Advisor Security Analyst II

About The Position

Requirements

• CompTIA Security+, SSCP (Systems Security Certified Practitioner), CEH (Certified Ethical Hacker)
• Ability to independently execute triage, investigation, and containment actions with minimal supervision.
• Advanced proficiency in incident analysis, threat identification, and security alert prioritization.
• Strong technical troubleshooting skills across various operating systems, applications, cloud services, and advisor-facing platforms.
• Solid understanding of security policies, regulatory obligations (FINRA, SEC), and compliance-driven security requirements.
• Proficiency with enterprise security tools such as SIEM, EDR, secure email gateways, identity protection, and cloud security solutions.
• Ability to collaborate effectively across teams and escalate complex issues with clarity and precision.
• Excellent communication skills to assist financial professionals with cyber questions via phone and support ticket systems
• Strong written and verbal communication skills, including the ability to translate technical findings for financial professionals.
• Minimum of high school diploma or equivalent is required.

Nice To Haves

• Experience working in financial services, supporting financial professionals, or operating in a regulated environment.
• Exposure to threat intelligence, MITRE ATT&CK, or automation/orchestration tools.
• Familiarity with identity governance, MFA platforms, and cloud security (Microsoft, Okta, AWS, etc.).

Responsibilities

• Lead independent execution of security investigations from detection to containment across email, endpoint, identity, and network security platforms.
• Perform advanced incident triage, validating complex alerts and prioritizing events based on risk to financial professionals and sensitive client data.
• Conduct intermediate threat analysis, including identifying attacker behavior, analyzing indicators of compromise, and determining potential business impact.
• Escalate critical threats to senior analysts or IR teams with complete technical context and clear recommended actions.
• Provide elevated cybersecurity support for Osaic’s Financial Professionals regarding suspicious activity, compromised accounts, secure configurations, and advanced phishing/social engineering cases.
• Translate technical findings into clear, actionable guidance tailored to financial professionals who may not have deep technical backgrounds.
• Assist advisors in understanding and complying with Osaic security requirements and industry‑regulated best practices.
• Demonstrate proficiency with Osaic’s security tools, including SIEM, EDR, identity security, cloud security platforms, and email security systems.
• Perform log analysis, endpoint deep dives, and artifact collection to support threat investigation and incident containment.
• Conduct technical troubleshooting across multiple platforms, including Windows, macOS, cloud environments, and mobile devices used by financial professionals.
• Ensure all investigative actions align with Osaic policies, FINRA/SEC regulations, and cybersecurity best practices.
• Document detailed findings, investigative steps, and recommendations within case management and ticketing systems.
• Identify gaps or recurring issues and recommend enhancements to playbooks, security controls, and advisor-facing guidance.
• Work closely with IT, Compliance, Identity & Access Management, and senior cybersecurity teams to coordinate responses to complex incidents.
• Serve as a technical escalation point for Level 1 analysts, providing coaching and guidance when needed.
• Participate in post‑incident reviews, contributing technical insights and improvement opportunities.

Benefits

• health, vision, dental insurance
• 401k
• paid time away
• volunteer days
• annual performance-based bonus