SOC Analyst

Position Summary
Ryan Specialty is looking for a SOC Analyst to join our Chicago team. This role will be responsible for monitoring our computer networks for security issues, investigating incidents, handling tickets and documenting any security issues or events. This may involve testing, log analysis, interacting with vendors and partners, automation and scripting, or systems administration tasks.

What will your job entail?

Job Responsibilities

• Supports in developing security policies, procedures, and standards for the insurance industry, ensuring alignment with best practices, regulatory requirements, and data protection laws.
• Conducts risk assessments to identify and evaluate potential security risks and vulnerabilities within the insurance infrastructure, including systems, networks, and applications.
• Manages and responds to security incidents, conducts forensic analysis to determine root cause, gathers evidence, contains incidents, and implements preventive measures to avoid recurrence.
• Performs security audits and compliance assessments to ensure the effectiveness of security controls, responds to audit findings, and maintains adherence to regulatory requirements and industry standards.
• Conducts security assessments of third-party vendors and service providers, reviewing their security practices, contracts, and risk posture to ensure the secure handling of company data.
• Implements and manages security monitoring tools and intrusion detection systems to detect and respond to potential security threats in real time.
• Monitors the IT Security environment to detect, validate, and respond to cyber threats. Assists in incident response activities such as host triage, malware analysis, remote system analysis, end-user interviews, and remediation efforts.
• Leverages enterprise security platforms such as endpoint detection and response (EDR) and SIEM solutions (e.g., CrowdStrike, Microsoft Defender, Microsoft Sentinel) to investigate alerts, correlate events, and enhance threat detection capabilities.
• Prepares and delivers accurate and timely reports on security incidents and resolutions, and recommends improvements to enhance the overall security posture in the insurance environment.
• Stays up to date with the latest security threats, vulnerabilities, and industry trends, sharing knowledge with the information security team and stakeholders.
• Conducts security awareness training sessions for employees, promoting best practices and fostering a culture of security awareness.
• Collaborates with IT teams to implement security controls including access management, endpoint protection, and encryption to safeguard data and systems against unauthorized access and misuse.

Preferred Technical Experience

• Experience with one or more of the following tools is strongly preferred:
  • CrowdStrike Falcon (EDR/XDR)
  • Microsoft Defender suite (Defender for Endpoint, Defender for Cloud, etc.)
  • Microsoft Sentinel (SIEM / SOAR)
• Familiarity with:
  • Log analysis and correlation
  • Security monitoring and alert triage
  • Incident response workflows and tooling

Work Experience and Education

• Bachelor's degree required; Computer Science, Software Engineering, Information Technology, or related field preferred.
• 1+ year of experience in Information Security, Security Operations, or related IT roles preferred.
• Hands-on or academic experience with security tools such as SIEM, EDR, or XDR platforms is preferred.

• *****Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment visa at this time*****

Licenses & Certifications

• Microsoft Security certifications (e.g., SC-200, SC-300) or CrowdStrike certifications are a plus.

Ryan Specialty is an Equal Opportunity Employer. We are committed to building and sustaining a diverse workforce throughout the organization. Our vision is an inclusive and equitable workplace where all employees are valued for and evaluated on their performance and contributions. Differences in race, creed, color, religious beliefs, physical or mental capabilities, gender identity or expression, sexual orientation, and many other characteristics bring together varied perspectives and add value to the service we provide our clients, trading partners, and communities. This policy extends to all aspects of our employment practices, including but not limited to, recruiting, hiring, discipline, firing, promoting, transferring, compensation, benefits, training, leaves of absence, and other terms, conditions, and benefits of employment.

How We Support Our Teammates

Ryan Specialty seeks to offer our employees a comprehensive and best-in-class benefits package that helps them - and their family members - achieve their physical, financial, and emotional well-being goals. In addition to paid time off for company holidays, vacation, sick and personal days, Ryan offers paid parental leave, mental health services and more.

The target salary range for this position is $62,000.00 - $75,000.00 annually.

The wage range for this role considers many factors, such as training, transferable skills, work experience, licensure and certification, business needs, and market demands. The pay range is subject to change and may be modified in the future. Full-time roles are eligible for bonuses and benefits. For additional information on Ryan Specialty Total Rewards, visit our website

We provide individuals with disabilities reasonable accommodations to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment in accordance with applicable law. Please contact us to request an accommodation at

The above is intended to describe this job's general requirements. It is not to be construed as an exhaustive statement of duties, responsibilities, or physical requirements. Nothing in this job description restricts management's right to assign or reassign duties and responsibilities to this job at any time. Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.