Incident Response Lead at Morningstar

| Chicago
Sorry, this job was removed at 1:28 p.m. (CST) on Monday, November 2, 2020
Find out who's hiring in Chicago.
See all Operations jobs in Chicago

The Area: The Information Security department is responsible for setting enterprise security policies and standards that are designed to protect the confidentiality, integrity and availability of Morningstar information. The security team offers guidance and technical expertise in areas like application security, policies and procedures, disaster recovery and compliance/regulation. We analyze emerging security threats and conduct risk and vulnerability assessments to ensure that our information remains secure.

The Role: The Information Security Incident Response Lead is responsible for the management, operation and direction of the incident response program, related process development, and improvement activities including security breach simulation exercises. This individual will perform and manage daily tasks associated with cyber incidents, investigations, threat intelligence, threat hunting, and simulation exercises. In addition, this individual will drive the development of new processes and procedures for gathering, handling, searching, and retrieving, digital and/or physical evidence concerning incidents. Ensure forensically sound procedures are documented. Provide guidance and assistance to the vulnerability threat management program. This individual will coordinate processes and collaborate with technology incident management, business continuity, disaster recovery, public cloud and product teams to ensure process continuity in planned simulation exercises to demonstrate cyber resilience in the event of a cyber-attack or breach. This position is based in our Chicago office.

 

Responsibilities 

  • Lead active investigations, respond to security incidents, and perform forensics on IT systems 
  • Lead the Security Incident Response Team (SIRT) to employ strategy, standards, processes and technology to detect, respond and recover from security incidents and to limit the impact of any such occurrence 
  • Guide/lead mitigation strategies for identified vulnerabilities and threats 
  • Monitor, analyze, and tune Intrusion Detection Systems (IDS) to identify security issues for remediation 
  • Assist with implementation of counter-measures or mitigating controls 
  • Work on continuous proactive/reactive investigations and response activities/initiatives 
  • Prepare incident reports of analysis methodology and results 
  • Develop and maintain Incident Response capabilities in public cloud environments 
  • Recognize potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information 
  • Develop monthly reporting dashboards and metrics on incidents and response capabilities 
  • Prepare executive summaries and conduct briefings on significant investigations 
  • Execute, develop and document incident handling guides and processes 
  • Analyze and tune security alerts and interpret events, as well as develop new alerts based on signatures and behavioral activities 
  • Developing the security event simulation program and conduct security event table top exercises at the global level 
  • Prioritizes events using existing tools to correlate data for the purposed of reducing false positives and detecting threat 


Requirements 

  • A bachelor’s degree and 4+ years’ experience in a security operations, security engineering, security analyst or incident response role 
  • Excellent communication skills and an understanding of application security fundamentals 
  • Ability to work in a fast-paced collaborative environment 
  • Strong analytical and problem-solving skills 
  • In-depth knowledge and experience with Intrusion Detection Systems and Vulnerability Management Systems. 
  • Experience with malware analysis and security incident response 
  • Ability to work in a fast-paced collaborative environment 
  • Experience with Network protocols (TCP/IP), network apps and services, sniffers, DLP, and understanding network security issues 
  • Experience with Host/System security issues including identifying, analyzing and mitigating security vulnerabilities and weaknesses (malicious code, implementation flaws, hardening, etc.). 
  • Experience maintaining incident records (writing threat and risk assessments). 
  • Must have a genuine curiosity or passion for information security investigations 


Preferred 

  • Experience with SOAR tools such as Demisto (Cortex™ XSOAR), Splunk Phantom, etc.
  • Relevant security certifications (CISSP, GIAC, Metasploit Pro, or CIPP)
  • Incident response or forensics consulting/in-house experience
  • Threat intelligence experience
  • Experience with Splunk
  • Experience with IR in public cloud environments
  • Experience deploying and using enterprise EDR products such asTanium, Cybereason, Crowdstrike, EnCase Cybersecurity, Fidelis, Damballa, FireEye, etc
  • Experience with intrusion prevention systems such as McAfee Network Security Manager, Sourcefire, or Palo Alto
Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
    • .NETLanguages
    • C#Languages
    • C++Languages
    • JavaLanguages
    • JavascriptLanguages
    • PythonLanguages
    • RubyLanguages
    • ScalaLanguages
    • SqlLanguages
    • D3JSLibraries
    • ReactLibraries
    • AngularJSFrameworks
    • ASP.NETFrameworks
    • Backbone.jsFrameworks
    • Ember.jsFrameworks
    • ExpressFrameworks
    • FlaskFrameworks
    • Node.jsFrameworks
    • PlayFrameworks
    • SpringFrameworks
    • Maria DBDatabases
    • MemcachedDatabases
    • Microsoft SQL ServerDatabases
    • MySQLDatabases
    • PostgreSQLDatabases

Location

22 W. Washington , Chicago, IL 60602

An Insider's view of Morningstar

What does your typical day look like?

Every day is a little different. Our team is focused on POC (Proof of Concepts). My work involves problem-solving, development and software design. I work on the Data collections team, currently most of this involves, on a high level, automating the process currently used to collect data from raw sources through Machine Learning.

Upasna

Software Engineer, Data Collections - AI R&D

How does the company support your career growth?

We believe in promoting from within, based on previous impact to the team. Whenever possible, we will stretch our employees to take on expanded roles that aligns with the career progression they are interested in.

Jeff

Head of Technology and Product

What are Morningstar Perks + Benefits

Morningstar Benefits Overview

At Morningstar, your contributions have meaning and can drive change. Across our 27 offices worldwide, we’ve invested in fostering a community where talented, driven people can grow. Our entrepreneurial spirit and uncompromising ethics guide everything we do. It’s all in the name of empowering investors. Morningstar is proud to offer a comprehensive benefits package to eligible, full-time employees in the United States who work a minimum of 30 hours per week. Our benefits are designed to invest in your -- and your family's well-being, including investments in your health and financial future.

Culture
Volunteer in local community
Morningstar encourages our colleagues to become involved in their communities, by providing paid time off for volunteer activities.
Partners with Nonprofits
Friends outside of work
Eat lunch together
Intracompany committees
Daily stand up
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Open office floor plan
Diversity
Dedicated Diversity/Inclusion Staff
Unconscious bias training
Morningstar encourages unconscious bias training for all employees, especially managers and hiring personal. We believe that by raising awareness of bias we can decrease its effects.
Diversity manifesto
Someone's primary function is managing the company’s diversity and inclusion initiatives
Diversity Employee Resource Groups
Hiring Practices that Promote Diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Morningstar offers two Flexible Spending Accounts (FSA)— one for healthcare expenses and one for dependent care expenses. You may enroll in both $ determine the contribution amount.
Disability Insurance
Dental Benefits
Our dental plan covers 100% of preventive services, 80% of basic services, and 50% of major services.
Vision Benefits
With Morningstar's vision benefits you can get an annual eye exam with an in-network provider with just a $10 copay.
Health Insurance Benefits
Morningstar continues to offer the choice of two medical plans—the Savings Plan and the Classic Plan. Both are administered by Blue Cross and Blue Shield of Illinois (BCBS).
Life Insurance
Morningstar offers 4 tiers of life insurance that offer varying benefits. Basic Life insurance is equal to 1 times an employee's annual salary.
Wellness Programs
Mental Health Benefits
Our insurance covers 80% on in-network mental health services. Our Employee Assistance Program provides no-cost, confidential, 24-hour counseling on a wide variety of issues.
Retirement & Stock Options Benefits
401(K)
Take advantage of a number of Morningstar tools to help you manage your 401(k) account and your finances, including Morningstar Retirement Manager, available to you at no cost.
401(K) Matching
Morningstar provides employees with a 401(k) matching plan managed. We match $0.75 for every dollar contributed, up to a maximum of 7% of employee pay contributed to the plan each pay period.
Company Equity
Morningstar’s global employee equity benefit, Shared Ownership, enables you to take a portion of your bonus payout and exchange it for RSUs, with Morningstar providing an additional 50% match.
Employee Stock Purchase Plan
Colleagues who exceed their performance goals substantially may be eligible for Impact RSU Awards as an additional reward on top of their cash bonus/commission award.
Performance Bonus
Match charitable contributions
Morningstar's Matching GIfts program will match your charitable giving up to the local currency equivalent of $500 USD per calendar year.
Child Care & Parental Leave Benefits
Child Care Benefits
Morningstar offers the option of in-home child and elder care, in addition to the existing day care center back-up care benefit.
Generous Parental Leave
Morningstar has a global minimum of 6 weeks paid time-off to bond with new family members. This benefit applies to all individuals equally, including birth mothers, fathers, adoptive parents.
Flexible Work Schedule
Morningstar provides employees with a flexible work schedule that includes Summer hours, Work from home, Flexible start and end times.
Remote Work Program
The safety of our employees is very important to us. We have been operating remotely due to COVID-19.
Family Medical Leave
Eligible employees may take up to 12 weeks of job-protected, unpaid leave per year for certain specified reasons, and up to a total of 26 workweeks of leave to care for a family member.
Adoption Assistance
We reimburse up to 80% for eligible adoption expenses, up to $4,000 per adoption, in addition to a minimum of 6 weeks paid time off.
Return-to-work program post parental leave
Company sponsored family events
Morningstar sponsors family oriented events Annually.
Vacation & Time Off Benefits
Unlimited Vacation Policy
Generous PTO
Paid Volunteer Time
Our employees receive 2 days per year of paid volunteer time.
Sabbatical
Paid Holidays
Paid Sick Days
Perks & Discounts
Casual Dress
Commuter Benefits
Company Outings
Some Meals Provided
Happy Hours
Parking
Recreational Clubs
Fitness Subsidies
Professional Development Benefits
Job Training & Conferences
Tuition Reimbursement
Diversity Program
Lunch and learns
Cross functional training encouraged
Promote from within
Mentorship program
Continuing Education stipend
Time allotted for learning
Online course subscriptions available
Customized development tracks
Paid industry certifications

Additional Perks + Benefits

Compensation at Morningstar is more than a salary. It’s about making positive contributions to both life and work. We give our diverse workforce the choice and flexibility they need to maintain their health, retirement plans, time, and professional growth.

More Jobs at Morningstar67 open jobs
All Jobs
Finance
Data + Analytics
Design + UX
Dev + Engineer
Internships
Marketing
Operations
Product
Project Mgmt
Sales
Finance
new
Chicago
Developer
new
Chicago
Developer
new
Chicago
Internships
new
Chicago
Product
new
Chicago
Project Mgmt
new
Chicago
Product
new
Chicago
Developer
new
Chicago
Developer
new
Chicago
Operations
new
Chicago
Developer
new
Chicago
Developer
new
Chicago
Developer
new
Chicago
Sales
new
Chicago
Developer
new
Chicago
Developer
new
Chicago
Developer
new
Chicago
Developer
new
Chicago
Data + Analytics
new
Chicago
Design + UX
new
Chicago
Design + UX
new
Chicago
Marketing
new
Chicago
Developer
new
Chicago
Finance
new
Chicago
Finance
new
Chicago
Developer
new
Chicago
Project Mgmt
new
Chicago
Design + UX
new
Chicago
Finance
new
Chicago
Project Mgmt
new
Chicago
Product
new
Chicago
Operations
new
Chicago
Developer
new
Chicago
Data + Analytics
new
Chicago
Data + Analytics
new
Chicago
Developer
new
Chicago
Data + Analytics
new
Chicago
Internships
new
Chicago
Developer
new
Chicago
Marketing
new
Chicago
Data + Analytics
new
Chicago