Information Security Engineer
The Area: The Information Security department is responsible for setting enterprise security policies and standards that are designed to protect the confidentiality, integrity and availability of Morningstar information. The security team offers guidance and technical expertise in areas like application security, policies and procedures, disaster recovery and compliance/regulation. We analyze emerging security threats and conduct risk and vulnerability assessments to ensure that our information remains secure.
The Role: The Information Security Engineer will evaluate Morningstar infrastructure and internally developed applications to identify vulnerabilities and potential short- and long-term solutions. This individual will assist in maintaining Morningstar’s security posture by managing security solutions including Splunk, identity and access management, web filtering, EDR, antivirus, endpoint encryption, and threat analytics. They will assist with penetration testing and security architecture reviews. They will be responsible for monitoring and responding to critical security events. This position is based in our Chicago office.
+ Automate and integrate security tools and activities
+ Perform daily security operations activities
+ Examine and operationalize new adversary detection methods to defend Morningstar
+ Prioritizes events using existing tools to correlate data for the purposed of reducing false positives and detecting threat
+ Builds written threat reports to disclose findings and recommendation to remediate the vulnerability and/or threat
+ Assess the security impact of security alerts and traffic anomalies to identify malicious actions in order to escalate up to senior members of the team
+ Identify network and middleware security vulnerabilities and offer resolution advice
+ Conduct risk assessments, threat modeling, privacy assessments and information security reviews on internal Morningstar systems, applications and platforms
+ Work directly with internal business units to communicate risk and help resolve open vulnerabilities
+ Understand and help execute information security program goals
+ Monitor and manage security alerts from key information security dashboards (IDS, antivirus, centralized logging, etc)
+ Perform malware investigation
+ Manage Web Application Firewalls
+ Provide security remediation advice and training to technical personnel
+ Develop and enhance internal security processes, programs and procedures
+ Review / audit firewall changes
+ Coordinate remediation activities with IT operations teams
+ A bachelor’s degree and 2+ years’ experience in the information security field
+ We’re looking for someone who enjoys solving puzzles and diagnosing problems
+ Excellent communication skills and an understanding of network security fundamentals.
+ Candidates should be interested in keeping up with the latest security trends, as well as enjoy performing code / architecture reviews and penetration test activities
+ Experience with network security tools, network traffic analyzers, NMap, Rapid7 and Palo Alto
+ A strong understanding of PowerShell, Python, Perl, and other scripting languages is preferred
+ Relevant security certifications (SSCP, CEH, GCIH or equivalent certification is preferred)
+ Threat intelligence experience
+ Threat hunting experience
+ Splunk experience
+ Public Cloud (AWS, Google, Azure) experience
Morningstar is an equal opportunity employer.