, creed, ancestry, marital status, gender, age, national origin, sexual orientation, unfavorable discharge from the military service or on the basis of a physical or mental disability that is unrelated to the employee's ability to perform the duties of the job applied for. EOE m/f/d/v

Be aware of hiring scams: William Blair has clear processes and guidelines with regards to recruiting. We do not request personal financial information in connection with an employment application nor does William Blair extend any employment offers without first conducting an interview through one of its registered offices. William Blair does not use instant messaging services such as WhatsApp, Telegram, or iMessage as part of the recruiting or interviewing process.

Note to External Recruiters / Search Firms: William Blair does not accept unsolicited resumes and will not pay for any placement resulting from the receipt of an unsolicited resume. Any unsolicited resumes received will not be considered as a valid submission.

Download William Blair's privacy policies for job applicants:

• California Consumer Privacy Act Privacy Notice (CCPA)
• General Data Protection Regulation Privacy Notice (GDPR)

Contact us should you have any questions or concerns.