Security Operations Engineer

February 20

Apply Now

Receive Emails with Similar Jobs

Brown & Brown Insurance

WebsiteLinkedInAll Job Openings

Brown & Brown Insurance is one of the largest independent insurance brokerages globally, providing innovative insurance solutions and risk management services to protect the personal and business assets of its clients. Established in 1939 and publicly traded since 1993, Brown & Brown has grown through a disciplined strategy of acquiring culturally and financially suitable companies. With a strong emphasis on diversity, inclusion, and belonging, the company fosters a unique culture that rewards self-starters and focuses on delivering exceptional service through its 500+ locations worldwide.

Property & Casualty Insurance • Employee Benefits • Personal Lines

10,000+ employees

Founded 1939

🏢 Enterprise

📋 Description

• Develop, implement and enhance a variety of security controls and tools to help defend the organization against cybersecurity threats. • Help identify cybersecurity risks in the environment and provide solutions for mitigation. • Work with different parts of the organization to help close security gaps. • Provide hands on technical expertise across various security technologies including EDR tools, IDS/IPS, Anti-phishing tools, DLP tools, and XDR/SIEM infrastructure. • Configure, troubleshoot, and test detection, prevention and response tools to improve performance. • Create and update security tool detection rules to detect suspicious activity across endpoints, networks, and users. • Validate security controls are set up properly in the environment and provide resolution guidance where controls are not meeting standards. • Review, improve and maintain security logging to XDR/SIEM, based on needs of the cybersecurity program. • Serve as the subject matter expert to answer technical questions around security incidents and ensure all security incidents are tracked and remediated properly. • Work cross functionally with various teams to provide security expertise in areas of Security Automation and Response platforms, SaaS, IaaS, PaaS and cloud environments. • Integrate threat intelligence feeds and sources with organization’s security monitoring infrastructure. • Provide technical support to information security projects by researching, documenting, and implementing security solutions. • Assist in risk assessment and action planning to increase the security posture of the organization. • Update security documentation in accordance with organization’s cybersecurity policies and procedures.

🎯 Requirements

• At least one active security certification preferred: GCIH, GCIA, CISSP, CEH or related • B.S. in Information Security, Computer Science, Computer Engineering or similar technical program or equivalent experience • 3-5+ years in a hands-on technical role in information security supporting a large organization • Working knowledge of a wide range of current security technologies such as firewalls, proxies, network and host-based intrusion prevention, DLP, vulnerability assessment tools, network protocols, architecture, etc. • Strong understanding of security operations concepts such as perimeter defense, BYOD management, data loss protection, insider threat, kill-chain analysis, risk assessment and security metrics • Familiarity with attack paths, threat vectors, and attacker TTPs • Working knowledge of Information Security best practices and common security frameworks • Experience with securing Microsoft Entra ID/Hybrid environments (Preferred) • Development/scripting experience: Python and/or PowerShell (Preferred) • Ability to self-organize, prioritize activities independently, create documentation and reporting

🏖️ Benefits

• Health Benefits : Medical/Rx, Dental, Vision, Life Insurance, Disability Insurance • Financial Benefits : ESPP; 401k; Student Loan Assistance; Tuition Reimbursement • Mental Health & Wellness : Free Mental Health & Enhanced Advocacy Services • Beyond Benefits : Paid Time Off, Holidays, Preferred Partner Discounts and more.