Sign upLog in

Information Security Analyst

Ryan Specialty Group

Chicago, Illinois

Apply
JOB DETAILS
SKILLS
Access Control, Analysis Skills, Auditing, Best Practices, Cloud Computing, Computer Networks, Computer Science, Computer Security, Cryptography, Documentation, Endpoint Security, Enterprise Protection, Forensic Science, Incident Response, Industry Standards, Industry/Trade Analysis, Information Technology & Information Systems, Information/Data Security (InfoSec), Insurance, Internet Security, Intrusion Detection Systems, Machine Tool, Maintain Compliance, Malware Analysis, Microsoft Certifications, Microsoft Product Family, Network Monitoring, Network Security, Performance Analysis, Policy Development, Procedure Development, Regulatory Compliance, Regulatory Requirements, Risk, Risk Analysis, Root Cause Analysis, Scripting (Scripting Languages), Security Analysis, Security Attacks, Security Auditing, Security Information and Event Management (SIEM), Security Infrastructure, Security Monitoring, Software Engineering, Systems Administration/Management, Systems Analysis, Time Management, Training/Teaching
LOCATION
Chicago, Illinois
POSTED
6 days ago
Position Summary
Ryan Specialty is looking for an Information Security Analyst to join our Chicago team. This role will be responsible for monitoring our computer networks for security issues, investigating incidents, handling tickets and documenting any security issues or events. This may involve testing, log analysis, interacting with vendors and partners, automation and scripting, or systems administration tasks.

What will your job entail?

Job Responsibilities
  • Supports in developing security policies, procedures, and standards for the insurance industry, ensuring alignment with best practices, regulatory requirements, and data protection laws.
  • Conducts risk assessments to identify and evaluate potential security risks and vulnerabilities within the insurance infrastructure, including systems, networks, and applications.
  • Manages and responds to security incidents, conducts forensic analysis to determine root cause, gathers evidence, contains incidents, and implements preventive measures to avoid recurrence.
  • Performs security audits and compliance assessments to ensure the effectiveness of security controls, responds to audit findings, and maintains adherence to regulatory requirements and industry standards.
  • Conducts security assessments of third-party vendors and service providers, reviewing their security practices, contracts, and risk posture to ensure the secure handling of company data.
  • Implements and manages security monitoring tools and intrusion detection systems to detect and respond to potential security threats in real time.
  • Monitors the IT Security environment to detect, validate, and respond to cyber threats. Assists in incident response activities such as host triage, malware analysis, remote system analysis, end-user interviews, and remediation efforts.
  • Leverages enterprise security platforms such as endpoint detection and response (EDR) and SIEM solutions (e.g., CrowdStrike, Microsoft Defender, Microsoft Sentinel) to investigate alerts, correlate events, and enhance threat detection capabilities.
  • Prepares and delivers accurate and timely reports on security incidents and resolutions, and recommends improvements to enhance the overall security posture in the insurance environment.
  • Stays up to date with the latest security threats, vulnerabilities, and industry trends, sharing knowledge with the information security team and stakeholders.
  • Conducts security awareness training sessions for employees, promoting best practices and fostering a culture of security awareness.
  • Collaborates with IT teams to implement security controls including access management, endpoint protection, and encryption to safeguard data and systems against unauthorized access and misuse.
Preferred Technical Experience
  • Experience with one or more of the following tools is strongly preferred:
    • CrowdStrike Falcon (EDR/XDR)
    • Microsoft Defender suite (Defender for Endpoint, Defender for Cloud, etc.)
    • Microsoft Sentinel (SIEM / SOAR)
  • Familiarity with:
    • Log analysis and correlation
    • Security monitoring and alert triage
    • Incident response workflows and tooling

Work Experience and Education
  • Bachelor's degree required; Computer Science, Software Engineering, Information Technology, or related field preferred.
  • 1+ year of experience in Information Security, Security Operations, or related IT roles preferred.
  • Hands-on or academic experience with security tools such as SIEM, EDR, or XDR platforms is preferred.
  • *****Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment visa at this time*****

Licenses & Certifications
  • Microsoft Security certifications (e.g., SC-200, SC-300) or CrowdStrike certifications are a plus.

Ryan Specialty is an Equal Opportunity Employer. We are committed to building and sustaining a diverse workforce throughout the organization. Our vision is an inclusive and equitable workplace where all employees are valued for and evaluated on their performance and contributions. Differences in race, creed, color, religious beliefs, physical or mental capabilities, gender identity or expression, sexual orientation, and many other characteristics bring together varied perspectives and add value to the service we provide our clients, trading partners, and communities. This policy extends to all aspects of our employment practices, including but not limite

About the Company

R

Ryan Specialty Group

Resume Resources

Free Resume TemplatesFree Resume Builder