IT Security Analyst

Guild Mortgage Company, closing loans and opening doors since 1960. As a mortgage banking firm we are dedicated to serving the home owner/buyer. Our goal is to provide affordable home financing for our customers, utilizing the best terms available while providing a level of professionalism and service unsurpassed in the lending industry.

Position Summary

The IT Security Analyst defends against cybersecurity incidents and identifies, analyzes, communicates, and contains incidents as they occur. The role is primarily responsible, under general direction, for the identification and support of technologies designed to protect the confidentiality, integrity, and availability of Guild’s information systems.  The IT Security Analyst works with technical and non-technical staff to ensure that deployed technologies are effectively and efficiently providing the intended controls consistent with established policies and procedures.  

Essential Functions

• Conducts network monitoring and intrusion detection analysis using various computer network defense tools, such as intrusion detection/prevention systems, firewalls, and host-based security systems.
• Conducts log-based and endpoint-based threat detection to detect and protect against threats coming from multiple sources.
• Deploys cloud-centric detection to detect threats related to cloud environments and services used by the organization.
• Correlates activity across assets (endpoint, network, apps) and environments (on-premises, cloud) to identify patterns of anomalous activity.
• Reviews alerts and data from sensors, and documents formal, technical incident reports.
• Works with threat intelligence and/or threat-hunting teams.
• Provides network subscribers with incident response support, including mitigating actions to contain activity and facilitating forensics analysis when necessary.
• Works with security information and event management (SIEM) to manage/tune the system, create/manage the detection content and actively watch for alerts.
• Correlates network, cloud, and endpoint activity across environments to identify attacks and unauthorized use.
• Research emerging threats and vulnerabilities to aid in the identification of incidents.
• Provides users with incident response support, including mitigating actions to contain activity, and facilitating forensics analysis when necessary.
• Perform security standards testing against computers before implementation to ensure security.
• Ensure authorized access by investigating improper access, revoking access, reporting violations, monitoring information requests by new programming, and recommending improvements.
• Participate as a member of the Incident Response Team.

Qualifications

• Bachelor’s degree in Computer Science, cybersecurity, or related field.
• 2+ years of experience in IT audit, enterprise risk management, penetration tester, red team/incident responder, or as a junior security operations analyst.
• Certifications desired, but not required: Security+, SSCP, or other certifications.
• Familiarity with risk assessment and risk management concepts or processes.
• Working knowledge of various regulatory security requirements – particularly Sarbanes-Oxley (SOX), GLBA, and CCPA.
• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
• An ability to effectively influence others to modify their opinions, plans or behaviors.
• An understanding of organizational mission, values, goals, and consistent application of this knowledge.
• Strong problem-solving and troubleshooting skills.
• Can interface with, and gain the respect of, stakeholders at all levels and roles in the company.
• Is a confident, energetic self-starter, with strong interpersonal skills.
• Is comfortable with working shifts and a changing schedule.
• Has good judgment and a sense of urgency, and has demonstrated commitment to high standards of ethics, regulatory compliance, customer service and business integrity.
• Instinctive and creative.
• Self-motivated and possessing of a high sense of urgency and personal integrity.
• Highest ethical standards and values.

Supervision

• General to intermittent supervision required, depending on experience
• Moderate to high level of judgment in execution of core job responsibilities; applies sound judgment and thinks critically about downstream impact of changes on processes and system
• Work on cross-functional projects which will require collaborations with different departments
• Travel: 0%

Requirements

Physical: Work is primarily sedentary; mobility in an office setting.

Manual Dexterity:  Frequent use of computer keyboard and mouse.

Audio/Visual: Ability to accurately interpret sounds and associated meanings at a volume consistent with interpersonal conversation. Regularly required to accurately perceive, distinguish and interpret information received visually and through audio; e.g., words, numbers and other data broadcasted aloud/viewed on a screen, as well as print and other media.

Environmental:  Office environment – no substantial exposure to adverse environmental conditions.

Guild offers a pleasant work environment, competitive compensation and excellent benefits package; including medical, dental, vision, life insurance, AD&D, LTD and 401(k) with employer match.

Guild Mortgage Company is an Equal Opportunity Employer.

Targeted Salary Range: $77,000 to $105,000 annually 

Compensation at Guild is influenced by a wide array of factors including but not limited to local and federal minimum wage requirements, education, level of experience, and applicant’s geographical location.

REQ#: ITSEC016867