* At least 2 years of experience as a security analyst or engineer * 1+ years of experience in a cloud security environment * Experience working with Agile teams in a dynamic cloud environment. * Strong knowledge of technical security, including host and network vulnerabilities * Ability to analyze and interpret security vulnerability scan reports * Ability to validate and triage vulnerability findings * Ability to communicate with stakeholders effectively written and verbally * Security vulnerability scanning tools such as Tenable, Qualys, AWS Inspector, * Experience with SIEM tools, such as Splunk * Basic scripting and reporting
Who You'll Work With
You will work in Chicago within our Information Security team, which is part of McKinsey's Solution Technology practice.
This group fosters innovation driven by analytics, design thinking, mobile and social by developing new products/services and integrating them into our client work. It is helping to shift our model toward asset-based consulting and is a foundation for the firm's entrepreneurial culture.
What You'll Do
You will work with security team members and key technical teams to execute operational threat and vulnerability management activities and help shape the development of our TVM program and capabilities.
You'll collaborate with technical stakeholders to review security alerts, perform vulnerability scans, implement automation and reporting, and administer key security systems relating to security threats and vulnerabilities.
You will work in a in a cloud-based environment supporting approximately 50 unique SAAS solutions. You will refine and revise processes and procedures for monitoring the environment for threats. You will also administer systems including but not limited to: AWS Inspector, Tenable/Nessus, Splunk, Evident.io, Alteryx, Salesforce, ServiceNow, Jira.
McKinsey & Company is an equal opportunity employer.
McKinsey and Company is a management consulting firm serving commercial, government, and not-for-profit organizations.