Security Engineer, Purple Team

At HUB International, we are a team of entrepreneurs. We believe in protecting and supporting the aspirations of individuals, families, and businesses. We help our clients evaluate their risks and develop solutions tailored to their needs. We believe in empowering our employees to learn, grow, and make a difference. Our structure enables our teams to maintain their own unique, regional culture while leveraging support and resources from our corporate centers of excellence. 

HUB is the 5th largest global insurance and employee benefits broker, providing a boundaryless array of business insurance, employee benefits, risk services, personal insurance, retirement, and private wealth management products and services. With over $5 billion in revenue and almost 20,000 employees in 600 offices throughout North America, HUB has grown substantially, in part due to our industry leading success in mergers and acquisitions. 

Job Description

In this role, you will manage multiple aspects of information security operations, response, and engineering.  This position will contribute to a team focusing on the included, but not limited to, incident response, playbook development and execution, operational engineering, attack surface discovery and mitigation, as well as being a key participant within Information security program.  They will work in close collaboration with all HUB IT teams to design and support effective Information Security Operations for Hub International.

Objectives of this Role

• Manages and is responsible for the successful completion of all tasks in assigned projects.
• Contribute to Security Operations and Engineering Team focused on maintaining the security integrity of HUBs’ mission critical suite of applications.
• Available 24/7 for any critical security incident response that may arise which requires immediate resolution.
• Work to ensure security tooling within HUB environments are operational and operating at needed levels of service and availability.
• Contribute to practice continuous improvement in response playbooks and security tooling.
• Develop surface attack discovery, reporting, and mitigation.
• Assess and develop risk models with regards to; Identity, Data, Attack Surface
• Maintains current knowledge of relevant information security technology and techniques, bringing forth ideas for modernization and improvement.
• Ensure operational practices provide a sound foundation that utilizes tools and processes for rapid identification of security events to address and mitigate risks.
• Engage with peers regularly on security operations functions, project status, activities, and achievements.
• Contribute to “Continuous Improvement and Posture Management” efforts, in respect to HUB’s information security tooling and systems.
• Assist in Plan, organize, and execute multiple responsibilities to achieve project goals and provide technical leadership to move operational projects to completion.
• Contribute to security requirements, standards, procedures, and reference architectures to comply with policies and technical standards.

Daily and Monthly Responsibilities

• Evaluation of vulnerability analysis, endpoint, and security tooling packages to ensure acceptable levels of efficacy are met.
• Assist in evaluation of vulnerability analysis reporting and validation.
• Contribute in root-cause analysis for security incidents and events, establish preventive measures, mitigations, or remediations.
• Contribute to weekly and monthly posture and attack surface reporting.
• Contribute to the analysis and recommendation of upgrades, changes, implementation specific to the support and scaling of HUB’s security operations.
• Support the HUB Information Security Governance & Compliance team as needed during risk assessments, internal and external Information Security Audits, and Vendor reviews

Skills and Qualifications

• Bachelor’s degree in technology or applicable experience.
• Related certifications (e.g., GSEC, CISSP, GIAC, AWS) preferred.
• 5+ Years of experience within information security operations in multiple roles.
• 3+ years of experience with cloud infrastructure (AWS, GCP, Azure) and O365 services and technology
• 3+ years of experience with security incident response and operations
• 2+ years of experience defining, refining, and driving efficiency in operational processes.
• Extensive experience with, but not excluded to: TCP/IP, DNS, WAF, SEIM, and SOAR technologies.
• Experience in developing asset risk model(s); Identity, Data, Attack Surface
• Experience in developing and implementing CART capabilities.
• Experience working with and managing Active Directory / MS Entra ID
• Experience with KQL and SPL or other Query Languages
• Experience with powershell, python, and shell scripting
• Knowledge of information security standards, principles, and practices required.
• Knowledge of industry security standards, guidelines, and regulatory/compliance requirements related to information security such as ISO 27001, NIST 800-53, SOC2, PCI, SOX, etc.
• Prioritization, decision making, critical thinking, communication, and relationship building skills
• Ability to work independently and in a team environment.
• This position reports into Chicago and can be based anywhere in the U.S. (i.e. remote/virtual)
• Willingness to travel up to 10% of working time

Location: Flexible / Remote

JOIN OUR TEAM 

Do you believe in the power of innovation, collaboration, and transformation?  Do you thrive in a supportive and client focused work environment?  Are you looking for an opportunity to help build and drive change in a rapidly growing and evolving organization?  When you join HUB International, you will be part of a community of learners and doers focused on our Core Values: entrepreneurship, teamwork, integrity, accountability, and service. 

Disclosure required under applicable law in California, Colorado, Illinois, Maryland, Minnesota, New York, New Jersey, and Washington states: The expected salary range for this position is $120K to $130K and will be impacted by factors such as the successful candidate’s skills, experience and working location, as well as the specific position’s business line, scope and level. If you believe that your qualifications and experience surpass the minimum requirements for this role, we encourage you to submit your application. By doing so, we will be able to keep your application on file for consideration for potential future positions within our organization. HUB International is proud to offer comprehensive benefit and total compensation packages which could include health/dental/vision/life/disability insurance, FSA, HSA and 401(k) accounts, paid-time-off benefits such as vacation, sick, and personal days, and eligible bonuses, equity and commissions for some positions.

HUB International Limited is an equal opportunity employer that does not discriminate on the basis of race/ethnicity, national origin, religion, age, color, sex, sexual orientation, gender identity, disability or veteran's status, or any other characteristic protected by local, state or federal laws, rules or regulations.

E-Verify Program

We endeavor to make this website accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact the recruiting team HUBRecruiting@hubinternational.com. This contact information is for accommodation requests only; do not use this contact information to inquire about the status of applications.