Cybersecurity Operations Analyst

Helping careers take flight. Reshaping an industry. Enable your career to be Made on Duck Creek.

WHAT WE ARE ABOUT:

Duck Creek is an insurance industry leader, driving transformation and delivering modern SaaS solutions that help insurers set a new standard and revolutionize how consumers interact with insurance companies.

As a leading technology provider to the insurance industry, we don’t just build great software to help insurers conduct business. We deliver software with a fully managed service model that empowers insurance companies to transform their business. With Duck Creek OnDemand, insurers are introducing groundbreaking new products faster than ever before, making smarter data-driven decisions, enhancing the customer experience to meet evolving expectations, and adapting to shifting market conditions and regulatory requirements.

Duck Creek is proud to be a Remote-First employer, empowering our employees with the choice to work from an office, from home or on a hybrid schedule. Our remote-first environment fosters inclusion, collaboration, and ensures consistent employee experience regardless of location. We support our employees in making a decision that allows them to be the most productive, they can be both at work and at home.

If working in a fast paced, rapidly evolving company that is transforming one of the world’s oldest and largest industries into a standard for innovation and open exchange sounds exciting, let us know.  We are excited for your career to be Made on Duck Creek.

Title: Cybersecurity Operations Analyst

WHAT YOU’LL DO:

The Cybersecurity Operations Analyst is a key member of the Security Operations function within Duck Creek’s Cybersecurity team. This role is responsible for assisting in the design and implementation of cybersecurity controls to protect Duck Creek’s systems and data. The Analyst will monitor systems by correlating logs for security events, provide alerts for potential incidents, and maintain up-to-date knowledge of emerging threats to enhance protection measures. Additionally, this position provides Tier 1 support for Security Operations Center (SOC) activities, including incident response, forensics, and reporting. Working collaboratively with the Cybersecurity Operations team, the Analyst contributes to maintaining robust security practices and responds effectively to evolving cybersecurity challenges. This is an individual contributor role focused on technical expertise and operational support without direct people management responsibilities.

Key Responsibilities:

• Provide first level support for executing best-in-class controls and processes in threat management, incident management, vulnerability management, and penetration testing, determining courses of action based on guidelines and modifying processes as needed.
• Support and monitor security controls for servers, appliances, desktops, laptops, and mobile devices, using evaluation and judgment to ensure effective protection and assist in the implementation of security configurations to safeguard systems and data.
• Assist in managing network security solutions, including firewalls, intrusion detection/prevention, data loss prevention, and network access control, to protect Duck Creek’s networks by adapting existing approaches to resolve issues.
• Provide support for secure remote access solutions for employees, third parties, and clients, using sophisticated analytical techniques to address unusual circumstances.
• Monitor systems by correlating logs for security events, provide alerts for potential incidents, and deliver incident response through internal and external monitoring, contributing to analysis and investigation to mitigate threats while staying current on emerging risks.
• Assist in delivering metrics as required by the CISO and contribute to periodic and ad hoc reporting for management and clients.
• Perform routine assignments and exercises judgment within defined procedures and practices to determine appropriate action and applies learned techniques and contributes to analysis and investigation to solve problems.
• Maintain a commitment to continuous education in the information security domain to stay current with evolving threats and best practices.
• Perform all other duties and activities as required.
• Act in accordance with and as a good steward of Duck Creek Technologies mission, vision, and core values:

• Mission: To empower insurers to reimagine the future of insurance
• Vision: To transform insurance technology, helping insurers be smarter, faster, and more efficient, and ultimately provide the best protection for people and businesses
• Values: We Prioritize Respect, We Listen, We Care, We Add Value, and We Lead

Competencies:

Core Employee:

• Communication: Effective communication, both verbal and written; includes ability to express ideas clearly, listen actively, and collaborate with colleagues and clients.
• Collaboration: Work effectively in teams, build positive relationships, and contribute to achieving common goals; includes the ability to recognize and incorporate a broad range of diverse perspectives
• Problem Solving: Can analyze complex situations, identify problems, ask important questions, and generate creative solutions; involves critical thinking, adaptability, and the ability to make informed decisions
• Accountability: Willingness to accept responsibility for your actions and work; ability to set and achieve meaningful outcomes for oneself
• Adaptability: Can adapt to change, embrace new technologies, and learn quickly; embracing a growth mindset, being flexible and open to different approaches is highly valued
• Integrity: Conducts themselves with integrity and professionalism, understands and models our core values, and is obsessed with doing the right thing; incorporates this mindset in how they behave, in the products or services they provide, and how they treat others
• Cultural Agility: Ability to effectively and comfortably adapt to different cultural contexts. It involves the capacity to understand, communicate, and interact with people from diverse cultural backgrounds in a respectful and inclusive manner.

WHAT YOU’VE DONE:

REQUIRED:

• Bachelor's degree in Cybersecurity, Information Security, Computer Science, or a related field, or equivalent experience.
• 1-3 years of applicable experience in cybersecurity or related domains.
• Working knowledge of cloud infrastructure security principles, shared responsibility models, and incident response procedures within cloud environments.

PREFERRED:

• CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, and/or Security+ certification.
• Experience working in a global software company or similar large-scale enterprise environment.

Knowledge, Skills, Abilities & Behaviors:

• Understanding of cybersecurity principles across one or more security domains, including threat management, incident response, and system protection strategies.
• Experience in using cybersecurity tools and technologies for monitoring and analysis, such as log correlation and alerting systems, to support security operations.
• Analytical and problem-solving skills to evaluate routine and diverse security challenges, identify potential incidents, and devise effective solutions using judgment and existing procedures.
• Ability to analyze security events and data, assess risks, and provide actionable insights for mitigation while adapting approaches under guidance as needed.
• Skilled in managing time and prioritizing tasks to meet expected outcomes, handling small projects within scope, budget, and timeline, and supporting operational efficiency in a dynamic environment.
• Ability to respond effectively to security incidents with initial analysis and support, working independently on routine tasks while seeking direction for complex issues.
• Strong communication skills to articulate technical updates and security findings clearly to team members and related functions, facilitating collaboration and understanding.
• Collaborative mindset to work with the Cybersecurity Operations team and cross-functional partners, building relationships and supporting security initiatives across the organization.
• Strong attention to detail and commitment to maintaining high standards of cybersecurity, with a focus on continuous learning to stay informed about emerging risks and industry trends.
• Dedication to continuous improvement practices, advocating for industry-recognized best practices, and actively pursuing skill growth in the cybersecurity domain while managing multiple priorities.

Work Environment & Other Requirements:

• Travel: [X] 0-10% [] 11-25% [] 26-50% [] 51-75% [] 76-100%
• Special Hours: IST Hours
• Work Authorization: Must be legally authorized to work in the country of the job location
• Physical Requirements: [X] Sedentary Work [] Light Work
• Sedentary work: Exerting up to 10 pounds of force occasionally and/or negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects, including the human body. Sedentary work involves sitting most of the time. Jobs are sedentary if walking and standing are required only occasionally and all other sedentary criteria are met.
• Light Work: Exerting up to 20 pounds of force occasionally, and/or up to 10 pounds of force frequently, and/or a negligible amount of force constantly to move objects. If the use of arm and/or leg controls requires exertion of forces greater than that for sedentary work and the worker sits most of the time, the job is rated for light work

WHAT WE STAND FOR 

Our global company celebrates & leverages the differences each employee brings to the table. Our success is a direct result of an inclusive culture where opportunities to learn from one another occur regardless of title, seniority, or background. This collaborative and team-oriented approach is at the core of how we operate and continuously improves our products, services, and systems.  As such, Duck Creek is committed to providing equal opportunity to all employees and applicants – to recruit, hire, train, and reward employees for their individual abilities, achievements, and experience without regard to race, color, gender, religion, sexual orientation, age, national origin, disability, marital, military, or any other protected status. 

We strive to be an example to the world of inclusion, diversity, and equity in all things – where employees are free to be their authentic selves in the workplace and in the communities in which we live. We believe in leading by example and are proud of the diversity of our team and our shared commitment to our Core Values: We Prioritize Respect; We Listen; We Care; We Add Value; and We Lead.

To learn more about our inclusive company culture, values, DE&I initiatives, and people, please visit: https://www.duckcreek.com/life-at-duck-creek/

Please let us know if you encounter accessibility barriers with our web content by sending an email to [email protected].

Privacy Notice: By submitting your application, you acknowledge that Duck Creek Technologies may collect and process your personal data for recruitment purposes in accordance with our Privacy Notice and applicable data protection laws.  

Duck Creek Technologies does not accept, nor will we pay a fee for any hires resulting from unsolicited headhunter or agency resumes.    

#LI-Remote

#LI-RS1