Cybersecurity Threat Senior Analyst - Quality Metrics

Truist Financial - Atlanta, GA

posted 5 months ago

Part-time,Full-time - Mid Level
Atlanta, GA
Credit Intermediation and Related Activities

About the position

The Cybersecurity Threat Senior Analyst (CFC Quality and Metrics Analyst) within the 24/7 Cyber Fusion Center (CFC) organization is responsible for reviewing Case Management System (CMS) data as part of the quality control and metrics program. The Senior Analyst will also serve as a connecting point between cyber teams for daily briefing calls and managers asking for methods of process improvement supported by metrics and data. Senior Analysts must have general cybersecurity knowledge, familiarity with case management systems, and good presentation skills. The Senior Analyst will be expected to host daily bridge calls, delivering feedback to CFC Management as requested. This requires good interpersonal skills, flexibility, and a desire to drive positive change. Senior Analysts must have problem management skills in both structured and unstructured situations. The candidate should be expected to understand technical discussions and translate that language to a less technical audience. The candidate will develop, interpret, and present data-driven metrics in support of this program. The candidate will review case data, on a daily basis, to ensure proper case administration and documentation by analysts and automation. This role is based in downtown Atlanta, GA with Zebulon, NC as an acceptable alternate site. The role is M-F, 1st shift hours with some on-call responsibilities.

Responsibilities

  • Participate in the development and implementation of KRI's and KPI's to support Cyber Fusion Center (CFC) operations and management.
  • Participate in the development and implementation of quality control processes to support Cyber Fusion Center operations and management.
  • Analyze case management system data for trends and metric data in support of CFC objectives.
  • Run Lessons Learned/After Action Reports exercises as a part of case and process review.
  • Run daily team meetings for the CFC and supporting teams, as well as additional strategy sessions as required.
  • Review investigations and processes for cyber threats identified through Truist's security incident and incident management program.
  • Participate in the official review of playbooks used in response for investigation/incident triggers in support of 24/7 Cyber Fusion Center.
  • Interface with other teams in Information Security (e.g. network operations, cyber threat intel, vulnerability management) along with information and liability risk officers and technology management to help guide cyber security investigations and incidents.
  • Assist in ensuring all operations and maintenance activities are properly documented and updated as necessary.

Requirements

  • Bachelor's degree in Computer Science or related field or equivalent education and related training.
  • Five years of experience in Cybersecurity or related work.
  • Broad knowledge of general IT with a focus area in two or more of the following areas: operating systems, networking, computer programming, web development or database administration.
  • Demonstrated advanced knowledge of cyber security concepts with a focus area in two or more of the following: attack surface management, Security Operations Center (SOC) operations, Intrusion Detection/Intrusion Prevention Systems (IDS/IPS), Security Information and Event Management (SIEM) use, threats (including Advanced Persistent Threat (APT), insider), vulnerabilities, and exploits; incident response, investigations and remediation.

Nice-to-haves

  • Bachelor's degree in Information Technology or related field or equivalent training and experience.
  • Foundational knowledge of processes, procedures, and methods to research, analyze and disseminate threat intelligence information.
  • Foundational knowledge related to Key Performance Indicators (KPI's), Key Risk Indicators (KRI's) and the use of metrics as a tool of process improvement.
  • The ability to present information to large audiences as needed, as well as the ability to communicate at varying levels of responsibility, from analyst to executive.
  • Experience working in cloud environments
  • Industry certifications in cybersecurity
  • Security Operations Center (SOC) or Network Operations Center (NOC) experience.

Benefits

  • Medical insurance
  • Dental insurance
  • Vision insurance
  • Life insurance
  • Disability insurance
  • Accidental death and dismemberment insurance
  • Tax-preferred savings accounts
  • 401k plan
  • Vacation days (minimum of 10 days)
  • Sick days (minimum of 10 days)
  • Paid holidays
  • Defined benefit pension plan (depending on position and division)
  • Restricted stock units (depending on position and division)
  • Deferred compensation plan (depending on position and division)

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service