##### Job Description :
As a Bank employee, you are responsible and accountable for risk by openly
exchanging ideas and opinions, elevating concerns, and personally following
policies and procedures as defined. You are accountable for always doing the
right thing for customers and colleagues, and ensures that actions and
behaviors drive a positive customer experience. While operating within the
Bank’s risk appetite, achieves results by consistently identifying, assessing,
managing, monitoring, and reporting risks of all types.
##### **ESSENTIAL DUTIES AND RESPONSIBILITIES:**
* Monitors, analyzes, and interprets system logs for events and incidents reflective of unauthorized access or operational irregularities and escalates for action as appropriate.
* Responds to incidents to prevent additional loss and to obtain and preserve forensic evidence.
* Collaborates with appropriate response partners, assist with determining the root cause of incidents and work with stakeholders and responsible parties to remediate any identified control gaps or failures
* Escalate issues to management in a timely manner with appropriate information regarding severity, exposure, and action items; this role requires critical thinking and investigative mindset coupled with effective written, and verbal communication skills.
* Acts as a mentor to more junior analysts
* Promotes activities to foster information security awareness throughout the organization.
* Responsible and accountable for risk by openly exchanging ideas and opinions, elevating concerns, and personally following policies and procedures as defined.
* Accountable for always doing the right thing for customers and colleagues, and ensures that actions and behaviors drive a positive customer experience.
* While operating within the Bank’s risk appetite, achieves results by consistently identifying, assessing, managing, monitoring, and reporting risks of all types.
* Serves as an Information Security Subject Matter Expert (SME) by maintaining knowledge of industry recognized security technologies and concepts; actively engages and assists lines of business to understand their needs and develop secure business solutions.
* Help assess, implement, and manage security related systems, processes and tools.
* Remains knowledgeable of changes in security technology, industry practices, and state and federal regulatory requirements; provides technical assistance to IT staff in the detection and resolution of security problems.
* Provide subject matter expertise, technical deliverables oversight of strategic Cyber projects and initiatives to enhance and improve Cyber Intelligence capabilities and maturity.
* Develops security solutions for medium to highly complex information security issues.
* Performs other duties as assigned.
##### **MINIMUM KNOWLEDGE, SKILLS AND ABILITIES REQUIRED:**
* Bachelor’s Degree in Cyber Security, Computer Science, Engineering, Information Systems, or other related field, or other relevant experience.
* 6 to 8 years of experience with the analysis/investigation and containment of potential data breaches or cyber security incidents.
* Experience with security alert triage and detection across endpoint and network attack surfaces, to include phishing detection
* Experience performing Incident Response and collecting and analyzing host information
* Scripting/Coding experience - Python, Regex, Yara as examples
* Knowledge of current hacking techniques, vulnerability disclosures, data breach incidents, and security analysis techniques
* Knowledge of malware families, botnets, threats by sector, and various attack campaigns and attacker methods, tools/techniques/practices
* Knowledge of cloud technologies including Office 365, AWS with experience in dealing with security configuration/operations strongly preferred
* Working knowledge of security controls is required including; authentication, encryption, IDS, WAFs, firewalls, HIPS, EDR, EPP, etc.
* Proficient in both Linux and Windows operating systems.
* Understanding of application protocols
* Strong analytical, tactical and critical thinking ability.
* Ability to handle multiple competing priorities in a fast-paced environment.
* Ability to communicate effectively across multiple levels
* Preferred CISSP, GIAC, or other relevant certification
