The key objectives for this Information Security Analyst position are to expand threat detection and prevention capabilities in existing and future security tools. The Analyst must be able to identify gaps in existing security configurations and provide effective recommendations to improve, remediate, and expand controls against cyber threats.
Oversee and manage tools such as:
Security Information & Event Management (SIEM)
Vulnerability and Security Assessment
Host and Network based Intrusion Detection/Prevention Systems (IDS/IPS)
Other security applications
Conduct analysis, troubleshooting, and trending of incidents/events detected from SIEM, IDS/IPS, and other security applications
Create custom rules and modify existing rules, policies, alerts, etc. within the security applications based on stakeholder needs or situational conditions
Perform Level 2 & 3 triage and handling of security events (escalated from Level 1 Security Analysts or other); includes but is not limited to identification, containment, remediation, and reporting activities.
Create new and enhance existing procedures to improve operational efficiencies and reporting accuracy
Develop detailed technical recommendations to solve current and future security issues; identify protection gaps and propose effective mitigating solutions
Maintain awareness of emerging threats to ensure data protection, system integrity, and network availability
Evaluate, design, implement, and configure new security products and technologies
Develop, review, and maintain documentation for security systems and procedures
Analyze, evaluate, and communicate Threat Intelligence notifications to reduce risk exposures and to defend against cyber attacks
Bachelor's Degree in Computer Science or Engineering or equivalent experience
Coding/Scripting experience (e.g. Python, Perl, PowerShell)
1 Year of SIEM operational experience is required; must have implemented and managed the above technologies; must possess strong technical knowledge of architecture, system policies, rules, etc. AlienVault USM implementation and/or management experience, a plus
Strong verbal and written communications skills; must be able to effectively communicate technical details and thoughts in non-technical terminology to various levels of management
Strong organizational, multi-tasking, and time management skills
CISSP, CISM, CISA, CEH, OSCP, GCIH, or other industry recognized security certification(s)
Apple Bank offers Medical, Dental, 401k and Tuition Reimbursement Benefits to full time employees.
We are an equal opportunity employer and do not discriminate on the basis of any legally protected status or characteristic. Minority/Female/Disability/Veteran.