This job was posted by https://www.arjoblink.arkansas.gov : For more
information, please see: https://www.arjoblink.arkansas.gov/jobs/4708705
GENERAL DESCRIPTION OF POSITION
The Information Security Analyst I, as part of the Cyber Defense
Operations Team, helps defend Centennial Bank against cyber threats by
responding to information security alerts, investigating malicious
activity, and aiding in incident handling, along with helping in
maintaining overall information security across the organization through
vulnerability management, phishing email analysis, and providing general
information security expertise.
ESSENTIAL DUTIES AND RESPONSIBILITIES
Investigates security alerts and events to identify relevancy and
urgency, triaging and responding based on set security operation
processes. This duty is performed daily, about 20% of the time.
Facilitates network and endpoint security monitoring using a wide
variety of tools, including Endpoint Detection and Response (EDR),
Network Monitoring, Security Information and Event Management (SIEM),
Data Loss Prevention (DLP), Identity Management, etc. This duty is
performed daily, about 15% of the time.
Monitors the health of security tools and agents, including
facilitating the discovery of potential gaps in coverage. This duty is
performed weekly, about 10% of the time.
Administers endpoint protection software and other security tools, as
necessary. This duty is performed monthly, about 10% of the time.
Analyzes phishing emails to create and follow through with
appropriate response plan. This duty is performed daily, about 15% of
the time.
Participates in the vulnerability management lifecycle by helping
identify, report, and suggest remediation steps for vulnerabilities
discovered in the network. This duty is performed weekly, about 5% of
the time.
Participates in cyber incident response activities or projects. This
duty is performed as needed, about 5% of the time.
Using approved tools, assists in conducting Red Team tests to
determine potential security flaws and provides recommendations for
remediation. This duty is performed monthly, about 5% of the time.
Evaluates complex security events using critical thinking and problem
solving. This duty is performed daily, about 10% of the time.
Collaborates with multiple diverse teams, both locally and remotely,
regarding IT security concerns. This duty is performed daily, about 10%
of the time.
Completes required BSA/AML training and all other required training
sessions, as assigned. This duty is performed quarterly.
The ability to work in a constant state of alertness and in a safe
manner. This duty is performed daily.
Perform any other related duties as required or assigned.
QUALIFICATIONS
To perform this job successfully, an individual must be able to perform
each essential duty mentioned satisfactorily. The requirements listed
below are representative of the knowledge, skill, and/or ability
required.
EDUCATION AND EXPERIENCE
Knowledge of a specialized field (however acquired), such as basic
accounting, computer, etc. Equivalent of four years in high school, plus
night, trade extension, or correspondence school specialized training,
equal to two years of college, plus 4 years related experience and/or
training, or equivalent combination of education and experience.
COMMUNICATION SKILLS
Ability to effectively communicate information and respond to questions
in person-to-person and small group situations with customers, clients,
general public and other employees of the organization. Ability to read,
analyze, and understand general business/company related articles and
professional journals; ability to speak effectively before groups of
customers or employees. ability to write reports, business
correspondence, and policy/procedure manuals; ability to effectively
present information and respond to questions from groups of managers,
clients, customers, and the general public. Ability to read, analyze,
and understand common scientific and technical journals, financial
reports, and legal documents; ability to respond to complex or difficult
inquiries or complaints from customers, regulatory agencies, or members
of the business community.
MATHEMATICAL SKILLS
Ability to calculate figures and amounts