Info Security Splunk Analyst

*This is not a remote position. Must reside in the state of CO on start date. Relocation assistance is not provided. FirstBank does not sponsor work visas*

**If candidates are related to, living with, dating, or in a familial-like relationship with a current FirstBank employee or FirstBank Board of Director they cannot be considered at this time**

Salary Range

$92,144.00 To $123,032

Founded in 1963, FirstBank is Colorado's largest locally owned holding company and we are still growing, serving customers in Colorado, California, and Arizona. Our growth can be attributed to one simple philosophy: do right by customers, communities, and employees, which is at the center of the company’s “banking for good” mantra. FirstBank believes that diversity, equity, and inclusion are part of everything we do, both within and outside our company, and we take pride in hiring and training a diverse and talented group. We strive to not only maintain a diverse workforce, but also ensure our employee experience garners a sense of belonging, is inclusive and equitable. FirstBank believes that a company is nothing without the people that comprise it. By joining the FirstBank team you will experience our great team culture with ample opportunity for growth. There’s an opportunity for everyone with positions across the company, from Personal Banker and Call Center to Technology and Lending. Apply today to learn more and join the team!

A Brief Overview

The Analyst, Info Security will work to promote and ensure the security of FirstBank's and its customers' data through the rigorous application of tools and skills for the purpose of intrusion/breach prevention, threat hunting, and incident response. Will endeavor to maintain the tactical advantage against adversaries through continuous research, involvement in peer security groups, and the procurement of tools/services to fill gaps that are identified in our security posture. The Analyst role will be focused on managing and implementing projects.

What you will do

• Lead complex implementation projects.
• Manage vendor efforts in conjunction with project plans.
• Balance multiple projects and multiple tasks while meeting agreed upon objectives.
• Maintain documentation on an on-going basis of the security aspects of our network and applications; include documentation updates as an integral part of every project.
• Evaluate hardware and software products and network services for potential fit with company’s security requirements.
• Actively participate in the design of security policies for equipment and of baseline security policies for various host platforms.
• Implement security policies in equipment and baseline security policies on various host platforms; test security policies when changed and on a regular, scheduled basis to verify that they are functioning as designed.
• Work effectively with auditors in the evaluation of security policies, procedures, and infrastructure.
• Provide input on various design topologies from a security perspective and identify the pros and cons of each approach.
• Perform vulnerability assessments of various hosts and networks using appropriate scanning tools.
• Monitor various resources, including mailing lists, newsgroups and web sites, for new vulnerabilities and their potential impact on the company’s information systems; take the appropriate action to minimize the impact of these vulnerabilities on affected systems.
• Consult on security aspects of software design and make recommendations.
• Troubleshoot security-related problems; coordinate resolution with internal technical resources and vendors.
• Train other personnel on the company’s security policies and procedures; assist in the development of company-wide security training programs.
• Actively participate in all security-related strategic planning efforts.
• Monitor access to FirstBank networks to ensure that security policies in networking equipment and host systems have been implemented correctly and are functioning properly.
• Maintain knowledge of current technology and developing technology .
• Mentor other personnel.
• Manage, configure, and maintain the Splunk platform.
• Ingesting and configuring various data sources into Splunk.
• Writing, optimizing, and scheduling Splunk queries and searches.
• Manage data indexing, retention polices, and storage requirements.
• Installing, configuring, and managing Splunk apps and add-ons.
• Provide support to users and troubleshot issues.
• Perform other duties and projects as assigned.
• Understand and comply with all provisions of the Safety in the Workplace policy.

Minimum Requirements

• Typically requires a bachelor's degree in related field and a minimum of 2 years of related experience.
• A combination of post-high school education, job related certification and related experience equivalent to 5 years may be considered in lieu of minimum requirements

Preferred Requirements

• Bachelor’s Degree in Computer Science or other technical field preferred
• Splunk Certified Administrator

Knowledge, Skills, and Abilities

• Strong organizational skills
• Strong technical problem-solving skills
• Ability to talk with individuals and business groups about their needs and ask the right questions related to the security of a product or vendor
• Strong knowledge of application security, and best practices
• Working knowledge of various networking equipment, such as CSU/DSUs, routers and switches and how this network equipment fits into various network topologies
• Working knowledge of how security is implemented in equipment and on various host platforms; knowledge should include a good understanding of firewalls, packet filtering routers, and the security mechanisms implemented in various operating systems
• Good understanding of various security technologies including VPNs, IPSec, strong authentication methodologies, encryption, and digital certificates
• Working knowledge of various security tools including syslog analyzers, intrusion detection software, penetration scanning software, and host audit software
• Understanding of malware and how to detect and remediate infections
• Excellent writing skills to communicate information effectively to non-technical and technical stakeholders with the appropriate level of detail
• Strong incident response skills
• Splunk Core Expertise:
• Splunk search processing language
• Splunk installation, configuration, and deployment
• Data ingestion and parsing
• Performance Optimization

Working Conditions and Physical Requirements

• Frequently remains stationary throughout a typical business day
• Frequently operates a computer and other office machinery, such as a calculator, copy machine, and computer printer
• Occasionally moves about inside the office to access file cabinets, office machinery, and other rooms
• Occasionally positions self to access drawers and shelves of various heights
• Frequently reaches for and handles paperwork and files
• Constantly communicates with customers, coworkers, and management in-person and on the phone
• Must be able to exchange accurate information
• Provide after hours support (on-call)
• FirstBank does not currently offer fully remote positions, except as required by law. The actual number of in-office days that may be required will vary by business unit, role, and business need.

Statement of Benefits

FirstBank offers a suite of benefits that support our employees’ professional, financial, physical, emotional and spiritual well-being. Benefits currently offered with our positions include: Paid Time Off/paid leave programs, 401K/Employee Stock Ownership, United Healthcare medical, MetLife dental, VSP vision, Employee tuition reimbursement, Volunteer Time Off, Short-Term Disability, Long-Term Disability, and Group Life Insurance/AD&D

EOE/Affirmative Action

FirstBank is an EOE/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity, national origin, genetic information, disability, veteran status, or any other legally protected characteristic. FirstBank does not permit pay inequities. Anyone who believes they have been subject to pay inequity should immediately report their concerns to the Human Resource Department.

Colorado Job Application Fairness Act

Under Colorado’s Job Application Fairness Act, you have the right to redact from any documents that you submit in connection with your application information that identifies your age, date of birth, or dates of attendance at or graduation from an educational institution. Should you wish to exercise your right to redact such information, please redact it prior to submitting the documentation

*This job opportunity is expected to close on 11/29/24*