Cybersecurity Analyst I

Job Description Summary

Provides first level support that includes monitoring, investigating and responding to security related events across multiple security tools and generating numerous security alerts; performs initial security event analysis and assists with in-depth investigations; Assists with the continual monitoring and analysis of system activities to identify, mitigate and recover from malicious activities; Works with other technology staff, third party software vendors, MSSPs (Managed Security Service Provider) and internal members to mitigate potential security events to meet the needs of the Credit Union.

Job Description

Essential Duties and Responsibilities

• Reviews security alerts and events to identify false positives and escalate anomalies per RFCU’s Cybersecurity Incident Response Guidelines. Documents actions for security alerts, events, and incidents.
• Continuously monitor events and alerts generated by enterprise Security Information Event Management (SIEM) tool and investigate security incidents. Investigate level 1 alerts and security related issues using various industry standard security tools.
• Performs analysis on multiple security related incidents, including but not limited to; phishing, malware and social engineering; follows the Incident Response steps to quickly identify, contain, eradicate, and recover.
• Monitors and analyzes network traffic while reporting issues and escalating as necessary to other members of the Information Security team. Manage and administer the software asset management tool, generate reports and work with different business units to resolve any issues found.
• Responsible for installing, updating and onboarding security agents for all security related tools including but not limited to SIEM, Next-Gen AV, AETD, UEBA, and Forensic Tools.
• Collaborate with MSSPs (Managed Security Service Provider) to prevent, detect, and respond to security incidents, implement best practices, and manage security tools and devices across the enterprise.
• Responsible for collaborating across the Credit Union on security events and educating staff on information security policies and procedures; supporting enterprise activities for security awareness, through the Information Security Ambassador Program and assisting with the Security Awareness Program.
• Assists other members of Information Security with the monitoring of Firewall, SIEM and other security related system reports for suspicious activity, perform investigation if needed; working with business units to fix outstanding vulnerabilities discovered from penetration testing, scanning tools, and threat Intel feeds.
• Manage and administer the encrypted drive system, and issue encrypted drives to users.
• Collects data and builds dashboards and reports to measure effectiveness of the Information Security & Cybersecurity Program.
• Assist in maintaining an up-to-date PSAO (Product Systems and Application Owners) System for all credit union Products/Systems/Applications.
• Evaluate security solutions, and provide recommendations to management on security software, hardware, policies, and procedures for implementation across the credit union.
  
  

Company Wide Expectations

• Maintains a professional image and demeanor at all times, consistently demonstrating Credit Union RISE Values and adhering to the Code of Ethics.
• Delivers friendly, caring service to internal and external members.
• Complies with all applicable State, Federal and NCUA rules and regulations and all Credit Union policies and procedures.
• Follow all physical and online security procedures and maintain strict confidentiality of all member information.
• Completes all required regulatory and compliance training and maintains required knowledge of Credit Union products and services.
• Works scheduled hours and maintains punctuality.
• Performs other related duties as assigned or requested.
  
  

Education/Experience

Minimum Qualifications

To perform this job satisfactorily, an employee must be able to carry out each essential duty competently. The requirements listed below are representative of the education, experience, skills and abilities required.

An equivalent combination of education and experience may be considered.

Education Requirements

• 4 Year / Bachelors Degree in Information Security, Information Technology, Computer Information Systems, or a closely related field. - Required
• Entry-to-intermediate level security related certifications (e.g., CompTIA Security , GSEC GIAC Security Essentials Comptia CySA , Cybersecurity Analyst , CSX-P Cybersecurity Practitioner, Certified Security Analyst (ECSA) - Preferred
  
  

Experience Requirement

• 1 Year - Information technology experience with emphasis on information security, and cybersecurity, preferably in a financial services environment. - Required
• Experience working with Security Information and Event Management (SIEM) solutions, Next-Gen Anti-Virus, Intrusion Detection/Prevention Systems, Firewalls, Active Directory, Vulnerability Assessment tools, Forensic tools, and other security tools found in large network environments. - Preferred
  
  

Skills/Abilities

• Effectively apply internal/external customer service practices and processes to meet quality service standards and achieve member satisfaction.
• Learn and apply information, on a wide range of Credit Union products, services and regulatory compliance requirements, in order to assess member situations and develop solutions.
• Communicate in a professional manner and deliver information clearly and effectively. Actively listen to questions, opinions and ideas of others. Use tact and diplomacy in sensitive and confidential situations.
• Use correct English including spelling, grammar and punctuation.
• Operate computers and use business software and other standard office equipment.
• Understand and follow written and oral instructions.
• Set priorities and manage one’s own time effectively.
  
  

PHYSICAL DEMANDS

Physical Demands Disclaimer

The physical demands described here are representative of those that must be met by employees to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Physical Requirements

• Intermittent standing, sitting, walking, bending and climbing.
• Using hands repetitively to handle, feel or operate computers and other standard office equipment.
• Reaching with hands and arms.
• Intermittent lifting and carrying up to 25 pounds.
  
  

WORK ENVIRONMENT

Work Environment Disclaimer

An employee in this job will experience the following main work environments, others not listed may also be encountered on occasion;

Work Environment

• Works in a typical technology office environment.
  
  

Redstone Federal Credit Union is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran status or status as an individual with disability. All qualified applicants will not be discriminated against on the basis of disability.

We are proud to be a Drug-Free and Tobacco Free Workplace.