Job Description:

Company Description

At the heart of what we do is help clients manage risk. Verisk (Nasdaq: VRSK) provides data and insights to our customers in insurance, energy and the financial services markets so they can make faster and more informed decisions.

Our global team uses AI, machine learning, automation, and other emerging technologies to collect and analyze billions of records. We provide advanced decision-support to prevent credit, lending, and cyber risks. In addition, we monitor and advise companies on complex global matters such as climate change, catastrophes, and geopolitical issues.

But why we do our work is what sets us apart. It stems from a commitment to making the world better, safer and stronger.

It's the reason Verisk is part of the UN Global Compact sustainability initiative. It's why we made a commitment to balancing 100 percent of our carbon emissions. It's the aim of our "returnship" program for experienced professionals rejoining the workforce after time away. And, it's what drives our annual Innovation Day, where we identify our next first-to-market innovations to solve our customers' problems.

At its core, Verisk uses data to minimize risk and maximize value. But far bigger, is why we do what we do.

At Verisk you can build an exciting career with meaningful work; create positive and lasting impact on business; and find the support, coaching, and training you need to advance your career.We have received the Great Place to Work Certification for thefifth consecutive year. We've been recognized byForbesas a World's Best Employer and a Best Employer for Women, testaments to our culture of engagement and the value we place on an inclusive and diverse workforce.Verisk's Statement on Racial Equity and Diversity supports our commitment to these values and affecting positive and lasting change in the communities where we live and work.

Job Description

Verisk is seeking a Manager, Cyber Security - Incident Response to lead the continued evolution of Verisk's Cyber Incident Response program.This is a technical role involving all aspects of incident response. Successful candidates will be capable of performing in-depth root cause analysis on complex incidents including but not limited to malware, system intrusions, and user/system behavior events individually and as part of a team.

Reporting to the AVP, Cyber Threat Management within the Enterprise Risk & Compliance group, you will be responsible for leading the Threat and Incident Response team, with overall accountability for timely and appropriate response to security alerts, threats and incidents. This is a key role as it is one of the main lines of defense of the organization.

You will have the opportunity to lead a cross-functional team responsible for both the day to day security event and incident management, as well as handling major incident response through the entire incident lifecycle, including conducting postmortem meetings and following improvement actions to completion.You will lead technical staff through incidentas well as brief senior leaders, all while maintaining confidentiality.

The responsibilities of this role are:

• Support the Enterprise Incident Response Program by identifying and responding to potential information security incidents; manageall aspects of incident response from identification to resolution to postmortem follow-up.


• Proactively hunt for potential threats and intrusions to Verisk systems.


• Deploy and support information security systems and solutions such as SIEM, UBA, IRP platforms.


• Define and maintaindashboards and metrics that support the threat management team's initiatives.


• Apply a formal structured methodology to guide an incident through its lifecycle with a consistent level of quality.


• Develop and present accurate and timely information to stakeholders outlining proper technical solutions, recommendations, and accurate conclusions.


• Demonstrated ability to communicate complex subjects regarding strategic and tactical processes of incident response to stakeholders of varying technical levels.*

Qualifications

• Proven skills in various elements of incident response including but not limited to computer intrusion investigations and digital forensics in enterprise environments.


• Proficiency with leading EDR platforms as well as familiarity with forensic analysis tools.


• Advanced understanding of information security governance concepts including security incident response plans, incident management, and incident lifecycle.


• Strong understanding of attacker methodologies including attack lifecycle, cyber kill chain, and the ATT@CK framework.


• Capable of working independently as well as providing leadership during incident response scenarios.


• Thorough understanding of network protocols, network devices, computer security, and secure architecture in support of intrusion investigations and computer forensics.


• Working experience with virtualization and cloud environments.


• Experience in Windows and Linux operating systems.


• Excellent written and verbal communication skills.


• Knowledge and experience with enterprise Windows and Linux environments including Active Directory and Exchange preferred.


• Minimum of one industry-related certification (SANS, OffensiveSecurity, or PenTesterAcademy)


• Preferred certifications are GCIH, GCFA, GCFE, GREM, CISSP.


• Networking, Cloud, and other certifications a plus.


• Experience with incident documentation and automation tools is a must, as well as experience with multiple aspects of incident response.

#LI-JB1

Additional Information

Verisk Analytics is an equal opportunity employer.

All members of the Verisk Analytics family of companies are equal opportunity employers. We consider all qualified applicants for employment without regard to race, religion, color, national origin, citizenship, sex, gender identity and/or expression, sexual orientation, veteran's status, age or disability.

http://www.verisk.com/careers.html

Unsolicited resumes sent to Verisk, including unsolicited resumes sent to a Verisk business mailing address, fax machine or email address, or directly to Verisk employees, will be considered Verisk property. Verisk will NOT pay a fee for any placement resulting from the receipt of an unsolicited resume.

Consumer Privacy Notice

Apply Now