First Citizens Bank
Information Security Analyst III (Remote)
First Citizens Bank, Raleigh, North Carolina, United States, 27601
Information Security Analyst III (Remote)
Join to apply for the
Information Security Analyst III (Remote)
role at
First Citizens Bank .
Overview This is a remote role that may be hired in several markets across the United States.
Role Description As an Incident Response Analyst, you'll be a member of the bank's Cyber Incident Response team. We are seeking an experienced analyst with proven skills to detect and respond to threats, interact with stakeholders, and work to restore operations. This technical role supports Threat Hunting, Intelligence, and Monitoring functions through content creation, threat analysis, detection recommendations, and colleague mentoring. Strong communication skills are essential to simplify complex issues for broader understanding and expedite incident management.
Responsibilities
Incident Analyst/Handler:
Investigate SIEM/SOAR events; respond to and contain incidents with malware analysis, network, and endpoint security expertise.
Cloud Incident Response:
Respond to cloud-related incidents in Azure, AWS, and Google Cloud.
Incident Lead:
Lead investigations, mitigation, and remediation, liaising with technical and business stakeholders.
Incident Management:
Ensure proper detection, documentation, investigation, and resolution of security incidents.
Content Development:
Create countermeasures and mitigations post-incident.
Threat Hunting:
Support threat hunting activities, build countermeasures, and track evolving threat techniques.
Post Incident Review:
Provide recommendations to improve communication, processes, and mitigation strategies based on high-severity incidents.
Qualifications Bachelor's Degree with 6 years of experience in Information Security OR High School Diploma/GED with 10 years of experience.
Preferred Qualifications
Experience with cloud incident response in Azure, AWS, and Google Cloud.
At least 2 years of cloud administrative experience.
Experience with all aspects of incident response and stakeholder management.
Familiarity with MITRE ATT&CK framework.
Support for building proactive threat hunting capabilities.
Experience analyzing security events across systems, applications, networks, and emails.
Ability to translate threat techniques into mitigations using tools like Yara, Sigma, or regex.
Strong project management skills and ability to handle multiple incidents.
Participation in an after-hours on-call rotation, weekly cycle.
Preferred Certifications
SANS Cloud certifications such as GIAC Cloud Forensics Responder (GCFR).
The salary range is generally $120,000 to $162,000, with actual pay based on experience, skills, and location. Benefits are comprehensive and detailed at
First Citizens Bank Benefits .
Additional Details
Seniority Level: Not Applicable
Employment Type: Full-time
Job Function: Information Technology
Industry: Banking and Financial Services
#J-18808-Ljbffr
Information Security Analyst III (Remote)
role at
First Citizens Bank .
Overview This is a remote role that may be hired in several markets across the United States.
Role Description As an Incident Response Analyst, you'll be a member of the bank's Cyber Incident Response team. We are seeking an experienced analyst with proven skills to detect and respond to threats, interact with stakeholders, and work to restore operations. This technical role supports Threat Hunting, Intelligence, and Monitoring functions through content creation, threat analysis, detection recommendations, and colleague mentoring. Strong communication skills are essential to simplify complex issues for broader understanding and expedite incident management.
Responsibilities
Incident Analyst/Handler:
Investigate SIEM/SOAR events; respond to and contain incidents with malware analysis, network, and endpoint security expertise.
Cloud Incident Response:
Respond to cloud-related incidents in Azure, AWS, and Google Cloud.
Incident Lead:
Lead investigations, mitigation, and remediation, liaising with technical and business stakeholders.
Incident Management:
Ensure proper detection, documentation, investigation, and resolution of security incidents.
Content Development:
Create countermeasures and mitigations post-incident.
Threat Hunting:
Support threat hunting activities, build countermeasures, and track evolving threat techniques.
Post Incident Review:
Provide recommendations to improve communication, processes, and mitigation strategies based on high-severity incidents.
Qualifications Bachelor's Degree with 6 years of experience in Information Security OR High School Diploma/GED with 10 years of experience.
Preferred Qualifications
Experience with cloud incident response in Azure, AWS, and Google Cloud.
At least 2 years of cloud administrative experience.
Experience with all aspects of incident response and stakeholder management.
Familiarity with MITRE ATT&CK framework.
Support for building proactive threat hunting capabilities.
Experience analyzing security events across systems, applications, networks, and emails.
Ability to translate threat techniques into mitigations using tools like Yara, Sigma, or regex.
Strong project management skills and ability to handle multiple incidents.
Participation in an after-hours on-call rotation, weekly cycle.
Preferred Certifications
SANS Cloud certifications such as GIAC Cloud Forensics Responder (GCFR).
The salary range is generally $120,000 to $162,000, with actual pay based on experience, skills, and location. Benefits are comprehensive and detailed at
First Citizens Bank Benefits .
Additional Details
Seniority Level: Not Applicable
Employment Type: Full-time
Job Function: Information Technology
Industry: Banking and Financial Services
#J-18808-Ljbffr