Sr. Cyber Security Analyst – Incident Response

About

There is a place for you at T. Rowe Price to grow, contribute, learn, and make a difference. We are a premier asset manager focused on delivering global investment management excellence and retirement services that investors can rely on today and in the future. The work we do matters. We invite you to explore the opportunity to join us and grow your career with us.

We’re looking for a passionate and highly motivated professional to serve as a senior member of our Incident Response program. The Senior Cyber Security Analyst will use his or her experience and expert knowledge to defend our networks, systems, and data from attack. Understanding current tactics, techniques, and procedures used by adversaries, you will apply that knowledge to the investigation of cyber‑attacks, ensuring appropriate steps are taken to mitigate and remediate the threats. You will serve as an escalated contact working closely with others within our broader cyber and technology organizations to support our mission.

Responsibilities

• Accountable for all aspects of the cyber security analysis process, ensuring all steps required to investigate, mitigate, and remediate potential incidents are followed.
• Contribute to the development and improvement of cyber security standard methodologies within the group, working with leadership as necessary.
• Think critically, breaking down complex or vague problems and stepping through them in a rational way.
• Remain flexible in thinking; evolve solutions when additional information or ideas are presented.
• Make decisions and recommendations that distinguish between near‑term mitigation and required future investments.
• Identify when junior resources need help and provide mentoring in a positive way that promotes confidence.
• Articulate cyber security risk and translate it into practical solutions for technology teams.
• Maintain thorough knowledge of the cyber analysis program objectives and understand any potential impact actions may have on the broader business of the firm.

Requirements

• Typically 4+ years of relevant experience.
• Up‑to‑date with relevant cyber security threats and counter‑measures.
• Deep understanding of incident response processes and procedures.
• Commitment to quality by implementing suitable solutions.
• Deep understanding of TCP/IP, OSI model, and component and systems dependencies concepts.
• Familiarity with network forensics including PCAP analysis, network security, and IDS/IPS analysis.
• Utilizes Cyber Threat Intelligence and Cyber Security Awareness concepts to influence work.
• In‑depth understanding of Windows operating systems and general knowledge of Unix, Linux, and Mac operating systems.
• Knowledgeable with various security infrastructure tools such as firewalls, intrusion prevention/detection systems, proxy servers, email controls, anonymizing technology, and SIEM.
• Knowledgeable in cyber risk management frameworks, web application technologies, and network and systems forensics.
• Ability to investigate and analyze malicious code (basic static/dynamic analysis).
• Ability to work as part of a team, show initiative, and take on new tasks as assigned.
• Ability to perform risk analysis and communicate that risk to others.
• General understanding of AWS, Azure, and/or both cloud platforms.
• Preferred experience in a 24 × 7 global enterprise, preferably in the financial industry.
• Preferred certifications: SANS GIAC (GSEC, GCIA, GCIH, GCFA, etc.), CISSP, CEH, Security+, or similar information security certifications.
• Scripting experience, preferably Python and/or PowerShell.
• Splunk knowledge.
• General system administration experience.

Work Flexibility

• In MD office 2 days per week / 3 days remote or full remote.

FINRA Requirements

• FINRA licenses are not required and will not be supported for this role.

Commitment to Diversity, Equity, and Inclusion

We strive for equity, equality, and opportunity for all associates. When we embrace the power of diversity and create an environment where people can bring their authentic and best selves to work, our firm is stronger, and we create greater value for our clients. Our commitment and inclusive programming aim to lift the experience for each associate and builds allies for our global associate community. A sense of belonging is key not only to your success at the firm, but also to your ability to bring your best each day.

Benefits

• Competitive pay and bonuses as well as a generous retirement plan and employee stock purchase plan with matching contributions.
• Flexible and remote work opportunities.
• Health care benefits (medical, dental, vision).
• Tuition assistance.
• Wellness programs (fitness reimbursement, Employee Assistance Program).