Security Analyst - Red Team

About The Position

Requirements

• Experience with red team attack techniques, penetration testing, and coding is desired.
• Access Control (AC)
• Building Architecture
• Customer Solutions
• Disaster Recovery Planning
• Information Security
• Network Security
• Physical Security
• Risk Assessments
• Security Technologies
• Analytical Thinking
• Effective Communications
• Information Assurance
• Information Security Management
• Information Security Technologies
• IT Environment
• IT Standards, Procedures & Policies
• IT Systems Management
• Problem Solving
• Software Security Assurance
• University / college degree, with 3+ years of relevant / direct industry experience.
• In lieu of a degree, a comparable combination of education, job specific certification(s), and experience (including military service) may be considered.
• Bachelors degree
• Customer Focused - Knowledgeable of the values and practices that align customer needs and satisfaction as primary considerations in all business decisions and able to leverage that information in creating customized customer solutions.
• Managing Risk - Assessing and effectively managing all of the risks associated with their business objectives and activities to ensure they adhere to and support PNC's Enterprise Risk Management Framework.

Responsibilities

• Recording, tracking and dispositioning of Red Team observations and findings needs an owner who can ensure that observations are appropriately recorded, communicated to stakeholders, and transferred to the appropriate stakeholder system of record.
• Review both past and emerging observations with our governance and risk partners to determine need for attention or escalation based on any risk statements that can be derived from the observations.
• Communications, writing, and organization skills to be able to produce presentation materials and technical write-ups from red team observations.
• Provides technical evaluation and analysis.
• Supports activities, process, and tools needed to improve overall security posture of the organization.
• Applies security concepts, reviews information, executes defined tasks, analyzes requirements, reviews logs, and creates documentation.
• Performs investigation and data loss prevention, data manipulation, and coordination of activities.
• Performs actions to address or mitigate risks and vulnerabilities.
• Reviews and defines controls.
• Advises on more complex security procedures and products for clients, security administrators and network operations.
• Participates in enforcement of control security risks and threats; potential of one more controls subject to manager discretion.
• Shares knowledge with staff.
• Conducts security assessments and other information security routines consistently.
• Investigates and recommends corrective actions for data security related to established guidelines.

Benefits

• medical/prescription drug coverage (with a Health Savings Account feature)
• dental and vision options
• employee and spouse/child life insurance
• short and long-term disability protection
• 401(k) with PNC match
• pension and stock purchase plans
• dependent care reimbursement account
• back-up child/elder care
• adoption, surrogacy, and doula reimbursement
• educational assistance, including select programs fully paid
• a robust wellness program with financial incentives
• maternity and/or parental leave
• up to 11 paid holidays each year
• 9 occasional absence days each year, unless otherwise required by law
• between 15 to 25 vacation days each year, depending on career level; and years of service.