Technical Consultant – Threat Management, Detection

About-Us

At Edward Jones, we help clients achieve their serious, long-term financial goals by understanding their needs and implementing tailored solutions. To ensure a personal client experience, we have located our 15,000+ branch offices where our more than 7 million clients live and work.

In a typical branch office, a financial advisor meets with clients and receives branch office support, so they can focus on building deep relationships with clients. Headquarters associates in St. Louis, Tempe and Mississauga provide support and expertise to help U.S. and Canada branch teams deliver an ideal client experience. We continue to grow to meet the needs of long-term individual investors.

Job-Overview

As a senior member of the Threat Management team (for detection/hunt), you are responsible to the Team Leader. You will engage the team in leading detection efforts as necessary, showcasing and teaching best practices, and serving as a technical SME when other members face challenges. You will conduct new business evaluations by researching new entities and logging capabilities that the Threat Management team may use to create new detections. You will assist with prioritizing hunting hypotheses and sharing your expertise to instill industry standard practices within the team, onboard new tooling, create documentation for workflows and repeatable processes, and employ automation where needed.

What You'll DO

This team member understands the value of tactical and operational threat intelligence as an input to detection prioritization, enjoys mentoring junior members of a team, is passionate, analytically curious, inquisitive, and flexible. You are eager to continue to learn through self-driven research, mentorship opportunities, and industry-leading training. You willingly offer mentorship and guidance to those on the team that are newer than you and help them to advance their technical understanding. You think more broadly about cyber security across Edward Jones and look for opportunities to partner and collaborate with purpose. You provide feedback and insights to your leader on opportunities to strengthen the program and actively adopt best practices to improve the overall cyber maturity and posture across the enterprise.

• Guide highly confidential and complex digital investigations promptly to fully understand and articulate what activity occurred.
• Review and ensure the quality of team members' work efforts and ensure they are complete and accurate, as well as meet required audit, regulatory, and legal reporting requirements.
• Develop relationships with external security organizations to maintain awareness of security issues and trends.
• Responsible to Team Leader for Threat Management and assist in designing and documenting processes used within the team.
• Ability to develop, document, and maintain custom detection queries.
• Assist with designing and developing automation as needed for team needs.
• Work with platform owners and Engineering to identify telemetry for threat detection opportunities in support of new business development of identified.
• Define and build a metrics portfolio representing the functional, risk, and threat aspects of the team and the work they do.
• Analyze malicious code, scripts, or exploits to identify potential detection telemetry generated at a host and/or network level.
• Maintain deep knowledge of the Edward Jones tech stack and changes that may impact analytic capabilities.
• Perform threat modeling of environments and platforms to identify gaps and threat detection opportunities in support of the new business.

Work with platform owners to identify telemetry required to support in-depth analysis and investigations

Skills-Requirements

What you'll need,,,

• Experience with hunting technologies such as Zeek and advanced query writing in at least one SIEM.
• Scripting experience in at least one language, preferably Python.
• Advanced knowledge and understanding of security issues, risks, concepts, and terminology.
• Experience with log analysis from multiple sources (e.g. firewall, IDS, proxy, authentication, endpoints, etc.) to identify trends and anomalies indicative of malicious activity.
• Minimum of 10 years of Information Systems Security experience, with at least 5 years in a SOC or working in Detection/Intel/Response.
• Strong interpersonal and organizational skills are needed to prioritize tasks and serve as a leader for enterprise security initiatives.
• Expert threat detection knowledge and intuition, including a deep understanding of how adversaries move through a network and how that translates into detection opportunities.
• Experience with Jupyter notebooks and use cases for Threat Intelligence and Detection.
• Experience with detections involving technologies such as cloud solutions, O365, and Kubernetes.
• Excellent written and verbal communication skills to describe security event details and technical analysis.
• Ability to evaluate threat intelligence to identify TTPs for detection opportunities.
• Bachelor's degree in Computer Science, Engineering, or Information Systems or related field preferred; or equivalent related work experience.

Problem-Solving:

• Expert threat detection knowledge and intuition, including a deep understanding of how malicious traffic appears over the network and at security devices.
• Self-motivated, ability to work and make decisions independently.
• Strong analytical skills are necessary to research security issues and apply appropriate solutions.

Decision Making:

• Individuals are expected to perform daily tasks autonomously based on a framework of documented policies and procedures and are responsible for the accuracy and timeliness of their work.
• Critical decisions require coordination, and leadership review prior to implementation.
• Core leadership skills are required to produce the best results by directing other's actions and influencing security decisions.
• Individuals are expected to resolve security issues while meeting the needs of the business or associate.

Span of Influence:

• Medium. After leader review, results of work may be communicated directly to, or be visible by firm leadership. Actions taken could affect regulatory compliance, system availability, Help desk call volume, and/or target dates relating to projects or enhancements.

Awards-Accolades

• Edward Jones scored 100 percent on the Human Rights Campaign Foundation's 2022 Corporate Equality Index (CEI) the nation's foremost benchmarking survey and report measuring corporate policies and practices related to LGBTQ+ workplace equality. The ranking designated Jones as one of the best places to work for LGBTQ+Equality.
• For the 23rd time, Edward Jones has earned a spot on the Fortune 100 Best Companies to Work For® ranking by Great Places to Work® and Fortune® magazine. Edward Jones ranked No. 35 on the prestigious 2022 list.
• 2022 Best Places to Work For LGBTQ+ Equality, Great Place to Work® in partnership with Human Rights Campaign Foundation, published Equity Magazine January 2022, data as of July 2021. Compensation provided for using, not obtaining, the rating.
• Edward Jones has been named to the 2022 Best Workplaces for Women list by Great Places to Work® and Fortune® magazine, ranking No. 45.
• 2022 Fortune's 100 Best Companies to Work For, published April 2022, research by Great Place to Work®, data as of August 2021. Compensation provided for using, not obtaining, the rating.
• 100 Best Workplaces for Millennials in 2022, published Fortune July 2022, Great Places to Work® data as of March 2022. Compensation provided for using, not obtaining, the rating.
• 2022 Fortune Best Workplaces for Women, published September 2022, research by Great Places to Work®, data as of August 2021. Compensation provided for using, not obtaining, the rating.
• Edward Jones was recognized as one of the Best Workplaces for Millennials by Great Places to Work® and Fortune® magazine. The privately held firm ranked No. 2 overall, in its fourth appearance on the list.

EEO

Edward Jones does not discriminate on the basis of race, color, gender, religion, national origin, age, disability, sexual orientation, pregnancy, veteran status, genetic information or any other basis prohibited by applicable law.

At Edward Jones, we value and respect our associates and their contributions, and we recognize individual efforts through a rewards program that promotes a long-term career, financial security and well-being. Visit our career site to learn more about our total compensation approach, which in addition to base salary, typically includes benefits, bonuses and profit sharing. The salary range for this role is based on national data and actual pay is based on skills, experience, education, and other relevant factors for a potential new associate: