Senior Cyber Security Analyst

Description

CIVIC CULTURE

Our organization believes we can all do well by doing good. We value the contributions of diverse minds and prioritize the success and well-being of our employees. We also believe every person in our organization plays a role in supporting a healthy environment and helping to achieve our goal of prosperity for all. To this end, we recruit bright, energetic, and talented people to be members of our team. In return, we offer a dynamic workplace that presents opportunities for professional advancement and individual growth. We strive to always display integrity, self-awareness, courage, and respect for one another while continuing to seek opportunities to learn. We really believe that when our employees succeed, our community wins. 

ABOUT THE POSITION

As a critical and senior member of the Information Security team, the Senior Cyber Security Analyst works closely with the management, business units, enterprise applications and infrastructure teams to ensure network availability, network/system security and data security for the credit union. The position will provide coverage, at times, for some systems administration duties. This position supports the Information Security practice within the credit union by providing 2nd and 3rd tier support related to security and identity related incidents and requests. A primary function of this role is to process incoming work tickets, triaging, resolving and redirecting them as necessary.

NORMAL DAY-TO-DAY WORK

1. Lead ongoing analysis of security tools and evaluate available technology capabilities against the security needs of the credit union.
2. Provide daily data displaying the overall security coverage for specific platforms which shall be reported in appropriate manner.
3. Provide network defense system architecture, installation and configuration support by identifying, developing and facilitating implementation of initiatives and programs designed to enhance the security of the credit union’s network and data assets.
4. Ensure network security access and protect against unauthorized access, modification, or destruction of data that are critical to enable achievement of information security program goals and objectives.
5. Reviews, develops, tests, and implements security plans, products, and control techniques as well document security policies and procedures.
6. Draft and update existing documentation to include tactics, techniques and standard operating procedures and security controls for all hardware/software used on the network.
7. Provide technical expertise in development and support of Information Security and operational activities, processes, and tools for protecting technology-based information.
8. Assist with enterprise-wide establishment, and maintenance of data, security-related infrastructure, applications, and processes.
9. Lead response and investigation efforts in cyber security incidents and design corrective actions.
10. Perform software security analysis during software approval processes for the credit union and provide recommendations accordingly.
11. Review, respond to and work to mitigate findings from internal and external penetration tests and audits.
12. Leverage prior security knowledge and experience to address and adapt to emerging technologies and threats.
13. Works with Enterprise Applications and Enterprise Architecture teams to design security services and recommend security architecture improvements.
14. Take ownership for actions, decisions, and results; openly accept feedback and demonstrate both the willingness and ability to improve.

JOB QUALIFICATIONS

Here are a few skills you MUST have to be qualified for this position.

1. 7-9 years general Information Technology experience working in a mid-size to enterprise environment. 
2. 3-5 years advanced Cyber Security experience required, including knowledge of security assessment and penetration testing methodology. 
3. Solid experience working with security technologies including firewalls, IPS/IDS, NAC, EDR, proxies, and other products to secure network borders. 
4. Advanced knowledge of network monitoring, SEIM, and incident response/threat hunting tools. 
5. Ability to function in a business office environment and utilize standard office equipment including but not limited to: PC, copier, telephone, etc. 
6. Ability to lift a minimum of 25 lbs. (file boxes, computer printer). 
7. Travel required on occasion. 

Here are a few qualities we’d LIKE for you to have to make you more suited for this position.

1. Bachelor’s degree in information technology or other engineering or technical discipline.
2. CEH, GWAPT, GPEN, OSCP, GSEC, GCIH, GMON, GCWN, GCIA and/or GSE certificates.
3. Experience interpreting and implementing cyber security regulations.
4. Advanced knowledge of network administration and engineering.
5. Strong experience with digital forensics on host or network from malware perspective.
6. Ability to identify anomalous behavior on network and/or endpoint devices.
7. Experience with Security Orchestration Automation and Response (SOAR) solutions.
8. Experience with processes, tools, techniques and practices for assuring adherence to standards associated with accessing, altering and protecting organizational data.

CONTACT US

If you have questions about this position description, please feel welcome to ask. You can reach our HR Department at: 

Civic Human Resources

3600 Wake Forest Road, Raleigh, NC 27609 

careers@civicfcu.org