Security Operations Analyst

Wellington Management Company, LLP
London, United Kingdom
03 Sep 2022
25 Sep 2022
Job Function
Industry Sector
Finance - General
Employment Type
Full Time

Wellington Management offers comprehensive investment management capabilities that span nearly all segments of the global capital markets. Our investment solutions, tailored to the unique return and risk objectives of institutional clients in more than 60 countries, draw on a robust body of proprietary research and a collaborative culture that encourages independent thought and healthy debate. As a private partnership, we believe our ownership structure fosters a long-term view that aligns our perspectives with those of our clients.

We are transitioning to a hybrid work environment where both remote work and the office play a critical role. Our vision is a future where all employees are empowered to work flexibly to drive the best outcomes for our clients. Flexible work is a mindset and a core value. Our employees are encouraged to work remotely two days a week as a standard practice and will have flexibility in terms of working hours.

At Wellington Management our appetite for technology is insatiable. We recognize that the world is full of fascinating questions that will impact the future of companies, economies, financial markets, and entire industries. We want you to help us find answers to these questions by building and evolving our innovative, industry leading, technology platform. We are seeking qualified candidates to join our expanding technology team. Together, you will not only dream up solutions to today's investment challenges, but you will build them to see real-life results. Technology needs are advancing, and this level of complexity requires a highly sophisticated well-managed technology platform that is built by people like you. This is your chance to build something incredible. We want you to think big, to solve challenges, and positively impact our clients.


The Cyber Defense Team is looking for a Core Systems Analyst to perform information security-related investigations and incident response processes. This analyst will be responding to alerts, hunting through logs, tracking industry threats, and seeking to uncover abnormal patterns. Investigations are triggered by alerts, threat hunting, or via threat intelligence received from information sharing organizations. Incident response processes may be executed based on the severity of the findings from these investigations. Our Cyber Defense Team's primary mission is to understand the normal and to continuously seek out and investigate the abnormal looking for areas of exposure and working with business and technical teams to understand and refine processes and controls.

  • Triage alerts, data feeds, dashboards, and other indicators to identify anomalies that may warrant further investigation
  • Gather and analyze data through SIEM log aggregation tool, performing independent analysis to look for indications of compromise or exposure.
  • Ability to understand and interpret indicators of potential threat activity
  • Stay up to date with current and relevant cyber security threats as well as any associated countermeasures
  • Engage with other teams as appropriate, either a result of incident response, to build platform specific alerting, or to advocate for improvements to configurations or technologies
  • Provide root cause analysis and suggestions based on investigative findings to prevent reoccurrence
  • Participate in on-call rotation for escalated security events
  • Industry relevant experience (ex: Security Operations, Network Engineering, etc)
  • Understanding of common and relevant adversarial TTPs (common initial intrusion vectors, living off the land techniques, command and control, data exfiltration, etc.)
  • Knowledgeable with various security infrastructure tools such as firewalls, intrusion prevention/detection systems, proxy servers, email controls, anonymizing technology, data loss prevention, and SIEM (Splunk)
  • Breach detection / endpoint forensics tools such Carbon Black, Mandiant
  • Strong understanding of common communication protocols, networking fundamentals and the necessary tools to analyze network activity
  • Ability to understand and interpret indicators of potential threat activity
  • Scripting experience, preferably Bash, Python, and/or Powershell
  • Strong analytical, decision-making, and investigative skills
  • Ability to self-motivate, often operating independently from co-workers
  • Ability to work with global teams effectively
  • Excellent written and verbal communication skills
  • Ability to work in a team-oriented, fast-paced environment
  • Aptitude to provide innovative solutions to problems
  • Attentive to detail and self-disciplined
  • Exposure to User Behavior Analytics tools
  • Working knowledge of Amazon AWS services
  • Experience with Breach Attack Simulation tools
  • Relevant industry certification (GCIA, OSCP, etc.)
Not sure you meet 100% of our qualifications? That's ok. If you believe that you could excel in this role, we encourage you to apply and welcome a chance to review your background. We are dedicated to building and maintaining a diversified workforce and considering a broad array of candidates with a variety of skill, workplace experiences, and backgrounds.

As an equal opportunity employer, Wellington Management ensures that all qualified applicants will receive equal consideration for employment without regard to race, color, sex, sexual orientation, gender identity, gender expression, religion, creed, national origin, age, ancestry, disability (physical or mental), medical condition, citizenship, marital status, pregnancy, veteran or military status, genetic information or any other characteristic protected by applicable law . If you are a candidate with a disability, or are assisting a candidate with a disability, and require an accommodation to apply for one of our jobs, please email us at .

Similar jobs

Similar jobs

  • You need to sign in to save