Analyze and respond to cyber threats within various security tools according to documented procedures
Collaborates with various stakeholders within Cyber Security/Technology departments and standard owners to properly document and communicate security risks
Proactively supports a feedback loop related to information and events in order to identify and support the remediation of improving precision and accuracy of analysis
Review and understand Policies, Standards, and Procedures for improved process flows
Performs threat hunting, participate in tabletop exercises, and assist in Incident Response on a rotational job-duty basis as needed
Maintains meticulous records of all work performed, including root cause analysis, indicators of compromise, remediation steps, timeline of events, and impact assessment using clear and concise annotations as needed
Stays abreast of global cybersecurity threat trends
Supports and collaborates with various cybersecurity teams to document security posture and assess environment for relevant IOCs and gaps
Participates in and ensures proper documentation of various security assessments (i.e. Security Architecture Reviews, Red Team assessments, Purple Team engagements, and formal tabletop exercises) as needed
Analyzes software for violations in Regions Cyber Security standards as needed
Acts as a coach and mentor to junior analysts
May lead special projects

Requirements

High School Diploma or GED and (8) years of related post-secondary education and/or experience in Information Security or Information Technology
Minimum of two (2) relevant certification in Information Security or the ability to obtain relevant certification within twelve months of start date in this position, such as CompTIA Network+/Security+/CySA+, EC-Council Certified Ethical Hacker (CEH), Cisco CCNA/CCNA-Security, GIAC GSEC, etc.
Willingness and availability to work on a pre-determined shift and rotational on call
Minimum of one (1) Intermediate to Advanced Amazon Web Services (AWS) or Azure Architect/Administrator and/or Security specialty certification
Advanced Incident Response, Cyber Leadership, Penetration Testing certification – GCIH, GSOM, GPEN, CISSP, CISM, OSCP
Prior working experience in a Security Operations Center (SOC) environment
Prior experience developing use cases for a Security Operations Center (SOC) from threat hunting and threat detection engineering to investigation playbook and response procedure development
Understanding of MITRE ATT&CK Framework and Cyberattack Kill Chain and how these frameworks can be used to identify gaps as well as orient analysts in attack progression

Benefits

Paid Vacation/Sick Time
401K with Company Match
Medical, Dental and Vision Benefits
Disability Benefits
Health Savings Account
Flexible Spending Account
Life Insurance
Parental Leave
Employee Assistance Program
Associate Volunteer Program

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

threat huntingincident responseroot cause analysisindicators of compromisesecurity assessmentspenetration testingcybersecurity analysisprocess flow improvementcybersecurity standards complianceuse case development

Soft Skills

collaborationcommunicationmentoringcoachingorganizational skillsattention to detailproactive supportfeedback facilitationanalytical thinkingproblem-solving

Certifications

CompTIA Network+CompTIA Security+CompTIA CySA+EC-Council Certified Ethical Hacker (CEH)Cisco CCNACisco CCNA-SecurityGIAC GSECGCIHGSOMGPEN