Job Description

for Senior Security Analytics Engineer, Cloud SIEM & XDR

Who we are looking for

The State Street Cyber Architecture & Engineering team is looking for a Security Analytics Engineer, Cyber Data Science. The Cyber Data team delivers models, insights, and tooling to help Cybersecurity teams make faster, more informed decisions as we work to secure State Street's digital footprint. As a Security Analytics Engineer, you will develop the data flows, analytics pipelines, and production machine-learning systems -- in collaboration with data product managers, architects, engineers, and other team members -- to create analytics & ML-driven data products that support our mission to build predictive models and intelligent systems that help secure State Street's information and infrastructure. We have multiple openings for this role and it is open to candidates with varying levels of experience.

What you will be responsible for

As a Security Analytics Engineer, Cyber Data Science, you will:

• Use your understanding security data and analytics tools to wrangle our unique cybersecurity data and create analyses that point to the most significant business, governance, and risk management impacts.
• Use your deep expertise with Splunk & other modern SIEM technologies (Sentinel, Panther, GuardDuty, Elastic) expertise to understand data and provide solid analysis for driving and supporting a Cyber Threat Detection & Security Posture Analytics strategy
• Identify and help tackle log telemetry and implementation gaps
• Eventually participate on internal events and workshops sharing challenges and successes from the team
• Ensure that all documents, workflows and processes remain accurate and up-to-date
• Design and build petabyte scale systems for high availability, high throughput, data consistency, security, and end user privacy, defining our next generation of security analytics tooling
• You will mentor other engineers and promote software engineering best practices across the organization designing systems with monitoring, auditing, reliability, and security at their core.
• Come up with solutions for scaling data systems for various business needs and collaborate in a dynamic and consultative environment.

Education & Qualifications

Qualifications

• B.S., M.S., or PhD. in Computer Science or equivalent work experience
• 2+ years of experience with CS fundamental concepts and OOP languages like Java and Python
• 4+ years of experience configuring and building analytics workflows and pipelines using SIEM and XDR technologies in the cloud such as GuardDuty, Macie, Sentinel, Defender
• 6+ years of cybersecurity engineering and analytics experience and familiarity with SOC operations and incident response patterns
• Preferred 4+ years experience with cloud native SIEMs such as Sentinel, Devo, Panther, experience with KQL and LINQ highly desired
• Fluent in SPL (for writing queries and dashboards), KQL, and other security vendor languages
• Have worked as a lead technical analyst or engineer as part of a SOC, building and scaling analytic systems
• Able to perform advanced analytics and quickly generate insights from any security relevant data sources (Endpoint, Web Proxy, Firewall, etc)
• Have a good understanding of endpoint security products and telemetry
• Knowledge of IT architecture and operations (computing, network, storage & cloud) with a security certification and experience with frameworks like NIST, CMMC, OWASP, etc.
• Ability to work in an environment with a geographically dispersed team
• Software development and/or scripting experience a plus: Python, Perl, MySQL, etc.
• Knowledge and understanding of data organizing or structuring complex data across varied data sources
• Ability to reason about complex analyses incorporating sound statistical and mathematical principles
• Knowledge of the MITRE ATT&CK framework and its usage for improving threat detection and prevention capabilities and knowledge of APTs and commonly employed TTPs

Why this role is important to us

Our technology function, Global Technology Services (GTS), is vital to State Street and is the key enabler for our business to deliver data and insights to our clients. We're driving the company's digital transformation and expanding business capabilities using industry best practices and AI driven, digital-first customer experiences.

We offer a collaborative environment where technology skills and innovation are valued in a global organization. We're looking for top technical talent to join our team and deliver creative technology solutions that help us become an end-to-end, next-generation financial services company. Join us if you want to grow your technical skills, solve real problems and make your mark on our industry!

About State Street

What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation we're making our mark on the financial services industry. For more than two centuries, we've been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.

Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary in locations, but you may expect generous medical care, insurance and savings plans among other perks. You'll have access to flexible Work Program to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential.

Inclusion, Diversity and Social Responsibility. We truly believe our employees' diverse backgrounds, experiences and perspective are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome the candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift program and access to employee networks that help you stay connected to what matters to you.

State Street is an equal opportunity and affirmative action employer.

Discover more at StateStreet.com/careers