Regions Bank
Identity and Access Management (IAM) Analyst
Regions Bank, Charlotte, North Carolina, United States, 28245
Overview
Identity and Access Management (IAM) Analyst Regions is dedicated to safeguarding private and personally identifiable information submitted for job opportunities. Information submitted will be reviewed by Regions associates, consultants, and vendors to evaluate qualifications and experience and will not be used for marketing purposes, sold, or shared outside Regions unless required by law. Information will be stored in accordance with regulatory requirements and the Regions Retention Schedule for a minimum of three years. You may review, modify, or update your information by visiting and logging into the careers section of the system. Job Description
At Regions, the Cyber Security Analyst is responsible for analyzing, identifying, and documenting cybersecurity risks. This role requires a proactive individual with an understanding of core technology and cybersecurity principles along with industry best practices to investigate, remediate and/or escalate for further evaluation. Responsibilities Analyze and respond to cyber threats within various security tools according to documented procedures Collaborate with stakeholders within Cyber Security/Technology departments and standard owners to document and communicate security risks Support a feedback loop related to information and events to improve accuracy of analysis Review and understand Policies, Standards, and Procedures for improved process flows Perform threat hunting, participate in tabletop exercises, and assist in Incident Response on a rotational basis as needed Maintain meticulous records of work performed, including root cause analysis, indicators of compromise, remediation steps, timeline of events, and impact assessment Stay abreast of global cybersecurity threat trends Support and collaborate with cybersecurity teams to document security posture and assess environment for relevant IOCs and gaps Document security assessments (e.g., Security Architecture Reviews, Red Team, Purple Team, tabletop exercises) as needed Analyze software for violations of Regions Cyber Security standards as needed Act as a coach and mentor to junior analysts May lead special projects
Requirements
High School Diploma or GED and eight (8) years of related post-secondary education and/or experience in Information Security or Information Technology Minimum of two (2) relevant certifications in Information Security or the ability to obtain relevant certification within twelve months, such as CompTIA Network+/Security+/CySA+, EC-Council CEH, Cisco CCNA/CCNA-Security, GIAC GSEC, etc. Willingness and availability to work on a pre-determined shift and rotational on-call
Preferences
Minimum of one (1) Intermediate to Advanced AWS or Azure Architect/Administrator and/or Security specialty certification Advanced Incident Response, Cyber Leadership, Penetration Testing certifications (GCIH, GSOM, GPEN, CISSP, CISM, OSCP) Prior experience in a Security Operations Center (SOC) environment Experience developing use cases for an SOC from threat hunting to investigation playbooks and response procedures Understanding of MITRE ATT&CK Framework and Cyberattack Kill Chain and how these frameworks identify gaps and guide analysts
Skills and Competencies
Self-starter with initiative and drive for continuous improvement Team-oriented with a focus on collective success Advanced understanding of information security principles, controls, and technologies Strong writing, analytical, and problem-solving skills Excellent verbal and written communication Familiarity with malware analysis, forensics, incident response, intrusion detection, traffic/packet analysis, vulnerability scanning, compliance, audit, or threat intelligence Strong investigative and problem-solving skills
Additional Responsibilities
Partner with Regions business and IT to gather requirements for application onboarding to Sailpoint IIQ Lead meetings to gather requirements, create and maintain onboarding and provisioning documentation Analyze RBAC and define/modify roles in Sailpoint Troubleshoot Sailpoint connection and provisioning failures and determine root cause Coordinate with IGA team members to meet timelines May serve as an SME and provide support for the IGA solution
Additional Preferences
Sailpoint IIQ or Sailpoint Identity Security Cloud experience Experience with RBAC and automated provisioning/deprovisioning in Sailpoint Experience with ServiceNow Experience with JIRA Experience with SQL
This position is intended to be onsite, with regular in-office days. Location options include Birmingham, AL; Nashville, TN; Atlanta, GA; or Charlotte, NC. Equal Opportunity Employer/including Disabled/Veterans. Regions accepts job applications electronically for a minimum of five business days from posting. Some postings may remain open longer due to business needs. Location: Riverchase Operations Center, Hoover, Alabama Position Type: Full time Compensation details, benefits information, and location specifics are provided as part of Regions job postings and related materials. Paid Vacation/Sick Time 401K with Company Match Medical, Dental and Vision Benefits Disability Benefits Health Savings Account Flexible Spending Account Life Insurance Parental Leave Employee Assistance Program Associate Volunteer Program
For more details on Regions benefits, please refer to the official Regions benefits page. #J-18808-Ljbffr
Identity and Access Management (IAM) Analyst Regions is dedicated to safeguarding private and personally identifiable information submitted for job opportunities. Information submitted will be reviewed by Regions associates, consultants, and vendors to evaluate qualifications and experience and will not be used for marketing purposes, sold, or shared outside Regions unless required by law. Information will be stored in accordance with regulatory requirements and the Regions Retention Schedule for a minimum of three years. You may review, modify, or update your information by visiting and logging into the careers section of the system. Job Description
At Regions, the Cyber Security Analyst is responsible for analyzing, identifying, and documenting cybersecurity risks. This role requires a proactive individual with an understanding of core technology and cybersecurity principles along with industry best practices to investigate, remediate and/or escalate for further evaluation. Responsibilities Analyze and respond to cyber threats within various security tools according to documented procedures Collaborate with stakeholders within Cyber Security/Technology departments and standard owners to document and communicate security risks Support a feedback loop related to information and events to improve accuracy of analysis Review and understand Policies, Standards, and Procedures for improved process flows Perform threat hunting, participate in tabletop exercises, and assist in Incident Response on a rotational basis as needed Maintain meticulous records of work performed, including root cause analysis, indicators of compromise, remediation steps, timeline of events, and impact assessment Stay abreast of global cybersecurity threat trends Support and collaborate with cybersecurity teams to document security posture and assess environment for relevant IOCs and gaps Document security assessments (e.g., Security Architecture Reviews, Red Team, Purple Team, tabletop exercises) as needed Analyze software for violations of Regions Cyber Security standards as needed Act as a coach and mentor to junior analysts May lead special projects
Requirements
High School Diploma or GED and eight (8) years of related post-secondary education and/or experience in Information Security or Information Technology Minimum of two (2) relevant certifications in Information Security or the ability to obtain relevant certification within twelve months, such as CompTIA Network+/Security+/CySA+, EC-Council CEH, Cisco CCNA/CCNA-Security, GIAC GSEC, etc. Willingness and availability to work on a pre-determined shift and rotational on-call
Preferences
Minimum of one (1) Intermediate to Advanced AWS or Azure Architect/Administrator and/or Security specialty certification Advanced Incident Response, Cyber Leadership, Penetration Testing certifications (GCIH, GSOM, GPEN, CISSP, CISM, OSCP) Prior experience in a Security Operations Center (SOC) environment Experience developing use cases for an SOC from threat hunting to investigation playbooks and response procedures Understanding of MITRE ATT&CK Framework and Cyberattack Kill Chain and how these frameworks identify gaps and guide analysts
Skills and Competencies
Self-starter with initiative and drive for continuous improvement Team-oriented with a focus on collective success Advanced understanding of information security principles, controls, and technologies Strong writing, analytical, and problem-solving skills Excellent verbal and written communication Familiarity with malware analysis, forensics, incident response, intrusion detection, traffic/packet analysis, vulnerability scanning, compliance, audit, or threat intelligence Strong investigative and problem-solving skills
Additional Responsibilities
Partner with Regions business and IT to gather requirements for application onboarding to Sailpoint IIQ Lead meetings to gather requirements, create and maintain onboarding and provisioning documentation Analyze RBAC and define/modify roles in Sailpoint Troubleshoot Sailpoint connection and provisioning failures and determine root cause Coordinate with IGA team members to meet timelines May serve as an SME and provide support for the IGA solution
Additional Preferences
Sailpoint IIQ or Sailpoint Identity Security Cloud experience Experience with RBAC and automated provisioning/deprovisioning in Sailpoint Experience with ServiceNow Experience with JIRA Experience with SQL
This position is intended to be onsite, with regular in-office days. Location options include Birmingham, AL; Nashville, TN; Atlanta, GA; or Charlotte, NC. Equal Opportunity Employer/including Disabled/Veterans. Regions accepts job applications electronically for a minimum of five business days from posting. Some postings may remain open longer due to business needs. Location: Riverchase Operations Center, Hoover, Alabama Position Type: Full time Compensation details, benefits information, and location specifics are provided as part of Regions job postings and related materials. Paid Vacation/Sick Time 401K with Company Match Medical, Dental and Vision Benefits Disability Benefits Health Savings Account Flexible Spending Account Life Insurance Parental Leave Employee Assistance Program Associate Volunteer Program
For more details on Regions benefits, please refer to the official Regions benefits page. #J-18808-Ljbffr