Cyber Analyst II
About The Position
We do the right things, right now. We do them in a way that is relevant to our clients. Become a part of our history as it continues to be written! If you are interested and qualified for this role, we invite you to apply. The Cyber Analyst provides leadership for cyber incident response and cyber security protection across First Financial Bank. This role needs experience within the Information Security discipline including monitoring networks for security issues, investigating security breaches, and developing company-wide best practices for cyber security. The Cyber Analyst is responsible for strengthening the company's cyber threat management capabilities by leveraging technical and soft skills to promote a robust security mindset across the company. This role interacts with multiple levels of the organization, including senior leadership, and it is fundamental in cultivating the company's cybersecurity culture.
Requirements
- 3 years of Information Security experience.
- Ability to work with multiple lines of business at all levels of the organization, including the ability to learn and understand business processes.
- Comprehensive knowledge of threat management techniques including how to monitor, detect, and respond to cyber security incidents.
- Ability to train and mentor others in multiple security domains.
- Working knowledge of and proven experience with: Endpoint Detection and Response (EDR) technologies Web Gateway technologies Email protection technologies Network and firewall technologies (Cisco)
- MITRE Attack framework and methodology
- Familiarity with programming or scripting languages like Python, C, C++, or Unix Scripting.
- Ability to: Build partnerships with line of business leaders Consult, provide guidance, and communicate effectively with internal partners Helping build and champion a company-wide culture around cyber security
Nice To Haves
- Bachelor's degree
- Beginner knowledge of privacy laws (eg GDPR & CCPA).
Responsibilities
- Helps with the use of monitoring tools, SIEM (Security Incident Event Monitoring) to carefully examine network traffic and to identify both external and internal threats.
- Assists in detailing and analyzing current events, threat actors, campaigns, tactics, techniques, and procedures (TTPs), and malware to summarize information, identify patterns, and understand potential impact related to our current risk posture.
- Provides written summaries of findings and document recommended actions in both executive summaries as well as detailed technical reports for system owners.
- Assists with the development of strategic recommendations on the development and implementation of threat management projects.
- Based on cyber security policy, assists with the development of rules to identify, detect, and respond to cyber security incidents
- Helps with the development of cyber security policies.
- Understands how associates use data and information across the organization to optimize the company’s cyber security posture.
- Helps build and champion a company-wide culture around cyber security.
- Participates in the company’s continuous improvement around threat management and ensure the company is staying up to date with the latest technical advances.
- Enforces data loss prevention policies across the company using technical preventive controls
Benefits
- We have relevant, thoughtful benefits and programs that support every aspect of our associates' holistic wellbeing.
- Please review our Benefits Guide
- All roles are incentive eligible with the exception of Co-Op, Intern, or Student positions.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
1,001-5,000 employees
