Sr. Security Analyst - Third Party Incident Response

Description and Requirements
Sr. Security Analyst -Third Party Incident Response Overview:
This role will be responsible for supporting the Cyber Incident response program. This role is crucial to protecting our organization from potential threats introduced though our vendor ecosystem.
Key Responsibilities:

• Act as a primary point of contact for Third Party related security incidents and coordinate with internal and external stakeholders during security incidents to ensure timely and effective response.
• Lead efforts to contain and mitigate the impact of incidents involving Third Parties.
• Conduct thorough post-incident reviews to determine the root cause and prevent recurrence.
• Document and share lessons learned and update incident response plans and procedures based on findings.
• Assess existing detection and response capabilities and provide recommendations for improvements.
• Report on incident details, impacts, and remediation efforts to senior management and stakeholders.
• Communicate security expectations and requirements to Third Party vendors clearly and effectively.
• Oversight of resources in Center of Excellence (CoE) supporting the program.

Qualifications:
Required:

• Minimum 2-3 years' experience in Third Party Cyber Risk Management or related work.
• Strong knowledge of global security and privacy breach laws and regulatory reporting.
• Technical expertise in information security, including familiarity with penetration and intrusion techniques and attack vectors.
• Excellent analytical, problem-solving, and decision-making skills.
• Strong communication and interpersonal skills.
• Detail oriented with the ability to manage multiple tasks and prioritize effectively.
• Experience implementing policies, procedures, and technology to detect and recover from a cybersecurity attack.

Preferred:

• Bachelor's degree in cyber security, Information Technology, Computer Science, or a related field.
• Relevant information security certifications (e.g., CISSP, CISM, CEH, CRISC, CISA, OSCP, GPen) highly preferred.
• Experience implementing policies, procedures, and technology to detect and recover from a cybersecurity attack.

The salary range for applicants for this position is $90,000 - $132,400.
Benefits We Offer
Our U.S. benefits address holistic well-being with programs for physical and mental health, financial wellness, and support for families. We offer a comprehensive health plan that includes medical/prescription drug and vision, dental insurance, and no-cost short- and long-term disability. We also provide company-paid life insurance and legal services, a retirement pension funded entirely by MetLife and 401(k) with employer matching, group discounts on voluntary insurance products including auto and home, pet, critical illness, hospital indemnity, and accident insurance, as well as Employee Assistance Program (EAP) and digital mental health programs, parental leave, volunteer time off, tuition assistance and much more!
About MetLife
Recognized on Fortune magazine's list of the 2024 "World's Most Admired Companies" as well as the 2024 Fortune 100 Best Companies to Work For ®, MetLife , through its subsidiaries and affiliates, is one of the world's leading financial services companies; providing insurance, annuities, employee benefits and asset management to individual and institutional customers. With operations in more than 40 markets, we hold leading positions in the United States, Latin America, Asia, Europe, and the Middle East.
Our purpose is simple - to help our colleagues, customers, communities, and the world at large create a more confident future. United by purpose and guided by empathy, we're inspired to transform the next century in financial services. At MetLife, it's #AllTogetherPossible . Join us!
Equal Employment Opportunity/Disability/Veterans
If you need an accommodation due to a disability, please email us at [email protected]. This information will be held in confidence and used only to determine an appropriate accommodation for the application process.
MetLife maintains a drug-free workplace.
$90,000 - $132,400
#BI-Hybrid