First Citizens Bank
Information Security Engineer III
First Citizens Bank, Raleigh, North Carolina, United States, 27601
Overview:This position leads daily engineering, operations, analysis, management, and administration of tools, systems, or processes that secure the Bank's information assets and technology infrastructure. Assesses organizational networks, applications, or systems for potential vulnerabilities. Designs and implements technical solutions that strengthen security. Serves as a technical resource to management, associates, and business teams. Acts as a mentor and leader to less experienced associates in the work group.
Responsibilities:Security Engineering:
Researches and executes process or system improvements that enhance the Bank's information security. Leads security assessments, identifies security gaps, and develops and implements risk mitigation solutions. Ensures compliance with necessary standards, regulations or best practices. Oversees security projects and associate teams as assigned.Technical Expertise:
Maintains a strong knowledge of industry practices, technology, and evolving threats in order to enhance defenses for the Bank's information systems and resources. Advises management on security protocols and incidents. Mentors and trains associates to ensure team knowledge and effectiveness.Issue Resolution:
Leads the investigation and resolution of incidents. Prepares, reviews, and conveys reports to management regarding incidents. Implements effective monitoring and alert processes to ensure timely recognition of events. Creates playbooks or other documentation that address recurring issues.Analysis:
Identifies and evaluates potential threats or vulnerabilities in the Bank's networks, applications, or systems. Compiles data from external or internal sources. Creates actionable intelligence based on review of analysis.Business Strategy:
Assists senior leadership in the development of security policies, standards, and strategies. Facilitates security strategy across the Bank.
Qualifications:Bachelor's degree with a minimum of 6 years of experience in systems engineering, networking or information security technologies –OR– High school diploma or GED with a minimum of 10 years of experience in systems engineering, networking or information security technologies.
Preferred experience:Experience designing and developing content that can be transformed as alerts, signals, rules from detection engineering aspectExperience with event monitoring/analytics platforms such as Splunk, Crowdstrike, Cloud platforms (AWS, Azure)Experience with event routing such as Syslog, Snowflake, KafkaExperience with networking or network traffic analysis.Experience with one or more Information Security controls such as IDS/IPS, Firewalls, Endpoint Protection, DLP, or Application Security is idealConduct advanced log analysis and perform forensic investigations to identify indicators of compromise (IOCs) and patterns of malicious activity.Conduct periodic reviews and assessments of SIEM configurations, rules, and processes to identify areas for improvement and optimization.Stay up to date with the latest industry trends, threat intelligence, and emerging technologies in the field of SIEM and threat detection.Familiarity with log/data collection and management.Linux system administration experience.
Skills and Competencies:Ability to work comfortably from a command lineEffective written and verbal communication skillsStrong organizational, research, analytical and/or problem–solving skills to evaluate situations, make recommendations, and take effective actionStrong technical, investigative, and analytical skillsWorking knowledge and experience with one or more scripting languages: Perl, Python, JavaScript, Jupyter Notebooks, Powershell
Remote eligible.
This job posting is expected to remain active for 45 days from the initial posting date listed above. If it is necessary to extend this deadline, the posting will remain active as appropriate. Job postings may come down early due to business need or a high volume of applicants.
The base pay for this position is generally between $115,000 and $199,000 per year. Actual starting base pay will be determined based on skills, experience, location and other non–discriminatory factors permitted by law. For some roles, total compensation may also include variable incentives, bonuses, benefits, and/or other awards as outlined in the offer of employment.
First Citizens benefits programs are designed to meet our Associates where they are in life. Full–time associates (20+ hours) are offered a comprehensive benefits program, with customized offerings, including those designed to support families, however defined. More information regarding our benefits offerings can be found here:
#J-18808-Ljbffr
Responsibilities:Security Engineering:
Researches and executes process or system improvements that enhance the Bank's information security. Leads security assessments, identifies security gaps, and develops and implements risk mitigation solutions. Ensures compliance with necessary standards, regulations or best practices. Oversees security projects and associate teams as assigned.Technical Expertise:
Maintains a strong knowledge of industry practices, technology, and evolving threats in order to enhance defenses for the Bank's information systems and resources. Advises management on security protocols and incidents. Mentors and trains associates to ensure team knowledge and effectiveness.Issue Resolution:
Leads the investigation and resolution of incidents. Prepares, reviews, and conveys reports to management regarding incidents. Implements effective monitoring and alert processes to ensure timely recognition of events. Creates playbooks or other documentation that address recurring issues.Analysis:
Identifies and evaluates potential threats or vulnerabilities in the Bank's networks, applications, or systems. Compiles data from external or internal sources. Creates actionable intelligence based on review of analysis.Business Strategy:
Assists senior leadership in the development of security policies, standards, and strategies. Facilitates security strategy across the Bank.
Qualifications:Bachelor's degree with a minimum of 6 years of experience in systems engineering, networking or information security technologies –OR– High school diploma or GED with a minimum of 10 years of experience in systems engineering, networking or information security technologies.
Preferred experience:Experience designing and developing content that can be transformed as alerts, signals, rules from detection engineering aspectExperience with event monitoring/analytics platforms such as Splunk, Crowdstrike, Cloud platforms (AWS, Azure)Experience with event routing such as Syslog, Snowflake, KafkaExperience with networking or network traffic analysis.Experience with one or more Information Security controls such as IDS/IPS, Firewalls, Endpoint Protection, DLP, or Application Security is idealConduct advanced log analysis and perform forensic investigations to identify indicators of compromise (IOCs) and patterns of malicious activity.Conduct periodic reviews and assessments of SIEM configurations, rules, and processes to identify areas for improvement and optimization.Stay up to date with the latest industry trends, threat intelligence, and emerging technologies in the field of SIEM and threat detection.Familiarity with log/data collection and management.Linux system administration experience.
Skills and Competencies:Ability to work comfortably from a command lineEffective written and verbal communication skillsStrong organizational, research, analytical and/or problem–solving skills to evaluate situations, make recommendations, and take effective actionStrong technical, investigative, and analytical skillsWorking knowledge and experience with one or more scripting languages: Perl, Python, JavaScript, Jupyter Notebooks, Powershell
Remote eligible.
This job posting is expected to remain active for 45 days from the initial posting date listed above. If it is necessary to extend this deadline, the posting will remain active as appropriate. Job postings may come down early due to business need or a high volume of applicants.
The base pay for this position is generally between $115,000 and $199,000 per year. Actual starting base pay will be determined based on skills, experience, location and other non–discriminatory factors permitted by law. For some roles, total compensation may also include variable incentives, bonuses, benefits, and/or other awards as outlined in the offer of employment.
First Citizens benefits programs are designed to meet our Associates where they are in life. Full–time associates (20+ hours) are offered a comprehensive benefits program, with customized offerings, including those designed to support families, however defined. More information regarding our benefits offerings can be found here:
#J-18808-Ljbffr