Security Associate ( Security Operations Center )

PNC Financial Services Group, Inc. Birmingham , AL 35202

Posted 2 months ago

Position Overview

At PNC, our people are our greatest differentiator and competitive advantage in the markets we serve. We are all united in delivering the best experience for our customers.

As a Security Analyst within PNC's Enterprise Technology & Security organization, you will be based in Pittsburgh, PA or Birmingham, AL. Remote work will be considered for a well-qualified candidate.

The work shift will be Monday

  • Friday, 3:00pm

  • 11:00pm EST.

Ideal candidate will demonstrates intimate knowledge of the following:

  • Evaluate, respond, and mitigate alerts that originate from the SIEM and the Cyber security product suite, e.g. NGFWs, IDS/IPS, Anti-virus, Web Application Firewalls, NAC Solution, EDR, etc.

  • Demonstrate use and understanding of security technologies such as Security Incident and Event Management (SIEM) & Endpoint Detection and Response (EDR)

  • Assist with tuning the SIEM events to reduce the false positives

  • Extract the IOCs and behavioral characteristics of malicious samples and implement the proper mitigation (Sandboxing)

  • Demonstrate the ability to scope an event to ensure the proper remediation steps

  • Ability to demonstrate subject matter expertise on the one or more functions performed by the SOC

  • Perform operational support for the institution as a representative of the security organization

Job Description

  • Participates in activities, processes, and utilizes tools needed to improve overall security posture of the organization.

  • Applies security concepts, reviews information, executes defined tasks, analyzes requirements, reviews logs, and creates documentation. Performs investigation and data loss prevention, data manipulation, and coordination of activities. Performs actions to address or mitigate risks and vulnerabilities. Reviews and defines controls.

  • Advises on less complex security procedures and products for clients, security administrators and network operations. Participates in enforcement of control security risks and threats.

  • Conducts security assessments and other information security routines consistently, with supervision.

PNC Employees take pride in our reputation and to continue building upon that we expect our employees to be:

  • Customer Focused
  • Knowledgeable of the values and practices that align customer needs and satisfaction as primary considerations in all business decisions and able to leverage that information in creating customized customer solutions.
  • Managing Risk
  • Assessing and effectively managing all of the risks associated with their business objectives and activities to ensure they adhere to and support PNC's Enterprise Risk Management Framework.

Competencies

Analytical Thinking

  • Knowledge of techniques and tools that promote effective analysis and the ability to determine the root cause of organizational problems and create alternative solutions that resolve the problems in the best interest of the business.

Effective Communications

  • Understanding of effective communication concepts, tools and techniques; ability to effectively transmit, receive, and accurately interpret ideas, information, and needs through the application of appropriate communication behaviors.

Information Assurance

  • Knowledge of and the ability to protect information and information systems while ensuring their confidentiality, integrity and availability.

Information Security Management

  • Knowledge of and the ability to manage the processes, tools, techniques and practices for assuring adherence to standards associated with accessing, altering and protecting organizational data.

Information Security Technologies

  • Knowledge of technologies and technology-based solutions dealing with information security issues.

IT Environment

  • Knowledge of an organization's IT purposes, activities and standards; ability to create an effective IT environment for business operations.

IT Standards, Procedures & Policies

  • Knowledge of and the ability to utilize a variety of administrative skill sets and technical knowledge to manage organizational IT policies, standards, and procedures.

IT Systems Management

  • Knowledge of and ability to utilize a variety of technical tools and techniques to guarantee service availability and ensure IT system performance.

Problem Solving

  • Knowledge of approaches, tools, techniques for recognizing, anticipating, and resolving organizational, operational or process problems; ability to apply this knowledge appropriately to diverse situations.

Software Security Assurance

  • Knowledge of and the ability to detect and prevent data security vulnerabilities of coding throughout the software development life cycle within software development organizations.

Work Experience

Roles at this level typically require a university / college degree, with 2+ years of relevant professional experience. In lieu of a degree, a comparable combination of education and experience (including military service) may be considered.

Education

Bachelors (Required)

Additional Job Description

Benefits

PNC offers employees a comprehensive range of benefits to help meet your needs now and in the future. Depending on your eligibility, options for full-time employees include medical/prescription drug coverage (with a Health Savings Account feature); dental and vision options; employee and spouse/child life insurance; short- and long-term disability protection; maternity and parental leave; paid holidays, vacation days and occasional absence time; 401(k), pension and stock purchase plans; dependent care reimbursement account; back-up child/elder care; adoption assistance; educational assistance and a robust wellness program with financial incentives. To learn more about these and other programs, including benefits for part-time employees, visit pncbenefits.com > New to PNC.

Disability Accommodations Statement:

The PNC workplace is inclusive and supportive of individual needs. If you have a physical or other impairment that might require an accommodation, including technical assistance with the PNC Careers website or submission process, please call 877-968-7762 and select Option 4: Recruiting or contact us via email at pathfinder@pnc.com.

The Human Resources Service Center hours of operation are Monday

  • Friday 9:00 AM to 5:00 PM ET.

Equal Employment Opportunity (EEO):

PNC provides equal employment opportunity to qualified persons regardless of race, color, sex, religion, national origin, age, sexual orientation, gender identity, disability, veteran status, or other categories protected by law.

California Residents

Refer to the California Consumer Privacy Act Privacy Notice to gain understanding of how PNC may use or disclose your personal information in our hiring practices.

ArrayArrayEvaluate, respond, and mitigate alerts that originate from the SIEM and the Cyber security product suite, e.g. NGFWs, IDS/IPS, Anti-virus, Web Application Firewalls, NAC Solution, EDR, etc. Demonstrate use and understanding of security technologies such as Security Incident and Event Management (SIEM) & Endpoint Detection and Response (EDR). Assist with tuning the SIEM events to reduce the false positives . Extract the IOCs and behavioral characteristics of malicious samples and implement the proper mitigation (Sandboxing). Demonstrate the ability to scope an event to ensure the proper remediation steps. Perform operational support for the institution as a representative of the security organization. Participates in activities, processes, and utilizes tools needed to improve overall security posture of the organization. Applies security concepts, reviews information, executes defined tasks, analyzes requirements, reviews logs, and creates documentation. Performs investigation and data loss prevention, data manipulation, and coordination of activities. Performs actions to address or mitigate risks and vulnerabilities. Reviews and defines controls. Advises on less complex security procedures and products for clients, security administrators and network operations. Participates in enforcement of control security risks and threats. Conducts security assessments and other information security routines consistently, with supervision. Customer Focused

  • Knowledgeable of the values and practices that align customer needs and satisfaction as primary considerations in all business decisions and able to leverage that information in creating customized customer solutions. Managing Risk

  • Assessing and effectively managing all of the risks associated with their business objectives and activities to ensure they adhere to and support PNC's Enterprise Risk Management Framework. Information Assurance

  • Knowledge of and the ability to protect information and information systems while ensuring their confidentiality, integrity and availability. Problem Solving

  • Knowledge of approaches, tools, techniques for recognizing, anticipating, and resolving organizational, operational or process problems; ability to apply this knowledge appropriately to diverse situations. software security assurance, siem, process, focused, information assurance, assessing, software security, communication, documentation, software development life cycle, security technologies, software development, data loss prevention, firewalls, enterprise risk management framework, problem solving, information security technologies, cyber security, it, security assessments, data security, it system, it systems, event, operational, support, application, hiring practices, communications, business, business operations, information security management, information security, service, data manipulation, analytical thinking, supervision, network operations, effective communication, remediation, organizational, soc, customer needs, it systems management, security incident and event management, performance, effective communications, managing risk, security, IT Security Operations Center Analyst, IT Security Analyst

  • Security Operations, Security Operations Analyst, IT Security Analyst & Security Analyst & Network Security Analyst, Security Analyst, Senior Security Analyst, Information Security Specialist, IT Security Specialist, DLP Security Engineer, Cyber Security Manager

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
NIS Application Security Consultant Senior Associate

Pwc

Posted 1 week ago

VIEW JOBS 11/25/2021 12:00:00 AM 2022-02-23T00:00 A career in Information Security, within Internal Firm Services, will provide you with the opportunity to develop and support our internal security technologies and services across the entire global and local PwC network. You'll focus on being the forefront of designing, developing, and implementing information technology including hardware, software, and networks that enhances security of internal information and protect our firms intellectual assets. To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future. As a Senior Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to: * Use feedback and reflection to develop self awareness, personal strengths and address development areas. * Delegate to others to provide stretch opportunities, coaching them to deliver results. * Demonstrate critical thinking and the ability to bring order to unstructured problems. * Use a broad range of tools and techniques to extract insights from current industry or sector trends. * Review your work and that of others for quality, accuracy and relevance. * Know how and when to use tools available for a given situation and can explain the reasons for this choice. * Seek and embrace opportunities which give exposure to different situations, environments and perspectives. * Use straightforward communication, in a structured way, when influencing and connecting with others. * Able to read situations and modify behavior to build quality relationships. * Uphold the firm's code of ethics and business conduct. Job Requirements and Preferences: Basic Qualifications: Minimum Degree Required: High School Diploma Minimum Years of Experience: 2 year(s) Preferred Qualifications: Degree Preferred: Bachelor Degree Certification(s) Preferred: CISSP, CCSP, CISM, CISA Preferred Knowledge/Skills: Demonstrates thorough knowledge and/or a proven record of success in the following areas: * Possessing knowledge and experience with application security solutions and web hosting architecture and principles; * Leveraging experience with Software development including web, mobile applications and development languages; * Having experience with commercial Source Code Analysis/Static Application Security Testing Tools; * Understanding of application source code vulnerability mitigation processes; * Recognizing risk assessment/acceptance factors that can affect business and security decisions; * Having knowledge of and experience with Business processes and drivers that can affect system design; * Analyzing application security vulnerabilities and executing mitigation strategies; * Leveraging review processes using application threat vulnerability tools, scanning techniques and/or code review results; * Using assessments of vulnerabilities, sources of threats, and current security guidance to determine the effectiveness of mitigation plans; * Collaborating with teams to identify opportunities and provide recommendations on how application security can be built into project development; * Interacting with project management team members and key stakeholders on application projects; * Reviewing application threat vulnerability assessments on application development projects; * Implementing strategy for application threat vulnerability review and remediation; * Identifying and documenting complex business cases to assist in gaining internal support to implement security solutions; * Collaborating with team members and stakeholders virtually; * Evidencing communication skills, both written and verbal; * Having customer service experience/skills; * Multitasking and possessing time management skills; and, * Possessing analytical skills and attention to detail. For positions in Colorado, visit the following link for information related to Colorado's Equal Pay for Equal Work Act: https://pwc.to/coloradoifsseniorassociate. All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law. PwC is proud to be an affirmative action and equal opportunity employer. PwC does not intend to hire experienced or entry level job seekers who will need, now or in the future, PwC sponsorship through the H-1B lottery, except as set forth within the following policy: https://pwc.to/H-1B-Lottery-Policy For positions based in San Francisco, consideration of qualified candidates with arrest and conviction records will be in a manner consistent with the San Francisco Fair Chance Ordinance. 275691 Please note that, at this time, to be in-person at a PwC office, client location or PwC-sponsored events, you must be fully vaccinated against COVID-19. #LI-Remote Pwc Birmingham AL

Security Associate ( Security Operations Center )

PNC Financial Services Group, Inc.