Western Alliance Bank

  • Security Operations Center Analyst II

    Req No.
    2018-4503
    Affiliate
    Western Alliance Bank
    Category
    Risk Management & Compliance
    Type
    Regular Full Time
    City
    Phoenix
  • Overview

    Why should you join our team?

    Because being a part of a small progressive Security Operations team will allow your skills to grow and allow you to use your experience to enhance our practices. You will enjoy the autonomy to build the environment for a growing organization.

    Why Western Alliance Bancorporation?

    We are ranked #2 on Forbes Top Banks for 2018! We are growing and YOU want to be part of our growth! Make your mark on what we will become!

    What’s in it for you?

    As a SOC Professional at Western Alliance Bank, you will have a unique experience to gain hands on experience on progressive tools such as ElasticSearch (ELK), IDS/IPS, Advanced Anti-virus and Threat Defense Systems, Host based Forensics and Security analytics tools on an ongoing basis.

     

    The Security Operations Center (SOC) Analyst II is responsible for supporting day-to-day program requirements at a tactical and operational level (network, endpoint, infrastructure, applications, and databases) to detect and respond to cyber threats within the environment. The position interfaces with other departments to drive remediation activities associated with both active declared incidents and threats due to current vulnerabilities. Additionally, the position engages in engineering and configuration of both defensive and operational security tools.

    Responsibilities

    • Perform technical analysis of security alerts from all sources (automated tool alerts, employee reported alerts, fraud investigation related alerts, etc.).
    • Coordinate activities with other technology departments to drive security incidents and vulnerabilities to remediation.
    • Contribute to the development of new security tools, procedures, and processes, including initial recommendation, engineering, maintenance, and operational tuning.
    • Develop, maintain, and tune a threat intelligence program based on current industry trends and risks.
    • Provide ongoing security tool optimization using aggregation, filters, correlation rules, etc.
    • Perform behavioral analysis of malware in a sandbox environment.
    • Track open tickets to ensure SLAs are met.

    Qualifications

    • 4+ years of total Information Technology experience including at least two of the following:
    • 1 years in information security risk and compliance management, security project management, security policy management, and other security practices
    • Vulnerability management experience such as patching, automated updates, and configuration vulnerability identification and remediation.
    • 2 years of specific experience identifying and responding to cyber security incidents and threats.
    • 2 years of experience using scripting techniques (Perl, Python, Rest API, VB, etc.) to automate tasks.
    • 1 years of experience in evaluating, installing, configuring, and maintaining at least 2 of the following security tools (IDS, IPS, SIEM, DLP, Proxy, Firewall, Endpoint forensics, disk encryption, GRC, Vulnerability scanner, sandbox).
    • Experience with interpreting and analyzing packet captures via wireshark or like.
    • RHCSA, RHCSE, CCNA, or VCP or related technology training or certifications a plus1 years of experience in evaluating, installing, configuring, and maintaining at least 2 of the following security tools (IDS, IPS, SIEM, DLP, Proxy, Firewall, Endpoint forensics, disk encryption, GRC, Vulnerability scanner, sandbox).
    • Experience with interpreting and analyzing packet captures via wireshark or like.
    • RHCSA, RHCSE, CCNA, or VCP or related technology training or certifications a plus.
    • Proficient with MS Office suite.
    • Requires strong analytical skills and problem solving skills.
    • Superb communication skills with both technical and management staff.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed