Our client, a leading bank, is looking for a Senior Analyst to join their growing SOC team.
13th January, 2020
Job Description & Synthesis
Cyber Security is the protection of our client and their data. The Sr. Cyber Security Operations Analyst will play a significant role in their Security Operations Center team (SOC), reviewing and handling oversight to a number of security controls, and providing operational insight to complete management of the Cyber threats.
Day-to-day operations of our client's Cyber Intelligence Monitoring and Threat analysis.
Provide log analysis, real-time intrusion analysis, incident response, and security monitoring using a wide array of industry-leading tools
Respond and perform in-depth technical analysis and risk assessment of all security events and incidents.
Provide related documentation in support of regulatory guidelines (FFIEC, NYDFS, etc..) and auditing
Cyber Security Operations Center
Maintain a working relationship with a 24x7 external cyber intelligence and threat monitoring service (MSSP).
Respond and manage security events. Engage in security investigations and use tools to identify and report the outcomes of incidents to senior management.
Participate in technical discussions around security events and activities with various non-technical and technical parties.
Collaborate with security architects, development, network, server, and web teams to investigate security incidents and provide prevention solutions for cyber threats.
Follow the firm’s project management and SDLC disciplines to insure structured and effective implementation and operations
Vulnerability Management Program
Responsibilities for the monthly testing of the firm’s security vulnerabilities
Track remediation of the identified security vulnerabilities.
Collaborate with application and operating system teams to remediate any security vulnerability findings.
Support 3rd party testing of the firm’s cybersecurity posture.
Recommend, and apply best practices for addressing ongoing threats
Security Operations and Response tools
Help manage security tools that monitor the firm’s security configuration, changes and baselines; such as SIEM.
Respond to Endpoint protection and malware detection tools alerts.
Makes suggestions on tuning IDS Platforms, Firewall Policies, and other security devices.
8 or more years of relevant work experience in two or more of the following areas:
Network security management
Web application security management
Vulnerability & Patch management
Designing and Operating enterprise security controls
Malware analysis and remediation and Web Server – Anomaly Analysis
Security Incident Response management
Security Operations management and maintaining IT general controls
Bachelor's Degree (or equivalent) or advanced degree highly desired.