Third Federal - Cleveland, OH
posted 2 days ago
Full-time - Senior
Hybrid - Cleveland, OH
Credit Intermediation and Related Activities
About the position
This is a position within the Information Security team. Responsibilities include monitoring and investigation of alerts, administration of software used by the team, and researching and implementing improvements to our Information Security posture. This position requires 8-10 years of hands-on experience in multiple areas of Information Security, and knowledge and skills in areas such as networking, Windows, Linux, and Cloud platforms.
Responsibilities
- Respond to alerts, events and incidents.
- Perform detailed investigation and analysis of events.
- Use personal knowledge, skills, and tools to monitor for threats.
- Develop and implement monitoring rules and alerts.
- During investigations act as the go-to person for junior members of the team.
- Troubleshoot and support software and devices used by the Information Security team.
- Maintain situational awareness about the entire Information Technology environment at Third Federal.
- Regularly provide ideas and recommendations to improve the Information Security posture.
- Awareness and understanding of current topics and threats occurring in the Information Security community.
- Provide training to other members of the Information Security.
- Implement new Information Security tools and products.
- Create policies, playbooks, how-to guides, and other documentation.
Requirements
- Strong problem-solving skills to investigate and understand security events.
- Hands-on administration with a broad security understanding of one or more products such as anti-malware/anti-virus, firewalls, web proxies, SIEMs, vulnerability scanners, penetration testing, email filtering, DLP, etc.
- Ability and strong understanding of how to monitor networks for security breaches and analyzing network traffic, activity logs and system alerts.
- Hands on experience with responding to security events, threats and/or incidents by investigating and analyzing to identify root causes.
- Proven ability to prepare reports on security events, incidents and threats.
- Ability to protect systems by using and maintaining software like firewalls and data encryption programs to protect sensitive information.
- Capable of conducting security assessments, vulnerability testing (scanning) and risk analysis with having key abilities to identify vulnerabilities and assess their risk and impact to the organization.
- Proven ability to create documentation for security related plans including incident response and disaster recovery plans.
- Ability to work successfully in team settings.
- Ability to think critically and innovatively about the security solutions that can keep data secure.
- Understanding of TCP/IP and networking.
- Experience with Azure and AWS platforms is preferred.
- Knowledge of best practices and frameworks used in Information Security.
- Capable of explaining technical information to both I.T. and non-technical audiences.
- Detailed oriented.
- Ability to handle multiple projects and prioritize critical work.
- Desire to self-educate on the ever-changing landscape of cyber tactics.
Nice-to-haves
- Certifications that match this job position such as CISSP, CEH, Security+ etc. are a plus.
Benefits
- Competitive salary
- Comprehensive benefits package
- Career growth opportunities
