Senior Cyber Threat Engineer I

First Citizens Bank Raleigh , NC 27611

Posted 2 months ago

Position Description:

As a Senior Cyber Threat Engineer, you will be a member of the bank's Information Security team. This role is engineering focused to support lifecycle of the Threat and Vulnerability Management cyber toolsets. (e.g. build, support, operate, and maintain cyber security toolsets in the realm of Threat response, on premise and cloud).

Additional Responsibilities:

  • Engineering cyber security tools based on roadmap (e.g. reviewing gaps in toolsets, leading proof of concepts, researching technologies)

  • Network and systems management in place (e.g. proactive monitoring)

  • Train team members on toolsets.

  • Ensure systems are patched and running latest versions.

  • Ensure documentation is created and maintained.

  • Security operations and incident response.

Position Requirements:

Bachelor's degree in Computer Engineering, Computer Science, Mathematics, Engineering, or a related IT field preferred and 6 years of experience in systems engineering, networking or information security technologies including at least 4 years of information security experience in an enterprise environment.

  • -OR-

High school diploma or GED and 10 years of experience in systems engineering, networking or information security technologies including at least 4 years of information security experience in an enterprise environment.

Additional Requirements:

  • In-depth knowledge of systems administration and systems analysis procedures.

  • Demonstrated advanced knowledge of at least four of the following: IDS/IPS, Insider Threats, APT (Advanced Persistent Threats), Malware Analysis, Exploit techniques, RegEx (Regular Expressions), SEIM Tuning , Alarm and Signature Creation, Email Security, Cloud security.

  • Advanced log parsing and analysis skill set.

  • Knowledge and experience with Cloud technologies (Amazon, Azure, Google Cloud).

  • Protocol analysis experience (e.g. Wireshark).

  • Knowledge of networking fundamentals (TCP/IP, network layers, Ethernet, ARP, etc).

  • In-depth knowledge of systems administration and systems analysis procedures.

  • In-depth knowledge of risk management standards, procedures and practices.

  • Strong communication skills, written and oral to communicate effectively with technical and non-technical audiences.

  • Ability to lead and perform risk analysis for vulnerabilities, incidents, and change management requests.

  • Ability to work as part of a team and independently with limited supervision.

  • Ability to lead, mentor, and train others.

  • Ability to prioritize work and meet deadlines.

Other Preferred Qualifications:

  • Banking/financial services experience.

  • Prior Military experience and or experience in a regulated industry.

  • Systems Administration and Information security experience in medium/large enterprise environments.

  • Linux and Windows administration.

  • Scripting (e.g Python).

  • Experience engineering solutions and then operating and maintaining systems (e.g. idea, planning, testing, documentation, implementation, patching, release note analysis, etc.)

  • Experience with Email Security (e.g. DMARC, DNS, Inline mail gateway malware protection).

  • Industry certifications in cyber security and forensics, such as Certified Ethical Hacker (CEH), GIAC Security Essentials (GSEC), GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP), Security + and other related credentials.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cyber Threat Analyst II

N-Tier Solutions

Posted 2 weeks ago

VIEW JOBS 9/1/2019 7:16:39 PM 2019-11-30T19:16 <p>Partner with lines of business as cyber threat analyst to understand application and infrastructure functionality for Minimum Security Baseline logging and monitoring project efforts.  Lead analysis sessions to identify gaps in log data and work with analytics team for log ingestion and event identification.  Support analytics team and Cyber Threat Operations Center through alert test / tune phase and playbook creation.  Collaborate with business owners and Cyber Threat Management to design, enhance, and implement threat response opportunities to reduce risk profile.<br /> <br /> <strong>Essential Duties and Responsibilities:</strong><br /> <em>Following is a summary of the essential functions for this job.  Other duties may be performed, both major and minor, which are not mentioned below.  Specific activities may change from time to time.</em><br /> 1. Listen and collaborate with business and technical application leads to understand, analyze, and document event and threat use cases for large-scale business applications and user processes.<br /> 2. Use structured analysis to research and identify new threat tactics, techniques and procedures used by cyber threat actors.<br /> 3. Develop, document and revise flow charts for current and future processes and system procedures.<br /> 4. Work with cross-functional teams to review and analyze applications including logging capabilities, potential vulnerabilities, and opportunities to securely improve workflow.<br /> 6. Stay current with emerging technologies to include their strengths and weaknesses and their application to business solutions.<br /> <br /> <strong>Required Skills and Competencies:</strong><br /> <em>The requirements listed below are representative of the knowledge, skill and/or ability required.  Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.</em><br /> 1. Bachelor’s degree in Information Technology-related field, or equivalent education and related training<br /> 2. Three to five years of experience and strong proficiency with the following Information Technologies:<br /> • Information security best practices<br /> • Relational database technologies<br /> • Distributed, Web, and/or networking technologies (Mainframe optional)<br /> • Design tools and techniques<br /> • Application development methodologies<br /> • Technology testing and change implementation best practices<br /> 3. Highly competent communication and documentation skills<br /> 4. Self-starter with entrepreneurial spirit<br /> 5. Excellent verbal and written communication skills<br /> 6. Ability to work independently or as a member of a team<br /> 7. Ability to direct other team members and train others<br /> 8. Demonstrated proficiency in basic computer applications, such as Microsoft Office software products<br /> 9. Splunk experience highly desired<br /> 10. Ability to travel occasionally</p> <p> </p> <p> </p> N-Tier Solutions Raleigh NC

Senior Cyber Threat Engineer I

First Citizens Bank