OneMain Financial Jobs

Junior Threat Intelligence analyst

Are you passionate about leading global Cybersecurity innovation and change? Do you thrive in environments that encourage critical thinking, creativity, and challenging the status quo?

Detection and Response team is looking for an analyst for a hybrid role with involvement in Threat Hunting and Detection Engineering. In this role, you will assist in identifying and analyzing security threats through proactive threat hunting and monitoring of network activity. You will support detection engineering efforts by helping to develop and implement detection rules, that will help identify and defend the company infrastructure against cyber threat actors.

This position allows insight into various aspects of cyber security and exposes the engineer to a multitude of state-of-the-art security tools. As such, this position is a great base for further professional growth in many directions.

Duties and Responsibilities

· Assist in identifying and analyzing potential security threats by monitoring network traffic and system logs for unusual activity.

· Conduct proactive threat hunting to discover security threats that may have bypassed existing defenses.

· Collaborate with senior analysts to help develop and implement detection rules and alerts within security tools and platforms.

· Assist in evaluating vulnerabilities in systems and applications to recommend improvement measures.

· Maintain clear and detailed documentation of findings, methodologies, and response actions for learning and knowledge-sharing purposes.

· Stay current with the latest cybersecurity trends and emerging threats, adapting skills and knowledge accordingly.

· Work closely with the cybersecurity teams to share insights and enhance overall threat detection and response capabilities.

· Provide technical assistance and support related to cybersecurity incidents and threats, ensuring a proactive approach to safeguarding assets.

Key Requirements

· Bachelor’s degree in Cybersecurity, Computer Science, or equivalent experience.

· 1+ years of experience in Information Security or Information Technology fields.

· 1+ years of experience in Threat Intelligence.

· Experience with SIEM and EDR solutions.

· English language proficiency

· Good technical knowledge of Windows operating systems and networking.

· Analytical skills in threat, vulnerability, and intrusion detection analysis.

· Keen understanding of threat vectors as well as exfiltration techniques.

· Awareness of cyber security landscape.

· Willingness to learn.

· Customer-oriented mindset.

We value

· Experience with Splunk Enterprise Security.

· Knowledge in cloud security (Azure, AWS, MS Office 365).

· Knowledge of Linux operating system.

· Experience with dynamic and static malware analysis

· One or more widely recognized certifications from renowned institutions such as GIAC/SANS, ISC/CISSP or Microsoft.

· Working knowledge of Endpoint Detection and Response tools (e.g., Crowdstrike Falcon, Carbon Black, FireEye HX or Windows Defender ATP).

· Knowledge of scripting in Python or Powershell.

· Understanding of ITIL process, such as Incidents, Change & Problem management.

· Experience in working in a global, process-driven organization.

Honeywell helps organizations solve the world's most complex challenges in automation, the future of aviation and energy transition. As a trusted partner, we provide actionable solutions and innovation through our Aerospace Technologies, Building Automation, Energy and Sustainability Solutions, and Industrial Automation business segments – powered by our Honeywell Forge software – that help make the world smarter, safer and more sustainable.

Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status.