IT Security Operations Specialist/Senior Specialist

About The Position

Requirements

• Bachelor’s degree in computer science, management information systems, or a related field. Equivalent work experience or certification(s) may be considered in lieu of degree.
• Specialist: Minimum 2 years of experience in information technology or a related technical field.
• Senior Specialist: Minimum 4 years of experience in information technology, including at least 1 year in a security-focused role.
• Proficient with Microsoft Office applications.
• Knowledge of Windows‑based environments, including Microsoft Active Directory and domain administration, Windows system installation, configuration, patching, security, monitoring, and troubleshooting.
• Experience with security and diagnostic tooling, including syslog and log management platforms, with networking knowledge across routing, ports and protocols, and firewall concepts.
• Basic knowledge of infrastructure and platform technologies, including server virtualization, virtual environments, imaging, configuration management, and Linux or Unix operating systems.
• Basic scripting capability using tools such as Windows PowerShell, VBScript, or DOS, along with an understanding of industry trends and emerging technologies.
• Intermediate knowledge and skill proficiency in customer experience, IT technical acumen, and systems administration.
• Basic to intermediate knowledge and skill proficiency in analytical thinking, cross‑functional collaboration, IT security testing, IT systems security, network security, problem solving, and vendor management.
• Strong verbal and written communication skills, the ability to work independently, effective time management, adaptability to changing priorities, a willingness to learn new technologies, and the ability to remain professional and effective in dynamic or time‑sensitive situations.
• Ensure (or assist with ensuring) compliance with applicable laws, regulations, regulatory requirements and Bank policies and procedures, including but not limited to those related to Fair Banking, Anti-Money Laundering laws and regulations, Bank Secrecy Act and USA PATRIOT Act.

Nice To Haves

• Industry certifications such as Microsoft, Cisco, ISC2, SANS, or CompTIA are preferred but not required.

Responsibilities

• Monitors information technology security controls, including Data Loss Prevention, IDS/IPS, endpoint protection, email security, and SIEM tools.
• Reviews syslog data and security alerts to identify unusual activity or potential threats.
• Gathers relevant log information and escalates issues in accordance with established procedures.
• Supports the execution of information security incident response procedures for identified events.
• Participates in containment and remediation activities during or after incidents.
• Documents security incidents, metrics, and analysis results for appropriate stakeholders.
• Provides operational support for IT security systems, including configuration management and vulnerability management.
• Implements security updates and enhancements in alignment with corporate policies and IT standards.
• Maintains documentation related to security procedures, configuration standards, and system upgrades.
• Supports the implementation and maintenance of security systems based on defined requirements.
• Ensures configuration changes align with Bank standards and applicable business requirements.
• Participates in security application installations and upgrades across production, development, test, and disaster recovery environments.
• Coordinates with vendors and internal partners to support security operations activities.
• Contributes to team projects, Information Security Operations Center initiatives, and user education efforts.
• Takes initiative to learn security tools and processes through training, research, and cross‑functional exposure.
• Performs other responsibilities and duties as assigned.
• Monitors and analyzes information technology security controls, including Data Loss Prevention, IDS/IPS, endpoint protection, email security, and SIEM tools.
• Reviews syslog data and security alerts to detect anomalies, assess risk, and identify potential threats.
• Proactively investigates suspicious activity and escalates issues in accordance with established protocols.
• Serves as an escalation point for information security events and executes incident response procedures.
• Assesses threat severity, supports containment and remediation efforts, and ensures incidents are documented thoroughly.
• Analyzes trends in security events to improve detection, alerting, and response effectiveness.
• Administers and supports IT security systems, including system administration, configuration management, and vulnerability management.
• Implements security updates and enhancements in alignment with corporate policies and IT standards.
• Maintains configuration standards, procedures, and operational documentation.
• Implements and maintains security systems based on defined requirements and Bank standards.
• Supports system configurations developed internally or by vendors to ensure compliance with business and security requirements.
• Executes security application installations and upgrades across production, development, test, and disaster recovery environments.
• Coordinates with vendors and internal partners to support security operations and resolve technical issues.
• Contributes to vendor evaluations and supports the implementation of new security technologies in alignment with established security policies and objectives.

Benefits

• Delivering exceptional customer experiences is at the heart of what we do at Bank of Hawaii. We listen, understand and deliver what our customers need to help them build a better tomorrow.