Our client, a leading banking institution, is looking for a Cyber Monitoring Analyst, to join their growing team.
25th October, 2019
Location(s): New York, NY; Jersey City, NJ; or Boston, MA
Job Synthesis & Description
Our client, a leading banking institution is currently recruiting Cyber Database Monitoring Analyst to join their Cyber Monitoring team.
The Cyber Monitoring team is responsible for identifying and mitigating insider threats through the monitoring of provisioning of privileged access, emergency ID usage, administrative activity, configuration changes to name a few items. Cyber monitoring and related activities are performed according to established policies and standards that industry established risk frameworks and guidance while also conforming to regulatory. The Cyber Monitoring Team interfaces with a variety of organizational leaders and technology SMEs to both share the corporate information security vision and solicit involvement in achieving higher levels of enterprise security through information sharing, innovation, and cooperation
Administer and support database monitoring solutions by developing use cases according to threat landscape, attack vectors, and solutions capabilities.
Collaborate with other SMEs to establish guidelines and framework for database monitoring such as managing alerts, identifying false positives, establishing escalation path, and responding to incidents.
Enhance database event alerting through integration with SIEM tools and correlation with related log activity sourced from other devices (i.e. network security devices).
Recommend expansion areas for additional database monitoring coverage based upon risks/threats and best practices to improve database security.
Assist investigations on information security and cyber incidents.
Outline milestones and target dates to meet project requirements and set expectations with other teams.
Maintain a strong code of confidentiality based on the sensitivity of the work being performed.
Bachelor’s degree in Computer Science or Business Administration, or relevant educational or professional experience.
Oracle Administration experience (e.g. DBA related exp.).
Certification in CISSP, CISA, CISM, or CRISC.
Experience in the financial services industry with security best practices, FFIEC and ISO standards.
General understanding of database administration, configuration, and support.
Master’s degree in Computer Science or Business Administration.
Strong written and verbal communication skills.
Ability to handle multiple priorities while meeting aggressive deadlines.
Extensive organizational and project management skills.
Strong interpersonal and collaboration skills working within and outside of the team.
Passion for technology and willingness to learn new things, determine methods and procedures on new assignments with minimal instruction.
Self-motivated with sound judgment skills and ability to identify problems, develop solutions, and manage escalations.
General understanding of preventative/detective controls across the IT infrastructure, including operating systems, applications, databases, firewalls, networks, directory services.
Strong understanding of software development life-cycle and establishing controls using security frameworks (i.e. COBIT, NIST).
Prior experience with use case development, alert response, and threat assessment using industry frameworks.
Five years of hands-on experience with Oracle database tools and SQL query development.