Your Growth You are someone who thrives in a high-performance environment, bringing a growth mindset and entrepreneurial spirit to tackle meaningful challenges that have a real impact.
In return for your drive, determination, and curiosity, we'll provide the resources, mentorship, and opportunities to help you quickly broaden your expertise, grow into a well-rounded professional, and contribute to work that truly makes a difference.
When you join us, you will have:
- Continuous learning: Our learning and apprenticeship culture, backed by structured programs, is all about helping you grow while creating an environment where feedback is clear, actionable, and focused on your development. The real magic happens when you take the input from others to heart and embrace the fast-paced learning experience, owning your journey.
- A voice that matters: From day one, we value your ideas and contributions. You'll make a tangible impact by offering innovative ideas and practical solutions. We not only encourage diverse perspectives, but they are critical in driving us toward the best possible outcomes.
- Global community: With colleagues across 65+ countries and over 100 different nationalities, our firm's diversity fuels creativity and helps us come up with the best solutions. Plus, you'll have the opportunity to learn from exceptional colleagues with diverse backgrounds and experiences.
- Exceptional benefits: In addition to a competitive salary (based on your location, experience, and skills), we offer a comprehensive benefits package, including medical, dental, mental health, and vision coverage for you, your spouse/partner, and children.
Your ImpactYou'll investigate various types of security incidents, develop and improve existing security workflows to standardize incident response, and you'll formulate incident response steps when a new unprecedented incident is reported to the SOC.
As a Senior Security Analyst, you'll work both collaboratively and independently to accomplish a variety of security tasks as well as projects. You'll collaborate with security engineers to create use cases and correlation alerts in the SIEM for continuous security monitoring, embark on specialized security projects to mature the capabilities of the security operations center, and mentor junior security analysts and train them in new security skills as required.
You'll write both technical and executive incident reports when called upon and you will be expected to continue learning and improving your security analysis skills to match the current technical security challenges and innovations.
You will work in our Boston, Massachusetts or San Jose, Costa Rica office as part of the Security Operations center and in collaboration with fellow security analysts, engineers and other IT security specialists.
The Security Operations Center (SOC) is McKinsey and Company's, internal security monitoring, detection and response organization tasked with the detection and response to threats on the McKinsey and Company network. The SOC is a 24/7 organization with teams in different geographical zones to ensure continuous operations and coverage of security monitoring, detection and response.
Your qualifications and skills- Bachelor's required or master's degree preferred in IT/computer science or service-management; military experience and/or equivalent experience
- 3+ years of experience in security monitoring and/or incident response
- Experience in two or more of the following security domains: digital forensics (computer, memory, network, cloud, virtualization), malware analysis (dynamic and static), reverse engineering, pen testing, network investigations, threat hunting, threat intelligence, security engineering, OSINT
- Awareness about security products and technologies, and/or networking protocols (Splunk, LogRythim, Alien Vault, Qradar, etc.)
- Experience with cloud computing, both investigating and working with cloud infrastructure
- Experience with microservices
- Understanding of security alerts that includes malware/phishing, EDR/ XDR solutions, denial of service, unauthorized access, knowledge of security tools that include SIEM, IDS/IPS, log aggregation, malware sandboxing, threat hunting, etc.
- GIAC certifications like GCIH
- Expertise to manage SOPs, process adherence by teams & an eye for continuous improvement
