Security Analyst

**Introduction**:
Indulge your passion for problem-solving and embrace the thrill of addressing risk head-on at Gallagher's global brokerage team. Join a family of diverse minds, united by a relentless pursuit of excellence. As part of our team, you'll be the architect of protection, safeguarding businesses and empowering their ambitions. Together, we'll build a legacy of trust and triumph in the dynamic world of risk management.

**Overview**:
**Gallagher **is a global leader in Insurance broking, risk management and consulting, with over 52,000 employees worldwide in over 130 countries. We have a global reach with a local presence and pride ourselves on being a socially responsible and an ethical organisation expressed through our Shared Values, The Gallagher Way. We are proud to have been awarded one of Insurance Business Australia **Top Insurance Employers **and **Forbes Best Employer for Women**.

The **purpose of this role** will be responsible for conducting detailed investigations into security incidents, analysing digital evidence, and providing recommendations for remediation. You will work closely with the wider Cyber Security Team and cross-functional IT teams to ensure the timely resolution of incidents and the enhancement of our overall security posture. Be responsible for conducting cyber forensics investigations and threat hunts to identify security control exposures or identify existing security risks. This is an exciting opportunity for a skilled professional to contribute to the protection of our organization's critical assets and the prevention of future security breaches. This role will be within the Global Cyber Information Security (GCIS) team with a primary focus of protecting all Gallagher divisions interests in the APAC region.

**Security Clearance**

**Key Responsibilities**

**Incident Response and Investigation**:

- Lead and conduct forensic investigations into security incidents, including data breaches, unauthorized access, and insider threats.
- Collect, preserve, and analyze digital evidence using industry-standard forensic tools and techniques.
- Perform root cause analysis to identify vulnerabilities and recommend remediation measures.
- Document and report findings, ensuring accurate and timely communication to relevant stakeholders.
- Support internal Cyber Fusion Centre teams in:

- Deploying and executing corporate threat hunts
- Assisting remote colleagues in US and EMEA in their investigations

**Threat Hunting and Detection**:

- Proactively assist on the Security Operations Center cases.
- Proactively search for indicators of compromise and emerging threats within the organization's network and systems.
- Develop and implement strategies for threat hunting, leveraging threat intelligence and advanced analytics.
- Collaborate with the Security Operations Center (SOC) team to enhance detection capabilities and response procedures.

**Forensic Tool Development and Maintenance**:

- Assist in the development and maintenance of forensic tools and processes to improve investigation efficiency and effectiveness.
- Stay up-to-date with the latest forensic techniques and tools, recommending enhancements to the forensic toolkit.

**Incident Reporting and Documentation**:

- Prepare detailed incident reports, including timelines, findings, and recommendations for remediation.
- Maintain accurate and up-to-date documentation of forensic investigations, ensuring compliance with legal and regulatory requirements.

**Stakeholder Engagement**:

- Collaborates with fraud examiners, other IT investigative experts, legal counsel, human resources (HR) and other IT technical personnel in investigations.
- Working with APAC Division’s Infrastructure teams in peer review and co-ordination of security operation changes in region.
- Working with global Project Managers to ensure GCIS projects are successful:

- Validating global assumptions - business/technical requirements
- Redefining roadmaps and schedules, taking into account GCIS and divisional resource constraints

**Qualifications/Requirements**:

- Bachelor's degree in Computer Science, Digital Forensics, or a related field.
- Proven experience in conducting digital forensic investigations, preferably in a corporate environment.
- Strong knowledge of forensic tools and techniques, such as Magnet Forensics, EnCase, FTK, Autopsy, and Volatility.
- Understanding of network protocols, operating systems, and security technologies.
- Knowledge of industry standards and best practices, such as NIST, ISO 27001, and SANS.
- Experience with log analysis, malware analysis, and memory forensics.
- Excellent analytical and problem-solving skills.
- Strong attention to detail and ability to work under pressure.
- Effective communication and report writing skills.
- Relevant certifications, such as EnCE, CFCE, or GCFE, are a plus

**Gallagher Benefits** - we offer great benefits and career development opportunities including tuition assistan