Marsh
CyberSecurityIncidentResponseAnalyst
Neural analysis suggests this role is
optimal for Entry candidates.
“Cyber Security Incident Response Analyst at Marsh. Skills: Incident response, Security analysis, Threat detection. Analyze security event data. Assess potential impact of events”
Industry & Context.
Critical thinking skills; Analytical expertise
Working at least two days a week in the office, Daytime business hours shifts (Sunday- Thursday), Support 24x7 operations by assisting in ongoing incidents during non-standard
What They're Looking For.
Must Have
2+ years of information security experience, 2-4 years of experience in security analysis, Excellent critical thinking skills, Proven analytical expertise, Ability to learn, Demonstrated effective verbal, written, and interpersonal communication skills, Ability to communicate security concepts to both technical and non-technical, Experience with security technologies and alerts, Knowledge in one or more of the following domains: Network Operations and Architecture, Operating Systems, Identity and Access Management, Programming, Cloud Computing, Databases
Nice to Have
Ability to operate independently in a dynamic, evolving environment with multiple inputs and tasks, Knowledge of common attacks, current threats, threat actors, and industry, Familiarity with common security frameworks and models, such as MITRE ATT&CK, Lockheed Martin Cyber Kill Chain, The Diamond Model of Intrusion Analysis, and NIST Cybersecurity, Professional or technical certifications, such as Security+, GIAC Certified Incident Handler (GCIH), Certified Ethical Hacker (CEH), or other related
What You'll Do.
Analyze security event data
Assess potential impact of events
Create recommendations to defend
Follow security events through triage
Document all processes
Participate in security incidents
Participate in SOC initiatives
Collaborate across multiple teams
Strengthen security posture
Analyze network traffic
Analyze endpoint security events
Assess potential impacts
Support security functions
Ensure holistic implementation
Contribute to development
Improve response processes
Assist in SOC initiatives
Maintain operational knowledge
Collaborate on SOC team training
Operate as subject matter expert
Support 24x7 operations
How You'll Work.
Team & Collaboration
Collaborating across multiple teams on various efforts; Work with a global team; Collaboration and a drive for innovation; Collaborate on SOC team training opportunities; Collaboration, connections and professional development benefits of working together in the office
Communication Scope
Effective verbal communication; Effective written communication; Effective interpersonal communication; Communicate security concepts to technical audiences; Communicate security concepts to non-technical audiences
Full Job Description
## Company: Marsh ## ## Description: We are seeking a talented individual to join our Global Cyber Defense team at Marsh. This role will be based in our Security Operations Center (SOC) as part of Cluj Tech Hub. This is a hybrid role that requires working at least two days a week in the office. Marsh has established its EMEA Technology Hub in Cluj, Romania, reflecting our commitment to innovation and excellence. This hub is central to our digital strategy, addressing emerging challenges and enhancing service delivery through advanced technology solutions that empower our clients and promote sustainable growth. **We will count on you to** As a **Cyber Security Incident Response Analyst** , you will play a crucial role in analyzing security event data and responding to incidents, contributing to the overall security posture of the organization. We are looking for someone to join and grow in our Security Operations Center (SOC) in a technical analyst role on various daytime business hours shifts (Sunday- Thursday). As an Analyst, you will be responsible for: * Analyzing security event data, assessing the potential impact of events, and creating recommendations to defend against emerging threats; * Following security events through the triage and response lifecycle and documenting all processes in a centralized knowledge base; * Participating in ongoing security incidents and continuous SOC initiatives, such as new content development and enrichment; * Collaborating across multiple teams on various efforts to continue to strengthen the security posture of Marsh Companies; * Work with a global team at a company with a strong brand and impressive results; * Be part of an organization with a culture of internal mobility, collaboration, and a drive for innovation in data & analytics, including the latest AI technology; * Grow your career with direct exposure to Senior Technologists, Business Leaders, and Employee Resource Groups, providing access to relevant volunteer and m
Applying for this Cyber Security Incident Response Analyst role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Marsh?
Real rants from real employees. Read before you apply.