Cybersecurity Operations Lead

Job Description

Aon is looking for a Cybersecurity Operations Lead


As part of an industry-leading team, you will help empower results for our clients by delivering innovative and effective solutions in our cyber team, in Chicago, IL.


Your impact as a Cybersecurity Operations Lead 


Job Responsibilities:

  • This position is equivalent to SOC Level 3 Analyst Skill Set.
  • Lead day to day, the resolution of information security incidents and act as a lead during security investigations leveraging insourced and outsourced tools.
  • Overall handling, communication and escalation of incidents which require highly technical analysis, such as network intrusions and advanced malware infections which have been identified by the SEIM. 
  • Develop and execute on the  plans/procedures related to Incident Response, Forensics, and Investigation functions to include the Computer Security Incident Response plan. 
  • Develop and oversee reporting that will provide analytics and metrics to the Cybersecurity Center
  • Responsible for level 3 support for the investigation and potential mitigation of security events on Wintel/Unix Servers as well as Windows and Apple workstations.
  • Provide expert understanding of technology, tools, policies, and standards related to security systems and incident response. 
  • Work at a high technical level of forensic and investigations in IT environments, capable of identifying vectors of threats and incidents, work with others to assist the education of security events and implications, and develop documentation to support the incident response process. 
  • Lead and mentor Junior Analysts, providing feedback, training, technical support for case notes, investigative techniques and business process.

You Bring Knowledge and Expertise


Required Experience and Qualifications:

  • GIAC Global Certified Incident Handler – Current
  • At least 4 years of experience with IP network and routing along with deep packet analysis using tools like Wireshark
  • At least 4 years of experience with products of IPS/IDS, AV, and Anti-Malware products like McAfee, FireEye, etc.
  • At least 4 years of experience with security incident response process and procedures
  • At least 4 years of experience with information security best practices
  • At least 4 years of Unix/Wintel experience
  • Experience with Threat Intelligence and consumption/development of IOC’s.
  • Experience equivalent to Level 3 Analyst in regards to investigation, incident response and handling.
  • Experience in Forensics, Evidence Gathering, Endpoint and Network Level Forensic Investigations.
  • Experience in leading Junior Analysts from a Level 3 proficiency.

Preferred Qualifications:

  • Other Major Security Certifications such as OSCP, GIAC, ISC2

We offer you


A competitive total rewards package, continuing education & training, and tremendous potential with a growing worldwide organization.


Our Colleague Experience:


From helping clients gain access to capital after natural disasters, to creating access to health care and retirement for millions, Aon colleagues empower results for our clients, communities, and each other every day.  They make a difference, work with the best, own their potential, and value one another.  This is the Aon Colleague Experience, defining what it means to work at Aon and realizing our vision of empowering human and economic possibility. To learn more visit Aon Colleague Experience.


About Aon:


Aon plc (NYSE:AON) is a leading global professional services firm providing a broad range of risk, retirement and health solutions. Our 50,000 colleagues in 120 countries empower results for clients by using proprietary data and analytics to deliver insights that reduce volatility and improve performance.


By applying for a position with Aon, you understand that, should you be made an offer, it will be contingent on your undergoing and successfully completing a background check consistent with Aon's employment policies. Background checks may include some or all of the following based on the nature of the position: SSN/SIN validation, education verification, employment verification, and criminal check, search against global sanctions and government watch lists, fingerprint verification, credit check, and/or drug test.  You will be notified during the hiring process which checks are required by the position.


Aon provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, veteran, marital, or domestic partner status.  Aon is committed to a diverse workforce and is an affirmative action employer.


Nothing in this job description restricts management's right to assign or reassign duties and responsibilities to this job at any time.