Sr. Threat Monitoring Analyst

Overview

• This position supports Information Security and Cyber Threat management programs within the Bank at a complex level of ability. Analyzes vulnerability and threat data that provides actionable intelligence for cyber defense efforts. Evaluates the Bank's networks and systems to identify technical security gaps or deficiencies. Develops process improvements and technical solutions that address the identified gaps or deficiencies. Facilitates the defense of the organization's information security and technological architecture through ongoing reporting and escalation of emerging threats. Maintains expert knowledge and educates others on security threats, industry trends, and other relevant intelligence. Assists management with special projects and oversees less experienced associates in the work group.

• Security Review - Monitors and evaluates security incidents, system alerts, audit events, and other activity for potential threats against the Bank's networks and systems. Detects anomalies, malware infections, and intrusion attempts. Identifies, recommends, and executes appropriate mitigation tactics for identified threats. Provides guidance and resolution for complex security issues.
• Business Support - Serves as an analytics resource for associate team, management, and business units. Supports the design and implementation of new security products, services, procedures, and technologies in response to changes in the security threat landscape. Enables the defense of the organization's information security and technological architecture through a number of operational and technical tasks. Ensures all cyber security monitoring systems are online and fully operational as well as ensuring compliance with all security policies and standards.
• Analysis - Analyzes data from various operating systems, databases, and applications within the Bank. Sources and interprets data to proactively search for threats.
• Reporting - Produces reports that document investigation and security incidents as well as the results of analysis. Provides analytics and reporting that facilitates actionable cyber-intelligence within daily operations. Conveys information to the appropriate parties, which includes both internal and external partners.

Bachelor's Degree and 6 years of experience in Information Security OR High School Diploma or GED and 10 years of experience in Information Security

Skill(s): Knowledge of security event log analytics and at least two of the following technologies: Firewall, Web-Proxy, IDS/IPS, Anti-VirAnti-Malware, Anti-Phishing, Malicious Web Site reporting or take-down, Knowledge of at least three of the following: Insider Threats, Advanced Persistent Threats, Malware Analysis, Exploit techniques, Regular Expressions, SEIM Tuning , Alarm and Signature Creation, Knowledge of Information Technologies with a focus in two or more of the following areas: operating systems, networking, computer programming, web development or database administration, Understanding of Internet Protocol Suite networking, including routers, switches, public and private networks, internet protocol security, and virtual private networks, Understanding of Packet Capture and analysis, Knowledge of systems administration and analysis as well as risk management standards, procedures, and practices

• Security Review - Monitors and evaluates security incidents, system alerts, audit events, and other activity for potential threats against the Bank's networks and systems. Detects anomalies, malware infections, and intrusion attempts. Identifies, recommends, and executes appropriate mitigation tactics for identified threats. Provides guidance and resolution for complex security issues.
• Business Support - Serves as an analytics resource for associate team, management, and business units. Supports the design and implementation of new security products, services, procedures, and technologies in response to changes in the security threat landscape. Enables the defense of the organization's information security and technological architecture through a number of operational and technical tasks. Ensures all cyber security monitoring systems are online and fully operational as well as ensuring compliance with all security policies and standards.
• Analysis - Analyzes data from various operating systems, databases, and applications within the Bank. Sources and interprets data to proactively search for threats.
• Reporting - Produces reports that document investigation and security incidents as well as the results of analysis. Provides analytics and reporting that facilitates actionable cyber-intelligence within daily operations. Conveys information to the appropriate parties, which includes both internal and external partners.

Bachelor's Degree and 6 years of experience in Information Security OR High School Diploma or GED and 10 years of experience in Information Security

Skill(s): Knowledge of security event log analytics and at least two of the following technologies: Firewall, Web-Proxy, IDS/IPS, Anti-VirAnti-Malware, Anti-Phishing, Malicious Web Site reporting or take-down, Knowledge of at least three of the following: Insider Threats, Advanced Persistent Threats, Malware Analysis, Exploit techniques, Regular Expressions, SEIM Tuning , Alarm and Signature Creation, Knowledge of Information Technologies with a focus in two or more of the following areas: operating systems, networking, computer programming, web development or database administration, Understanding of Internet Protocol Suite networking, including routers, switches, public and private networks, internet protocol security, and virtual private networks, Understanding of Packet Capture and analysis, Knowledge of systems administration and analysis as well as risk management standards, procedures, and practices