Smbc - New York, NY

posted 4 days ago

Full-time - Entry Level
Remote - New York, NY
10,001+ employees

About the position

The Cyber Security Analyst II - Vulnerability Management role is a critical position within the Security Operations Center (SOC) team at SMBC Group. The analyst will focus on vulnerability remediation activities to protect the organization's networks, applications, and infrastructure from cyber threats. This role involves collaborating with IT owners to identify and mitigate risks, ensuring effective and efficient vulnerability management in a rapidly changing threat landscape.

Responsibilities

  • Triage vulnerability alerts from security tools, external intelligence providers, penetration tests, and user-reported findings to assess impact to the organization.
  • Configure network, infrastructure, and/or application vulnerability scans and policy checks and conduct manual testing as needed to validate findings.
  • Liaise with various business units to conduct vulnerability assessments, consult on risk reduction strategies, and supervise remediation such that vulnerabilities are addressed within required timelines.
  • Conduct attack surface risk modeling and articulate high-risk areas to stakeholders in collaboration with Threat Intelligence and Threat Hunting functions.
  • Assist in production of periodic vulnerability management reports and statistics for management.
  • Tune vulnerability management tools to increase coverage, reduce false positives and false negatives, and improve processes.
  • Liaise with Optimization team to set up detections and mitigations i.e., Intrusion Prevention Systems, ensuring we have signatures in place to protect us from relevant threats.
  • Support culture of continuous improvement by proactively investigating new risks and opportunities to strengthen Bank's security posture.

Requirements

  • 2+ years of security, IT, compliance, audit, risk management, consulting, or application development experience.
  • Bachelor of Information Technology, Computer Science, or similar preferable.
  • Strong understanding of MITRE ATT&CK framework.
  • In-depth knowledge of network and web-based attacks.
  • Diligent, proactive, and strong attention to detail.
  • Ability to work with large datasets, multi-task, and effectively prioritize tasks.
  • Strong critical analysis and problem-solving abilities.
  • Strong interpersonal and communication skills (written and verbal).
  • Ability to multi-task and remain productive in a service-driven and results oriented environment.
  • Demonstrated strong organizational, analytical, and problem-solving skills.
  • Ability to script tasks and automate processes is a plus.
  • Working knowledge of cloud technologies and containerized environments is a plus.

Nice-to-haves

  • Ability to script tasks and automate processes is a plus.
  • Working knowledge of cloud technologies and containerized environments is a plus.

Benefits

  • Competitive salary range between $97,000.00 and $154,000.00 based on qualifications and experience.
  • Annual discretionary incentive award eligibility.
  • Comprehensive benefits portfolio including health insurance, retirement plans, and more.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service