Sr. Information Security Analyst

Glacier Bancorp, Inc. Missoula , MT 59802

Posted 1 week ago

We are seeking an experienced security analyst to join our growing organization! The Senior Information Security Analyst position is tasked with designing, developing, administering and tuning security event monitoring and intrusion detection related systems while providing support for new analytic methods for detecting threats. The Senior Analyst will maintain knowledge on the latest intelligence and attack methodologies to take corrective actions during security incidents and is the second level escalation point for corrective action on security events from SIEM while tuning out false positives. Examines Big Data for patterns of malicious or unwanted activities in the enterprise. This position is the primary incident responder for security incidents however, when expert knowledge is required for Incident Response, escalates the Incident to Information Security Engineers. This position will also do other duties as assigned and reports to the
Information Security Manager.Location:
Employment is preferred in Helena or Missoula, Montana, however employment in Casa Grande, Arizona or Spokane, Washington will be considered.
Compensation: A bonus program and partial relocation package is offered with this role!

DUTIES AND RESPONSIBILITIES:

  • Designing, developing, administering and tuning security event monitoring and intrusion detection related systems including the development of correlation searches, dashboards and reports for Management and Regulatory bodies. Tunes systems if false positives are found. Develops performance metrics, trend statistical data and customized management reports for Audit, Regulatory Exams, Committee and Board reports. Consults with all departments within IT to determine how to onboard security monitoring in new technologies being introduced or upgraded in the enterprise.
  • Take corrective action using the SANS stages of incident response (Preparation, Identification, Containment, Eradication, Recovery, Lessons Learned) as well as advises on remediation activities on security events escalated from Information Security Administrators and Analysts. Keeps management aware of incident status while performing deep-dive analysis by correlating data from various sources to determine if a critical system or data set has been impacted all while creates necessary Incidents, Major Incidents or Problems following the internal ITIL Processes. Communicates potential security exposures, misuse or noncompliance situations to the Information Security Manager or Information Security Officer.
  • Leads postmortem Incident Response activities including lessons learned while advising on the implementation of revised or new security controls that may be needed from the Incident Response.
  • Monitors and maintains knowledge on new security trends and technologies to better position detective and preventative controls to minimize risks associated with security breaches.
  • Provides guidance and education to organization employees on the concepts and needs of a security conscience culture to achieve compliance according to regulatory requirements, bank policy and industry standard to promote high levels of security knowledge or awareness.
  • Must comply with all company policies and procedures and all applicable laws and regulations, including but not limited to, the Bank Secrecy Act, the Patriot Act, and the Office of Foreign Assets Control. Must complete the assigned online training courses and achieve a passing score by due date.

QUALIFICATIONS:

  • 6+ years experience working in Information Technology is required.
  • 2+ years experience in Information Security Operations is required.
  • Bachelors Degree in Information Technology (preferably in Information Assurance or Information Security) or combination of education and experience is required.
  • Mid level (SANS GIAC or equivalent) certification is required. A high level (CISSP or equivalent) certification is preferred.
  • Preferred 2 years experience with Big Data analytics platforms such as Splunk.
  • Proficiency in Enterprise Windows Server and/or Linux/BSD/Unix administration, as well as, Enterprise network routing and switching.
  • Knowledge of common information security management frameworks, such as ISO 27001, ITIL, COBIT, NIST and CSIS 20 Critical Security Controls.
  • Expertise of operation security technologies such as firewalls, intrusion detection/prevention, SIEM, and other security systems.
  • Strong understanding of Internet protocols.

KNOWLEDGE, SKILL, ABILITY:

  • Strong experience in network packet and vulnerability analysis while creating an action plan to resolve issues or incidents that are discovered.
  • Ability to perform advanced system troubleshooting on various Information Technology and Information Security products.
  • Able to translate security policies and procedures into actionable SIEM correlation searches, alerts, dashboards and reports.
  • Knowledge of applicable practices and laws relating to data privacy and protection.
  • Ability to present security topics to audiences of various degrees of technical and business backgrounds.
  • Ability to create effective Security Awareness Training content.
  • Familiarity with end user support, and other industry-standard techniques and practices.
  • Ability to present ideas in business-friendly and user-friendly language.
  • Proven analytical, troubleshooting, and problem-solving abilities with a keen attention to details.
  • Strong instinct to react quickly to arising problems.
  • Proven ability to effectively prioritize and execute tasks.
  • Strong organizational, customer service, communication and decision-making skills.
  • Professional verbal and written communication skills and strong technical documentation skills.
  • Ability to work with internal and external attest staff during audits, examinations and/or reviews.
  • Strong interpersonal skills, and must use considerable tact, diplomacy, and judgment.
  • Highly self-motivated and self-directed.

WORK ENVIRONMENT: Must be able to routinely perform work indoors in climate-controlled shared work area with moderate noise level.

Must be capable of up to 10% travel (e.g. 2 days/month) by automobile (as driver and passenger), commercial airlines, rental vehicles and public transportation and be able to lodge in public facilities. Travel will be necessary to conduct the duties of this job, and the employee must have the ability to drive and have proper licensing.

COMPENSATION & BENEFITS: Salary is dependent upon relevant experience. We offer an extensive benefits package that includes, but is not limited to, flexible health coverage options: medical/dental/vision (partially employer paid with competitive premiums), health rewards program, possible employer contribution to a Health Savings Account, Employee Assistance Program (EAP); life insurance; 401K retirement plan with immediate vesting (up to 3% employer match, 3% automatic employer contribution, and profit sharing); discounted banking products and services; paid vacation/sick days, and paid holidays.

We are an Equal Opportunity Employer and qualified applicants or employees will receive consideration for employment without regard to race, color, religion, national origin, sex (including pregnancy), sexual orientation, gender identity, mental or physical disability, genetic information, protected veteran status, or any other category protected by applicable federal, state or local laws.

Glacier Bancorp, Inc. does not sponsor applicants for work visas. All applicants must be legally authorized to work in the US.

No Recruiters or unsolicited agency referrals please.

See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Web Developer Information Technology (2128254)

University Of Montana

Posted 7 days ago

VIEW JOBS 12/5/2018 12:00:00 AM 2019-03-05T00:00 Information Technology invites applications for a Web Developer (Computer Software Engineer /Applications I) to perform very specialized design, development, and maintenance of websites, applications, and associated web technologies with an extremely high degree of independence and autonomy. This involves working with clients to analyze project requirements, writing project specifications, and designing and developing applications while meeting demanding time deadlines. Since the web application development team engages in cutting-edge technology development, the incumbent will be a valuable resource to other programmers and systems administrators within the information technology organization and across campus. This interaction and networking with multiple campus entities will be crucial to the success of the Information Technology Office in terms of developing project leads and public awareness of the IT's services and capabilities. The employee will utilize specialized tools which may include, content management systems, advanced graphic design software, ticketing/work-order system and enterprise applications. This position will provide ongoing technical support and maintenance of the University's content management system and additional enterprise systems as they come online. This position assists the Web Services Manager in developing strategies for consistent presentation of web content across the University's web presence, including implementing technical and design improvements to the official template system, working with campus entities to help them comply with existing web standards, and (with other campus personnel) periodically revising standards. This position will demonstrate strong communication skills, including communication of ideas and information via digital media. This position will edit and write content on a wide range of topics for a diverse audience. In particular, this position will convey technical ideas effectively to non-technical audiences. This position will manage web projects from start to finish, including initial contact and planning with clients, the creation of a project plan, development of a project plan, development of a project schedule, and transitioning a project to a client for regular maintenance. Required Skills * Demonstrate direct experience working with web content management systems; must have direct experience with, PHP, HTML, CSS, and JavaScript. * Ability to design, code, document, implement and support internal and external websites and web applications. * Understanding of web accessibility standards in a web environment. * Conflict resolution skills. * Ability to research, analyze complex technical problems, apply sound judgments to solutions, and make recommendations. * Excellent communication skills. * Willingness to learn and embrace new concepts, skills, and develop fresh alternative solutions. * Ability to understand customer requirements and goals. * Ability to interpret customer business processes and assist with introducing new technologies where needed. * Experience with Velocity and JQuery. * Experience using version control. * Experience with content management systems. * This position is mostly desk-based. However, at times the employee may be asked to assist with the moving of computer equipment. Candidate should have the ability to work in an open space team environment that is often noisy with many distractions. Minimum Required Experience * Bachelor's degree in Computer Science, Information Systems, or another related field in addition to three (3) years of closely related experience; or any combination of experience and education that provides the competencies necessary to successfully discharge the duties and responsibilities assigned to the position. Preferred Qualifications * Demonstrate an ability beyond HTML, CSS, JavaScript and design skills to include the ability to administer enterprise application/systems. * Experience with and be able to administer the Cascade Content Management System. * Understanding of basic system architecture. * Laravel PHP framework experience. * Bootstrap front-end framework experience. * Understanding of relational databases such that they can write queries and generate reports. Position Details Position Title: Web Developer (Computer Software Engineer / Applications I) Position Number: 479920 Department: Information Technology Work Schedule: Full-time, 1.0 FTE (40 Hours a week), Monday through Friday 8:00 am to 5:00 pm, 12 months/year. Salary: $21.219/hr – Current employee's rate of pay for this position will be determined by the staff compensation plan and may be different from the posted salary. For questions and details regarding the staff compensation plan, email the Compensation Department. Union Affiliation: Montana Federation of Public Employees (MFPE) Probationary Period: Six months minimum Benefits Include: Insurance package, mandatory retirement plan, partial tuition waiver, and wellness program. Criminal Background Investigation is required prior to Offer of Employment In accordance with University regulations, finalists for this position will be subject to criminal background investigations. ADA/EOE/AA/Veteran's Preference Reasonable accommodations are provided in the hiring process for persons with disabilities. For example, this material is available in alternative format upon request. As an Equal Opportunity/Affirmative Action employer, we encourage applications from minorities, veterans, and women. Qualified candidates may request veterans' or disabilities preference in accordance with state law. References: References not listed on the application materials may be contacted; notice may be provided to the applicant. Testing: Individual hiring departments at UM may elect to administer pre-employment tests, which are relevant to essential job functions. Employment Eligibility: All New Employees must be eligible and show employment eligibility verification by the first date of employment at UM, as legally required (e.g., Form I-9). How to Apply Priority Application Date: Thursday, December 20, 2018 by 11:59 PM (Mountain Time) Complete applications received by the 'Priority Application Date' will be guaranteed consideration. The position will remain open until filled. Candidates are required to submit the following materials online via "New Resume/CV" button below. A complete application Includes: * Letter of Interest – addressing your qualifications and experience related the stated required skills for the position. * Detailed Resume – listing education and describing work experience. * Professional References – names and contact information for three (3) professional references. Need additional help? Check out our UM Jobs FAQ website. University Of Montana Missoula MT

Sr. Information Security Analyst

Glacier Bancorp, Inc.