Cybersecurity Threat Handler

Elevate Your Career Work where your ideas have impact

COMPANY

Allspring Global Investments is a leading independent asset management firm that offers a broad range of investment products and solutions designed to help meet clients' goals. At Allspring, our vision is to inspire a new era of investing that pursues both financial returns and positive outcomes. With decades of trusted experience propelling us forward, we strive to build portfolios aimed at generating successful outcomes for our clients. We do this through the independence of thought that powers our investment strategies and by bringing a renewed approach to look around the corner to unlock what's possible. Allspring is a company committed to thoughtful investing, purposeful planning, and the desire to deliver outcomes that expand above and beyond financial gains. For more information, please visit About Us - Allspring Global Investments.

At Allspring, unique views inspire us. We leverage the diversity of people, ideas, and skills to help our clients pursue their financial goals. We strive to attract and retain a diverse talent pool that enables us to better serve our global client base. Intentionally fostering a diverse and inclusive culture allows us to empower innovation, productivity, and engagement. It’s also essential for elevating the experience of our clients as well as the communities in which we operate. Thank you for considering Allspring as you explore the next step in your career journey.

POSITION

Allspring is seeking a Cybersecurity Threat Handler to join the Allspring Engineering and Technology (AllspringET) Information Security team. The Cybersecurity Threat Handler will be responsible for managing the remediation process for security incidents originating from our Cloud and Desktop environments. They will oversee each phase of the incident lifecycle, starting with performing an initial analysis with SOC Analysts from our MDR provider, and eventually leveraging their intimate knowledge of our environment to execute on containment, eradication, recovery, and postmortem.

RESPONSIBILITIES

• Acting as a hands-on expert and builder for cloud-based technologies, ensuring security, performance, operability, and scale.
• Assisting as an internal specialist, facilitating the implementation of modern front-end technologies within technology and business teams.
• Building strong relationships with developers, technology teams, solution teams, and business application owners.
• Implementing and maintaining industry-standard protocols to strengthen our security measures.
• Developing and implementing innovative and differentiating cloud technologies.
• Collaborating and consulting with key technical experts, technology teams, and external industry groups to resolve complex technical issues and achieve our goals.

REQUIRED QUALIFICATIONS

• Bachelor’s degree or higher in MIS, CS, or a related field, or equivalent combination of education and work experience.
• 5+ years of experience in engineering and technology, preferably in Financial Services, Technology, or a related field.
• Experience analyzing cybersecurity incidents using industry standard frameworks such as Cyber Kill Chain and MITRE ATT&CK.
• Experience handling cybersecurity incidents at each stage of the incident lifecycle, including initial analysis, triage, containment, eradication, recovery, and postmortem.
• Strong knowledge of AWS Security, specifically in areas such as IAM, KMS, and Network Infrastructure.
• Expertise in analyzing security events from Microsoft Windows endpoints with a deep understanding of operating system security.
• Experience handling incidents originating from Microsoft cloud-based services like Azure and Microsoft 365.

PREFERRED QUALIFICATIONS

• Familiarity with AWS threat detection and logging services such as GuardDuty and CloudTrail, as well as industry standard Cloud SIEMs like DataDog.
• Proficiency in analyzing security events within endpoint protection platforms like CrowdStrike Falcon.
• Ability to liaise effectively with SOC Analysts and Threat Hunters from our Managed Detection and Response vendor.
• Understanding of current cybersecurity threats, typical signs of attacks, and approaches to prevent and mitigate such incidents.
• Strong multitasking abilities and the ability to prioritize duties in a fast-paced environment.
• Excellent verbal and written communication skills.
• Effective influencing and consensus-building skills.
• Strategic focus on problem-solving.
• Strong teaching and mentoring skills.
• Exceptional presentation and communication skills.
• Willingness to occasionally travel outside of the primary work location.
• 2+ years of experience with AWS or other hyperscale cloud provider implementation.
• Extensive experience working effectively in a heavily distributed environment.
• Consulting experience is a plus.
• Demonstrated experience maintaining strong documentation.
• Ability to transfer knowledge to key team members and act as a valuable resource.
• Experience in providing on-call support and independently resolving technical issues.
• Ability to confidently interact with counterparts at all levels within the firm.
• Proficient in analyzing and resolving complex issues.
• Demonstrated ability to collaborate with teams across different locations.

#LI-BA1

#LI-Hybrid

We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.