Information Security Analyst

SUMMARY

The Information Security Analyst provide hands-on technical support and administration of a wide range of security countermeasures, tools, and technologies, to include (but not limited to) firewalls, access management systems, proxies, and scanning systems. This position will work with the information technology team and other Bank departments to prevent, detect, and respond to security incidents, implement best practices, and manage security tools and devices across the enterprise. This position provides accurate and timely monitoring and reporting of systems and potential risks related to the bank. This will be accomplished via investigation, log reviews, user requests, email alert reviews, etc.

Ensures compliance with established Company policies and procedures. Demonstrates knowledge of, adherence to, monitoring and responsibility for compliance with state and federal regulations and laws as they pertain to this position including but not limited to the following: Regulation Z (Truth in Lending Act), Regulation B (Equal Credit Opportunity Act), Home Mortgage Disclosure Act, Real Estate Settlement Procedures Act, Fair Credit Reporting Act, Bank Secrecy Act in conjunction with the USA PATRIOT Act, Anti-Money Laundering and Customer Information Program, Right to Financial Privacy Act (state and federal) and Community Reinvestment Act.

REQUIRED DUTIES

1.Identifies issues independently and proactively, troubleshoots problems, and makes decisive decisions based on sound security principles.

2.Assists in developing the Bank's security initiatives into a top-tier program.

3.Promotes good security practices, and is exemplary in modeling best practices.

4.Assists in evaluating security solutions, and provides recommendations to the Security Team.

5.Assists with the implementation of ongoing risk assessment program targeting information security, cybersecurity, and privacy matters; recommends methods for vulnerability detection and remediation and performs and/or oversees vulnerability testing.

6.Assists with the implementation of approved policies and procedures; and ensures compliance with established policies and procedures and makes suggestions for changes and improvements.

7.Reviews security logs and email alerts for anomalous and/or malicious activity

8.Performs daily administration of information security systems that include firewalls, spam filtering, and other perimeter security systems.

9.Prepares and maintains reports and documentation as required.

10. Investigates user request or system generated alerts and ensure security issues are addressed promptly.

11. Collaborates with external departments to resolve security issues.

12. Conducts risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs.

13. Recognizes problems by identifying abnormalities; reporting violations.

14. Treats people with respect; keeps commitments; inspires the trust of others; works ethically and with integrity; upholds organizational values; accepts responsibility for own actions.

15. Demonstrates knowledge of and adherence to EEO policy; shows respect and sensitivity for cultural differences; educates others on the value of diversity; promotes working environment free of harassment of any type; builds a diverse workforce and supports affirmative action.

16. Follows policies and procedures; completes tasks correctly and on time; supports the company's goals and values.

17. Performs the position safely, without endangering the health or safety to themselves or others and will be expected to report potentially unsafe conditions. The employee shall comply with occupational safety and health standards and all rules, regulations and orders issued pursuant to the OSHA Act of 1970, which are applicable to one's own actions and conduct.

18. Performs duties specific to the position and other functions as assigned.

MINIMUM REQUIREMENTS

These specifications are general guidelines based on the minimum experience normally considered essential to the satisfactory performance of this position. The requirements listed below are representative of the knowledge, skill and/or ability required to perform the position in a satisfactory manner. Individual abilities may result in some deviation from these guidelines.

• Bachelor's degree in Computer Science from a college or university preferred; and 1-3 years of experience and/or training in information security or cyber security with a strong understanding of information security concepts, preferably within the financial services industry; or the equivalent combination of education and experience. Educational experience, through in-house training sessions, formal school or information security related curriculum, should be applicable to the information security industry.

• Preferably at least or more of the following certifications: CompTIA Security+, CEH, GSEC, CISSP

• Experience with log aggregation tools such as Security Incident Event Management (SIEM) is a plus

• Ability to multitask and make decisive decisions.

• Demonstrates excellent critical thinking and problem solving abilities

• Interpersonal skills and the ability to work effectively with people in a wide range of positions and levels.

• Basic skills in computer terminal and personal computer operation; mainframe computer system; word processing and spreadsheet software programs.

• Basic typing skills to meet production needs of the position.

• Basic math skills; ability to calculate interest, commissions, proportions, and percentages; balance accounts; add, subtract, multiply and divide in all units of measure, using whole numbers, common fractions and decimals; locate routine mathematical errors; compute rate, ratio and percent, including the drafting and interpretation of bar graphs.

• Basic verbal, written and interpersonal communication skills, with the ability to apply common sense to carry out instructions and instruct others, train personnel, write reports, correspondence and procedures, and speak clearly to customers and employees.

• Ability to work with little supervision while performing duties.

• Current driver's license and a vehicle with appropriate insurance coverage if required to drive in the course of performing assigned duties and responsibilities.

Pay $45,000 - $73,000 per year. The salary reflects the full salary range for this position. Individual placement within the range is based on the candidate's current experience, education, skills, and abilities related to the position. Successful candidates typically begin up from the beginning to mid-point of the salary range. Successful candidates may be eligible for [bonus/stock/commissions/incentives] at the Company's sole discretion. We offer a comprehensive benefits package which includes paid sick and vacation leave; paid holidays; medical, dental, vision, life and disability insurance package for employees and dependents; various other voluntary benefit offerings, and optional retirement accounts.

We are an Equal Opportunity Employer. All applicants will receive consideration for employment without regard to race, color, ancestry, religion, sex, national origin, sexual orientation, age, marital status, disability, gender identity, gender expression, genetic information, or military or Veteran status, or any other characteristic protected by law.