Cyber Risk Detection Engineer

at Global Atlantic Financial Group
Boston, Massachusetts, United States

Pursuant to Company policy, all employees are required to be vaccinated for COVID-19 to access GA facilities.  Currently, most of our interviews will occur over video. All offices are currently open, and our employees are back 4 or 5 days a week in NY and 3 days a week in all other offices. If you have questions on this policy or the application process, please contact recruiting@gafg.com.

COMPANY OVERVIEW

Global Atlantic Financial Group is a leader in the U.S. life insurance and annuity industry, serving the needs of individuals and institutions. Global Atlantic is a majority-owned subsidiary of KKR, a leading global investment firm that offers alternative asset management across multiple strategies and capital markets solutions.

Global Atlantic is looking for a diverse team of talented individuals who reinforce our culture of collaboration and innovation. We are dedicated to the career development of our people because we know they are critical to our long-term success. Join our team and come grow with us. 

POSITION OVERVIEW

With the evolving sophistication of adversaries – seen through the growing threats from malware, ransomware, and zero-day vulnerabilities – no organization is immune from cyber-attacks. It is crucial to continuously assess and identify attack chain paths in order to eliminate critical vulnerabilities and detective control blind spots. Global Atlantic is expanding our offensive and defensive security strategy to more effectively respond to emerging threats.

As a Detection Engineer, you will be part of the Cyber Threat & Vulnerability team on the front lines of Global Atlantic’s proactive cyber defense efforts. The Purple Team will be responsible for threat simulation, targeted threat hunting exercises, advanced detection analytics, and attack research. The position requires a high level of curiosity that enables the Purple Team to validate the impact of exploitable vulnerabilities on the network and develop methods to better identify attacker tactics, techniques, and procedures (TTPs) using a variety of information available from Global Atlantic’s security solutions.

Primary Responsibilities:

  • Collaborate with the Purple Team Offensive Security Engineer to conduct advanced and continuous adversary simulation exercises on company’s information systems and business process to identify deficiencies in security safeguards; and develop reliable detection mechanisms for new attack techniques that could go undetected in Global Atlantic's environment. 
  • Preemptively identify undiscovered threats and vulnerabilities before real threat actors attempt to exploit them within Global Atlantic’s internal/external networks and web applications
  • Proactively identify prevention and detection opportunities in response to new attack vectors
  • Compile findings and recommendations related to threat prevention or detection for Global Atlantic’s Information Security Risk Repository and present them to stakeholders and executive management
  • Remain updated on bleeding-edge threat intelligence, security technologies, news, vulnerabilities, and exploits

 QUALIFICATIONS

Required Candidate Skills and Knowledge

  • Bachelor’s degree in Network or System Engineering/Administration, Information Assurance and Security, or other related fields, and a minimum of four (4) years’ experience in Offensive and/or Defensive Security positions; or an equivalent combination of education and experience (ex. Associate’s degree and six years of experience)
  • In-depth knowledge of the TCP/IP protocol suite, routing, and switching fundamentals
  • Foundational understanding of critical network protocols and services, such as DNS, DHCP, and HTTP
  • In-depth knowledge of the OSI model and the corresponding layers
  • Advanced proficiency in Windows and Active Directory administration
  • Intermediate proficiency in *nix operating system administration
  • Advanced understanding of system hardening and security best practices
  • Familiarity with Cyber Kill Chain and ATT&CK Framework concepts
  • Advanced knowledge in common penetration testing suites and tools found in Linux security distros (ex. Kali Linux), such as Nmap, Metasploit, Burp Suite, Empire, Impacket, and CrackMapExec
  • Ability to understand and code in high-level scripting or programming languages, such as PowerShell, C#, Python, Ruby, and Java
  • Complex problem-solving and analytical skills; strong troubleshooting skills and attention to detail
  • Ability to present complex information in a clear and concise manner verbally and in writing to audiences of varying technical expertise
  • Ability to work independently in a proactive and self-directed manner; ability to work collaboratively with others on the Cyber Threat & Vulnerability team

 Preferred Knowledge and Experience

  • At least two (2) years of prior security consulting experience in client-facing roles performing penetration testing, red team exercises, or digital forensics investigations; or at least two (2) years of prior experience working in a Security Operations Center (SOC) with a focus on detection engineering and incident response preparedness
  • Knowledge of AWS, Microsoft Azure, Oracle Cloud, or Google Cloud services and available detective controls
  • Familiarity with the NIST Cybersecurity Framework and CIS Critical Security Controls
  • Certifications preferred – Comp TIA (Network+ / Security+ / CySA+ / PenTest+), GIAC (GSEC / GCIH / GPEN), CEH, OSCP, SSCP
  • Knowledge of insurance companies and the financial service sector is a plus.

#LI-AM1

 

TOTAL REWARDS STATEMENT  

Global Atlantic’s total rewards package is reflective of our corporate values, particularly diversity, excellence and innovation, with a focus on inclusion, pay equity, and flexibility. We are proud to support your personal and professional growth and well-being through programs such as educational assistance, virtual physical therapy, remote/onsite fitness reimbursement, a medical second opinion program, pet insurance, military leave, parental leave, adoption assistance, fertility and family planning coverage. We strive to foster a culture of total well-being through community outreach and charitable giving programs.

We are active in our communities-

  • New York: Red Hook Conservancy, Girls Who Invest and The Bowery Mission
  • Boston: Cradles to Crayons, Project Bread, Let’s Get Ready, Rise Against Hunger, Salvation Army and many other local volunteer organizations in around the Boston area
  • Hartford: Habitat for Humanity, Foodshare, Humane Society, Hands on Hartford, Mercy Shelter and Dog Star Rescue
  • Indianapolis: Elevate Indianapolis, Gleaners Food Bank and the Juvenile Diabetes Research Foundation
  • Batesville: American Cancer Society Relay for Life, Angels of Giving, Margaret Mary Health Foundation, Ripley County Community Foundation, Safe Passage, Batesville High School Sponsorships, local area youth sports and food pantries, as well as many others
  • Des Moines: United Way, Central Iowa Shelter & Services, Junior Achievement of Central Iowa and Make a Wish Foundation
  • Berwyn: Food drive and will be planning an event to help a local family over the holidays
  • Atlanta: Packaged Good Organization, which helps the most vulnerable community members with providing personalized care packages for people in need including the elderly, our armed forces, the homeless and hospitalized kids
  • Bermuda: Sponsor of a weekly feeding program operated by The Hamilton Seventh-Day Adventist Church

Social platforms provide an environment to collaborate with others and participate in friendly competitions towards achieving physical, emotional and financial well-being. Our highly competitive health, retirement, life and disability plans can be tailored to best suit your needs and those of your whole family.

Global Atlantic is committed to creating an inclusive environment where everyone can meaningfully contribute to our success. We are proud to be an equal opportunity employer and we do not discriminate in employment on any basis that is prohibited by federal, state or local laws.  More than that, we strive to be inclusive of all backgrounds and experiences, which we feel gives us a competitive advantage in the market and within our firm.  All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, disability, age, or veteran status.

Employees who require an accommodation to perform the essential functions of their job will participate in an interactive process which may include providing documentation. If you are hired and require an accommodation for any protected status, please email benefits@gafg.com.

Global Atlantic Financial Company Employee Candidate Privacy Notice

Example: 

32 Longview Lane

West Hartford, CT 06107

Voluntary Inclusion Questions

We encourage qualified applicants from all backgrounds to apply.  As such, we are committed to achieving a diverse candidate pool for open positions and that our interview teams are made up of employees from different backgrounds.  Sharing your background with us will help us with that focus, although recruiters and hiring managers will not have the ability to see individual responses (only aggregate information).  

This information is not used to determine who is selected for interviews or will be hired, but is helpful in identifying resources, sites and groups which add value in increasing our applicant pool and ensures that we attract the best and most diverse workforce.  This is purely voluntary but will help our mission to be inclusive.  

 

Which category below best describes you (please select only one):
How do you currently describe your gender identity? (please select only one)
Have you been diagnosed with any disability or impairment? (please select only one)
Do you identify as a veteran or as being or having been a member of the military? (please select only one)
Do you consider yourself a member of the Lesbian, Gay, Bisexual, Trans or Queer (LGBTQ+) community? (please select only one)
Which of the following best describes your education status? (please select the one option that fits you best)